{"bundle_type":"pith_open_graph_bundle","bundle_version":"1.0","pith_number":"pith:2018:R66ASXLNXF2JI2YUWLY3A2C53S","short_pith_number":"pith:R66ASXLN","canonical_record":{"source":{"id":"1809.00141","kind":"arxiv","version":1},"metadata":{"license":"http://arxiv.org/licenses/nonexclusive-distrib/1.0/","primary_cat":"cs.CR","submitted_at":"2018-09-01T09:10:53Z","cross_cats_sorted":[],"title_canon_sha256":"20807e212463271b6ea550618159a29ec478389a17001fd574d9fa9fce4a108d","abstract_canon_sha256":"20563c9bdd8e080078db429906eb54bcd1d85bc55d61aba72d3c0cf97ddd66eb"},"schema_version":"1.0"},"canonical_sha256":"8fbc095d6db974946b14b2f1b0685ddcb04c7815b2361418d273e2937d4d017e","source":{"kind":"arxiv","id":"1809.00141","version":1},"source_aliases":[{"alias_kind":"arxiv","alias_value":"1809.00141","created_at":"2026-05-18T00:06:35Z"},{"alias_kind":"arxiv_version","alias_value":"1809.00141v1","created_at":"2026-05-18T00:06:35Z"},{"alias_kind":"doi","alias_value":"10.48550/arxiv.1809.00141","created_at":"2026-05-18T00:06:35Z"},{"alias_kind":"pith_short_12","alias_value":"R66ASXLNXF2J","created_at":"2026-05-18T12:32:50Z"},{"alias_kind":"pith_short_16","alias_value":"R66ASXLNXF2JI2YU","created_at":"2026-05-18T12:32:50Z"},{"alias_kind":"pith_short_8","alias_value":"R66ASXLN","created_at":"2026-05-18T12:32:50Z"}],"events":[{"event_type":"record_created","subject_pith_number":"pith:2018:R66ASXLNXF2JI2YUWLY3A2C53S","target":"record","payload":{"canonical_record":{"source":{"id":"1809.00141","kind":"arxiv","version":1},"metadata":{"license":"http://arxiv.org/licenses/nonexclusive-distrib/1.0/","primary_cat":"cs.CR","submitted_at":"2018-09-01T09:10:53Z","cross_cats_sorted":[],"title_canon_sha256":"20807e212463271b6ea550618159a29ec478389a17001fd574d9fa9fce4a108d","abstract_canon_sha256":"20563c9bdd8e080078db429906eb54bcd1d85bc55d61aba72d3c0cf97ddd66eb"},"schema_version":"1.0"},"canonical_sha256":"8fbc095d6db974946b14b2f1b0685ddcb04c7815b2361418d273e2937d4d017e","receipt":{"kind":"pith_receipt","key_id":"pith-v1-2026-05","algorithm":"ed25519","signed_at":"2026-05-18T00:06:35.971957Z","signature_b64":"deNwbDvUi0r2oQxNihhUNLEz2ehfh24+rvZ0dEcWjr476Z5xJBQEklU3ULSaJFAg61K609BrJTAoexT/Pj+zDA==","signed_message":"canonical_sha256_bytes","builder_version":"pith-number-builder-2026-05-17-v1","receipt_version":"0.3","canonical_sha256":"8fbc095d6db974946b14b2f1b0685ddcb04c7815b2361418d273e2937d4d017e","last_reissued_at":"2026-05-18T00:06:35.971531Z","signature_status":"signed_v1","first_computed_at":"2026-05-18T00:06:35.971531Z","public_key_fingerprint":"8d4b5ee74e4693bcd1df2446408b0d54"},"source_kind":"arxiv","source_id":"1809.00141","source_version":1,"attestation_state":"computed"},"signer":{"signer_id":"pith.science","signer_type":"pith_registry","key_id":"pith-v1-2026-05","public_key_fingerprint":"8d4b5ee74e4693bcd1df2446408b0d54"},"created_at":"2026-05-18T00:06:35Z","supersedes":[],"prev_event":null,"signature":{"signature_status":"signed_v1","algorithm":"ed25519","key_id":"pith-v1-2026-05","public_key_fingerprint":"8d4b5ee74e4693bcd1df2446408b0d54","signature_b64":"JWtHK7NheBhGXZGEddYBeShv3I22TO/vUks0OsgD/3hZoOcqcz8YpEXAd30ZKJJNQMR5cgJu3vFOWQiCNOBCDQ==","signed_message":"open_graph_event_sha256_bytes","signed_at":"2026-05-30T18:22:40.710506Z"},"content_sha256":"4b5903341c5d4134d86f912656759f8846db0cd897003998ac647607d3e8bef5","schema_version":"1.0","event_id":"sha256:4b5903341c5d4134d86f912656759f8846db0cd897003998ac647607d3e8bef5"},{"event_type":"graph_snapshot","subject_pith_number":"pith:2018:R66ASXLNXF2JI2YUWLY3A2C53S","target":"graph","payload":{"graph_snapshot":{"paper":{"title":"A Graph Based Framework for Malicious Insider Threat Detection","license":"http://arxiv.org/licenses/nonexclusive-distrib/1.0/","headline":"","cross_cats":[],"primary_cat":"cs.CR","authors_text":"Anagi Gamachchi, Li Sun, Serdar Boztas","submitted_at":"2018-09-01T09:10:53Z","abstract_excerpt":"While most security projects have focused on fending off attacks coming from outside the organizational boundaries, a real threat has arisen from the people who are inside those perimeter protections. Insider threats have shown their power by hugely affecting national security, financial stability, and the privacy of many thousands of people. What is in the news is the tip of the iceberg, with much more going on under the radar, and some threats never being detected. We propose a hybrid framework based on graphical analysis and anomaly detection approaches, to combat this severe cybersecurity "},"claims":{"count":0,"items":[],"snapshot_sha256":"258153158e38e3291e3d48162225fcdb2d5a3ed65a07baac614ab91432fd4f57"},"source":{"id":"1809.00141","kind":"arxiv","version":1},"verdict":{"id":null,"model_set":{},"created_at":null,"strongest_claim":"","one_line_summary":"","pipeline_version":null,"weakest_assumption":"","pith_extraction_headline":""},"references":{"count":0,"sample":[],"resolved_work":0,"snapshot_sha256":"258153158e38e3291e3d48162225fcdb2d5a3ed65a07baac614ab91432fd4f57","internal_anchors":0},"formal_canon":{"evidence_count":0,"snapshot_sha256":"258153158e38e3291e3d48162225fcdb2d5a3ed65a07baac614ab91432fd4f57"},"author_claims":{"count":0,"strong_count":0,"snapshot_sha256":"258153158e38e3291e3d48162225fcdb2d5a3ed65a07baac614ab91432fd4f57"},"builder_version":"pith-number-builder-2026-05-17-v1"},"verdict_id":null},"signer":{"signer_id":"pith.science","signer_type":"pith_registry","key_id":"pith-v1-2026-05","public_key_fingerprint":"8d4b5ee74e4693bcd1df2446408b0d54"},"created_at":"2026-05-18T00:06:35Z","supersedes":[],"prev_event":null,"signature":{"signature_status":"signed_v1","algorithm":"ed25519","key_id":"pith-v1-2026-05","public_key_fingerprint":"8d4b5ee74e4693bcd1df2446408b0d54","signature_b64":"egC6+OsDxOyWIPYdi3elN4rXiGRpyC83utG+0Fgkh3+xFg46VE+RVytUsx0Bjr5ZkZogXTcP82NTlz25W/hrAw==","signed_message":"open_graph_event_sha256_bytes","signed_at":"2026-05-30T18:22:40.711153Z"},"content_sha256":"14b2731c770850064ad61100e0db88ef35bc5b59f7fa2b9c7cb2ebc1923995ad","schema_version":"1.0","event_id":"sha256:14b2731c770850064ad61100e0db88ef35bc5b59f7fa2b9c7cb2ebc1923995ad"}],"timestamp_proofs":[],"mirror_hints":[{"mirror_type":"https","name":"Pith Resolver","base_url":"https://pith.science","bundle_url":"https://pith.science/pith/R66ASXLNXF2JI2YUWLY3A2C53S/bundle.json","state_url":"https://pith.science/pith/R66ASXLNXF2JI2YUWLY3A2C53S/state.json","well_known_bundle_url":"https://pith.science/.well-known/pith/R66ASXLNXF2JI2YUWLY3A2C53S/bundle.json","status":"primary"}],"public_keys":[{"key_id":"pith-v1-2026-05","algorithm":"ed25519","format":"raw","public_key_b64":"stVStoiQhXFxp4s2pdzPNoqVNBMojDU/fJ2db5S3CbM=","public_key_hex":"b2d552b68890857171a78b36a5dccf368a953413288c353f7c9d9d6f94b709b3","fingerprint_sha256_b32_first128bits":"RVFV5Z2OI2J3ZUO7ERDEBCYNKS","fingerprint_sha256_hex":"8d4b5ee74e4693bcd1df2446408b0d54","rotates_at":null,"url":"https://pith.science/pith-signing-key.json","notes":"Pith uses this Ed25519 key to sign canonical record SHA-256 digests. Verify with: ed25519_verify(public_key, message=canonical_sha256_bytes, signature=base64decode(signature_b64))."}],"merge_version":"pith-open-graph-merge-v1","built_at":"2026-05-30T18:22:40Z","links":{"resolver":"https://pith.science/pith/R66ASXLNXF2JI2YUWLY3A2C53S","bundle":"https://pith.science/pith/R66ASXLNXF2JI2YUWLY3A2C53S/bundle.json","state":"https://pith.science/pith/R66ASXLNXF2JI2YUWLY3A2C53S/state.json","well_known_bundle":"https://pith.science/.well-known/pith/R66ASXLNXF2JI2YUWLY3A2C53S/bundle.json"},"state":{"state_type":"pith_open_graph_state","state_version":"1.0","pith_number":"pith:2018:R66ASXLNXF2JI2YUWLY3A2C53S","merge_version":"pith-open-graph-merge-v1","event_count":2,"valid_event_count":2,"invalid_event_count":0,"equivocation_count":0,"current":{"canonical_record":{"metadata":{"abstract_canon_sha256":"20563c9bdd8e080078db429906eb54bcd1d85bc55d61aba72d3c0cf97ddd66eb","cross_cats_sorted":[],"license":"http://arxiv.org/licenses/nonexclusive-distrib/1.0/","primary_cat":"cs.CR","submitted_at":"2018-09-01T09:10:53Z","title_canon_sha256":"20807e212463271b6ea550618159a29ec478389a17001fd574d9fa9fce4a108d"},"schema_version":"1.0","source":{"id":"1809.00141","kind":"arxiv","version":1}},"source_aliases":[{"alias_kind":"arxiv","alias_value":"1809.00141","created_at":"2026-05-18T00:06:35Z"},{"alias_kind":"arxiv_version","alias_value":"1809.00141v1","created_at":"2026-05-18T00:06:35Z"},{"alias_kind":"doi","alias_value":"10.48550/arxiv.1809.00141","created_at":"2026-05-18T00:06:35Z"},{"alias_kind":"pith_short_12","alias_value":"R66ASXLNXF2J","created_at":"2026-05-18T12:32:50Z"},{"alias_kind":"pith_short_16","alias_value":"R66ASXLNXF2JI2YU","created_at":"2026-05-18T12:32:50Z"},{"alias_kind":"pith_short_8","alias_value":"R66ASXLN","created_at":"2026-05-18T12:32:50Z"}],"graph_snapshots":[{"event_id":"sha256:14b2731c770850064ad61100e0db88ef35bc5b59f7fa2b9c7cb2ebc1923995ad","target":"graph","created_at":"2026-05-18T00:06:35Z","signer":{"key_id":"pith-v1-2026-05","public_key_fingerprint":"8d4b5ee74e4693bcd1df2446408b0d54","signer_id":"pith.science","signer_type":"pith_registry"},"payload":{"graph_snapshot":{"author_claims":{"count":0,"snapshot_sha256":"258153158e38e3291e3d48162225fcdb2d5a3ed65a07baac614ab91432fd4f57","strong_count":0},"builder_version":"pith-number-builder-2026-05-17-v1","claims":{"count":0,"items":[],"snapshot_sha256":"258153158e38e3291e3d48162225fcdb2d5a3ed65a07baac614ab91432fd4f57"},"formal_canon":{"evidence_count":0,"snapshot_sha256":"258153158e38e3291e3d48162225fcdb2d5a3ed65a07baac614ab91432fd4f57"},"paper":{"abstract_excerpt":"While most security projects have focused on fending off attacks coming from outside the organizational boundaries, a real threat has arisen from the people who are inside those perimeter protections. Insider threats have shown their power by hugely affecting national security, financial stability, and the privacy of many thousands of people. What is in the news is the tip of the iceberg, with much more going on under the radar, and some threats never being detected. We propose a hybrid framework based on graphical analysis and anomaly detection approaches, to combat this severe cybersecurity ","authors_text":"Anagi Gamachchi, Li Sun, Serdar Boztas","cross_cats":[],"headline":"","license":"http://arxiv.org/licenses/nonexclusive-distrib/1.0/","primary_cat":"cs.CR","submitted_at":"2018-09-01T09:10:53Z","title":"A Graph Based Framework for Malicious Insider Threat Detection"},"references":{"count":0,"internal_anchors":0,"resolved_work":0,"sample":[],"snapshot_sha256":"258153158e38e3291e3d48162225fcdb2d5a3ed65a07baac614ab91432fd4f57"},"source":{"id":"1809.00141","kind":"arxiv","version":1},"verdict":{"created_at":null,"id":null,"model_set":{},"one_line_summary":"","pipeline_version":null,"pith_extraction_headline":"","strongest_claim":"","weakest_assumption":""}},"verdict_id":null}}],"author_attestations":[],"timestamp_anchors":[],"storage_attestations":[],"citation_signatures":[],"replication_records":[],"corrections":[],"mirror_hints":[],"record_created":{"event_id":"sha256:4b5903341c5d4134d86f912656759f8846db0cd897003998ac647607d3e8bef5","target":"record","created_at":"2026-05-18T00:06:35Z","signer":{"key_id":"pith-v1-2026-05","public_key_fingerprint":"8d4b5ee74e4693bcd1df2446408b0d54","signer_id":"pith.science","signer_type":"pith_registry"},"payload":{"attestation_state":"computed","canonical_record":{"metadata":{"abstract_canon_sha256":"20563c9bdd8e080078db429906eb54bcd1d85bc55d61aba72d3c0cf97ddd66eb","cross_cats_sorted":[],"license":"http://arxiv.org/licenses/nonexclusive-distrib/1.0/","primary_cat":"cs.CR","submitted_at":"2018-09-01T09:10:53Z","title_canon_sha256":"20807e212463271b6ea550618159a29ec478389a17001fd574d9fa9fce4a108d"},"schema_version":"1.0","source":{"id":"1809.00141","kind":"arxiv","version":1}},"canonical_sha256":"8fbc095d6db974946b14b2f1b0685ddcb04c7815b2361418d273e2937d4d017e","receipt":{"algorithm":"ed25519","builder_version":"pith-number-builder-2026-05-17-v1","canonical_sha256":"8fbc095d6db974946b14b2f1b0685ddcb04c7815b2361418d273e2937d4d017e","first_computed_at":"2026-05-18T00:06:35.971531Z","key_id":"pith-v1-2026-05","kind":"pith_receipt","last_reissued_at":"2026-05-18T00:06:35.971531Z","public_key_fingerprint":"8d4b5ee74e4693bcd1df2446408b0d54","receipt_version":"0.3","signature_b64":"deNwbDvUi0r2oQxNihhUNLEz2ehfh24+rvZ0dEcWjr476Z5xJBQEklU3ULSaJFAg61K609BrJTAoexT/Pj+zDA==","signature_status":"signed_v1","signed_at":"2026-05-18T00:06:35.971957Z","signed_message":"canonical_sha256_bytes"},"source_id":"1809.00141","source_kind":"arxiv","source_version":1}}},"equivocations":[],"invalid_events":[],"applied_event_ids":["sha256:4b5903341c5d4134d86f912656759f8846db0cd897003998ac647607d3e8bef5","sha256:14b2731c770850064ad61100e0db88ef35bc5b59f7fa2b9c7cb2ebc1923995ad"],"state_sha256":"f18b59670d55f3afa35455cf3f1723dad0928f5d8fea325b1da845a2dc9c5208"},"bundle_signature":{"signature_status":"signed_v1","algorithm":"ed25519","key_id":"pith-v1-2026-05","public_key_fingerprint":"8d4b5ee74e4693bcd1df2446408b0d54","signature_b64":"lTGWLFTeHh24LOs/zPwIKbeHdnvGJb+qeblwiqfF27SMdiLKVIbPH0Yk2kKtiLR+SPIXgoH48TccWA3zw/zVDg==","signed_message":"bundle_sha256_bytes","signed_at":"2026-05-30T18:22:40.713990Z","bundle_sha256":"932ab71ffe6ae5f5a4b54647966a58bb84fc937ab6e9e089fb84b504ff37d740"}}