论文信息 - Information leak detection in financial e-mails using mail pattern analysis under partial information

Information leak detection in financial e-mails using mail pattern analysis under partial information

With the advent of e-mail, sensitive information leakage has become a daunting problem in today's world. Quite often, the mail volume from a company is huge, making manual monitoring impossible. Automatic screening mostly relies on the idea of content scanning, but sometimes the information is so sensitive that even scanning the mails by a third party may not be permitted. Detection under such restrictions becomes difficult. Also, mails originating from specific organizations are often restricted in their subject and content, suggesting that powerful generic techniques like content scanning may not be needed. We propose that selection of proper input variables relevant to the domain could help in such cases; a simple straightforward learning scheme can then detect information leak efficiently using only mail pattern analysis. We used our technique on real life mails from financial institutions. By choosing the input variables judiciously, we were able to learn the mail patterns quite well and detected violations efficiently. The preliminary results are encouraging with an accuracy close to 92%. This technique is now being implemented in a real life commercial tool.

Chetan Kalyan | Krithika Chandrasekaran

[1] Ke Wang,et al. Behavior-based modeling and its application to Email analysis , 2006, TOIT.

[2] Bill Hancock,et al. First internet e-mail corporate usage report; concludes e-mail abuse at epidemic levels , 1999 .

[3] Stan Matwin,et al. Feature Engineering for Text Classification , 1999, ICML.

[4] R. Maenner,et al. Quantifying a critical training set size for generalization and overfitting using teacher neural networks , 1995 .

[5] Jeffrey O. Kephart,et al. Incremental Learning in SwiftFile , 2000, ICML.

[6] Jonathan Helfman,et al. Ishmail: Immediate Identification of Important Information , 1995 .

[7] William W. Cohen,et al. Preventing Information Leaks in Email , 2007, SDM.

[8] Susan T. Dumais,et al. A Bayesian Approach to Filtering Junk E-Mail , 1998, AAAI 1998.

[9] William W. Cohen. Learning Rules that Classify E-Mail , 1996 .

[10] Harris Drucker,et al. Support vector machines for spam categorization , 1999, IEEE Trans. Neural Networks.

[11] Blaz Zupan,et al. Orange: From Experimental Machine Learning to Interactive Data Mining , 2004, PKDD.

[12] Stan Matwin,et al. PEEP- An Information Extraction base approach for Privacy Protection in Email , 2005, CEAS.

[13] Jason D. M. Rennie. ifile: An Application of Machine Learning to E-Mail Filtering , 2000 .

[14] Jeffrey O. Kephart,et al. MailCat: an intelligent assistant for organizing e-mail , 1999, AGENTS '99.