The Cloud is an emerging technology that offers democratic access to computing power, data storage, software and services often for a small pay-per-use cost. Like any new technology the Cloud has potential for great good, but in the wrong hands can facilitate criminal activity. Within this project (Combatting cRiminals In The Cloud) we seek to understand the different types of crime that can happen in the Cloud, build systems that will allow the detection of this criminal behaviour and enable the use of digital evidence to lead to successful prosecution of Cloud crime perpetrators.
In order to achieve this goal we are forming a truly inter-disciplinary research centre leveraging the strengths of both Durham and Newcastle Universities. Bringing together the strengths of Durham in criminology, law and ethics along with the strengths of Newcastle in the areas of (computer) systems security, artificial intelligence, data mining and psychology. We are convinced that Cloud crime can only be detected and tackled by such a truly inter-disciplinary centre. Such a centre will actively create the research foundations for successful computational methods in crime detection combined with good user engagement, generating research that can cross disciplines and directly inform public policy, police and prosecution practices and transform public understanding of Cloud crime.
This will involve development of a true understanding of what crime can be conducted on the Cloud. Facilitated through the development of cloud crime scripts, defining the activities of a criminal act, which will aid discussion between the different disciplines and must be presentable in a format understandable by our key stakeholders: Cloud providers/users/developers, law enforcement agencies and the criminal justice system.
The detection of criminal activity in the cloud requires the integration of heterogeneous sensors, aggregation and analysis techniques, where we draw upon existing expertise in cloud security assurance (Gross, IBM), host monitoring and anomaly detection Ben-ware (McGough, Wall, DSTL), and fuzzy search on unstructured data, intrusion detection and analysis (Nifty, Yan). We propose combining the systems expertise with complementary techniques in artificial intelligence, including data mining (McGough), behaviour machine learning, anomaly detection (Ploetz) and hierarchical machine learning and knowledge extraction (Bacardit).
This portfolio gives raise to multiple means to derive and combine intelligence, present bespoke visualizations, situational awareness, grammar or language generation for the cloud crime scripts. Thus allowing the centre to tailor the intelligence, and its presentation, to a given stakeholders needs. We propose using additional human computation and crowd sourcing techniques to reduce the number of situations where the system incorrectly identifies a criminal act. The use of human computation and crowd sourcing will also allow us to hone the machine learning system, developing a suite of hybrid techniques that, together, will improve cloud crime detection but will frame the results in such a way as to support subsequent crown prosecution processes. This latter achievement will require expertise in the disciplines of criminology, forensic sciences, law and ethics and will require collaboration with police forces throughout the UK and Action Fraud.
In addition we will bring in relevant work around (i) forensic psychology (Oxburgh) that will deliver case-sensitive interview and investigative procedures for witnesses, victims and investigators; (ii) prosecution procedures that will ensure that evidence going to court is not compromised by intelligence gathering methodologies and (iii) prevention of underreporting of Cloud crime and improvement of public understanding and confidence.
- September 2015 – August 2020
- EPSRC (EP/M020576/1)
- Funded value:
- Thomas Rainer Gross, Newcastle University (Principal Investigator)
- Gavin Eric Oxburgh, Newcastle University (Co-Investigator)
- Thomas Ploetz, Newcastle University (Co-Investigator)
- David Wall, University of Leeds (Co-Investigator)
- Jaume Bacardit, Newcastle University (Co-Investigator)
- Aad Van Moorsel, Newcastle University (Co-Investigator)
- Jeff Yan, Lancaster University (Co-Investigator)
- Andrew Stephen McGough, Newcastle University (Co-Investigator)
NORTH Lab investigators
I hold a Chair in Applied Psychology at Northumbria University and am a Visiting Professor at Newcastle University. My work primarily addresses issues of identity, trust and security in new social media, seeking answers to three main questions: Why and when do we feel secure in disclosing sensitive identity information about ourselves? What makes us trust an electronic message? How and when do we seek to protect our privacy?
In the last five years, I’ve secured over £2m in research funding, have published over forty articles on human perceptions of trust, privacy and security in computer-mediated communication and have developed, with colleagues, a new model of health advice-seeking online. I’m one of the founder members of the UK's Research Institute in the Science of Cybersecurity, funded by GCHQ in association with RCUK's Global Uncertainty Programme and my most recent research awards address both usable and inclusive privacy and security.
My latest projects (see projects page) concern cybersecurity across the lifespan (cSALSA), the human side of cyber and cloud crime (CRITICAL) and attitudes and decision-making behaviours around cyberinsurance (CYBECO). I’m also a co-investigator on the Digital Economy Research Centre (DERC) where I’ve been exploring ways to democratise context-relevant data collection and analysis and explore the design of digital platforms for social action.View Profile Send Email