Autoencoders for Insider Threat Detection of Healthcare Records

Ankita R. Deshpande; G. Ignisha Rajathi; J. Mohanalin; K. A. Yashaswini; Raghavendra M. Devadas; K. Rama Krishna; Kaipa Sandhya; Vani Hiremani

doi:10.1007/978-3-032-08246-6_35

Autoencoders for Insider Threat Detection of Healthcare Records

Ankita R. Deshpande^*
, G. Ignisha Rajathi
, J. Mohanalin
, K. A. Yashaswini
, Raghavendra M. Devadas
, K. Rama Krishna
, Kaipa Sandhya
, Vani Hiremani

^*Corresponding author for this work

School of Computer Engineering

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution

Abstract

Digitization of healthcare records has introduced challenges to data privacy, security and compliance. Sensitive information contained in the records make them prime targets for cyber threats, unauthorized access and data breaches. Often these acts are committed by malicious insider actors who have access to the records. This paper explores a possible way of identifying the insider threats by analyzing the activity of an actor over a period of time. We propose using Machine Learning, specifically Autoencoders and Variational Autoencoders to detect abnormal activity. We have used the Computer Emergency Response Team Insider Threat Dataset as a test dataset to train the models. We convert the textual data into vector form and use Long short-term memory to extract, reduce the number of features and reconstruct the inputs. We evaluate the performance and accuracy of Autoencoders and Variational Autoencoders by comparing the time taken to train the model on the sample dataset and the full dataset, and the reconstruction errors of the two methods. We conclude that the Variational Autoencoder is better suited for threat detection as it trains faster and has lesser reconstruction errors.

Original language	English
Title of host publication	Smart Computing Paradigms
Subtitle of host publication	Intelligent Solutions for Sustainable Wellbeing - Proceedings of 7th International Conference on Smart Computing and Informatics, SCI 2025
Editors	Vikrant Bhateja, Angela Lee Siew Hoong, Yeoh Ging Sun William, Muhammad Ehsan Rana
Publisher	Springer Science and Business Media Deutschland GmbH
Pages	434-445
Number of pages	12
ISBN (Print)	9783032082459
DOIs	https://doi.org/10.1007/978-3-032-08246-6_35
Publication status	Published - 2026
Event	7th International Conference on Smart Computing and Informatics, SCI 2025 - Kuala Lumpur, Malaysia Duration: 08-04-2025 → 09-04-2025

Publication series

Name	Lecture Notes in Networks and Systems
Volume	1684 LNNS
ISSN (Print)	2367-3370
ISSN (Electronic)	2367-3389

Conference

Conference	7th International Conference on Smart Computing and Informatics, SCI 2025
Country/Territory	Malaysia
City	Kuala Lumpur
Period	08-04-25 → 09-04-25

All Science Journal Classification (ASJC) codes

Control and Systems Engineering
Signal Processing
Computer Networks and Communications

Access to Document

10.1007/978-3-032-08246-6_35

Cite this

Deshpande, A. R., Ignisha Rajathi, G., Mohanalin, J., Yashaswini, K. A., Devadas, R. M., Rama Krishna, K., Sandhya, K., & Hiremani, V. (2026). Autoencoders for Insider Threat Detection of Healthcare Records. In V. Bhateja, A. L. S. Hoong, Y. G. S. William, & M. E. Rana (Eds.), Smart Computing Paradigms: Intelligent Solutions for Sustainable Wellbeing - Proceedings of 7th International Conference on Smart Computing and Informatics, SCI 2025 (pp. 434-445). (Lecture Notes in Networks and Systems; Vol. 1684 LNNS). Springer Science and Business Media Deutschland GmbH. https://doi.org/10.1007/978-3-032-08246-6_35

Deshpande, Ankita R. ; Ignisha Rajathi, G. ; Mohanalin, J. et al. / Autoencoders for Insider Threat Detection of Healthcare Records. Smart Computing Paradigms: Intelligent Solutions for Sustainable Wellbeing - Proceedings of 7th International Conference on Smart Computing and Informatics, SCI 2025. editor / Vikrant Bhateja ; Angela Lee Siew Hoong ; Yeoh Ging Sun William ; Muhammad Ehsan Rana. Springer Science and Business Media Deutschland GmbH, 2026. pp. 434-445 (Lecture Notes in Networks and Systems).

@inproceedings{ac99d45240ea44a1b1a5b57b86d777e9,

title = "Autoencoders for Insider Threat Detection of Healthcare Records",

abstract = "Digitization of healthcare records has introduced challenges to data privacy, security and compliance. Sensitive information contained in the records make them prime targets for cyber threats, unauthorized access and data breaches. Often these acts are committed by malicious insider actors who have access to the records. This paper explores a possible way of identifying the insider threats by analyzing the activity of an actor over a period of time. We propose using Machine Learning, specifically Autoencoders and Variational Autoencoders to detect abnormal activity. We have used the Computer Emergency Response Team Insider Threat Dataset as a test dataset to train the models. We convert the textual data into vector form and use Long short-term memory to extract, reduce the number of features and reconstruct the inputs. We evaluate the performance and accuracy of Autoencoders and Variational Autoencoders by comparing the time taken to train the model on the sample dataset and the full dataset, and the reconstruction errors of the two methods. We conclude that the Variational Autoencoder is better suited for threat detection as it trains faster and has lesser reconstruction errors.",

author = "Deshpande, \{Ankita R.\} and \{Ignisha Rajathi\}, G. and J. Mohanalin and Yashaswini, \{K. A.\} and Devadas, \{Raghavendra M.\} and \{Rama Krishna\}, K. and Kaipa Sandhya and Vani Hiremani",

note = "Publisher Copyright: {\textcopyright} The Author(s), under exclusive license to Springer Nature Switzerland AG 2026.; 7th International Conference on Smart Computing and Informatics, SCI 2025 ; Conference date: 08-04-2025 Through 09-04-2025",

year = "2026",

doi = "10.1007/978-3-032-08246-6\_35",

language = "English",

isbn = "9783032082459",

series = "Lecture Notes in Networks and Systems",

publisher = "Springer Science and Business Media Deutschland GmbH",

pages = "434--445",

editor = "Vikrant Bhateja and Hoong, \{Angela Lee Siew\} and William, \{Yeoh Ging Sun\} and Rana, \{Muhammad Ehsan\}",

booktitle = "Smart Computing Paradigms",

address = "Germany",

}

Deshpande, AR, Ignisha Rajathi, G, Mohanalin, J, Yashaswini, KA, Devadas, RM, Rama Krishna, K, Sandhya, K & Hiremani, V 2026, Autoencoders for Insider Threat Detection of Healthcare Records. in V Bhateja, ALS Hoong, YGS William & ME Rana (eds), Smart Computing Paradigms: Intelligent Solutions for Sustainable Wellbeing - Proceedings of 7th International Conference on Smart Computing and Informatics, SCI 2025. Lecture Notes in Networks and Systems, vol. 1684 LNNS, Springer Science and Business Media Deutschland GmbH, pp. 434-445, 7th International Conference on Smart Computing and Informatics, SCI 2025, Kuala Lumpur, Malaysia, 08-04-25. https://doi.org/10.1007/978-3-032-08246-6_35

Autoencoders for Insider Threat Detection of Healthcare Records. / Deshpande, Ankita R.; Ignisha Rajathi, G.; Mohanalin, J. et al.
Smart Computing Paradigms: Intelligent Solutions for Sustainable Wellbeing - Proceedings of 7th International Conference on Smart Computing and Informatics, SCI 2025. ed. / Vikrant Bhateja; Angela Lee Siew Hoong; Yeoh Ging Sun William; Muhammad Ehsan Rana. Springer Science and Business Media Deutschland GmbH, 2026. p. 434-445 (Lecture Notes in Networks and Systems; Vol. 1684 LNNS).

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution

TY - GEN

T1 - Autoencoders for Insider Threat Detection of Healthcare Records

AU - Deshpande, Ankita R.

AU - Ignisha Rajathi, G.

AU - Mohanalin, J.

AU - Yashaswini, K. A.

AU - Devadas, Raghavendra M.

AU - Rama Krishna, K.

AU - Sandhya, Kaipa

AU - Hiremani, Vani

N1 - Publisher Copyright: © The Author(s), under exclusive license to Springer Nature Switzerland AG 2026.

PY - 2026

Y1 - 2026

N2 - Digitization of healthcare records has introduced challenges to data privacy, security and compliance. Sensitive information contained in the records make them prime targets for cyber threats, unauthorized access and data breaches. Often these acts are committed by malicious insider actors who have access to the records. This paper explores a possible way of identifying the insider threats by analyzing the activity of an actor over a period of time. We propose using Machine Learning, specifically Autoencoders and Variational Autoencoders to detect abnormal activity. We have used the Computer Emergency Response Team Insider Threat Dataset as a test dataset to train the models. We convert the textual data into vector form and use Long short-term memory to extract, reduce the number of features and reconstruct the inputs. We evaluate the performance and accuracy of Autoencoders and Variational Autoencoders by comparing the time taken to train the model on the sample dataset and the full dataset, and the reconstruction errors of the two methods. We conclude that the Variational Autoencoder is better suited for threat detection as it trains faster and has lesser reconstruction errors.

AB - Digitization of healthcare records has introduced challenges to data privacy, security and compliance. Sensitive information contained in the records make them prime targets for cyber threats, unauthorized access and data breaches. Often these acts are committed by malicious insider actors who have access to the records. This paper explores a possible way of identifying the insider threats by analyzing the activity of an actor over a period of time. We propose using Machine Learning, specifically Autoencoders and Variational Autoencoders to detect abnormal activity. We have used the Computer Emergency Response Team Insider Threat Dataset as a test dataset to train the models. We convert the textual data into vector form and use Long short-term memory to extract, reduce the number of features and reconstruct the inputs. We evaluate the performance and accuracy of Autoencoders and Variational Autoencoders by comparing the time taken to train the model on the sample dataset and the full dataset, and the reconstruction errors of the two methods. We conclude that the Variational Autoencoder is better suited for threat detection as it trains faster and has lesser reconstruction errors.

UR - https://www.scopus.com/pages/publications/105028363896

UR - https://www.scopus.com/pages/publications/105028363896#tab=citedBy

U2 - 10.1007/978-3-032-08246-6_35

DO - 10.1007/978-3-032-08246-6_35

M3 - Conference contribution

AN - SCOPUS:105028363896

SN - 9783032082459

T3 - Lecture Notes in Networks and Systems

SP - 434

EP - 445

BT - Smart Computing Paradigms

A2 - Bhateja, Vikrant

A2 - Hoong, Angela Lee Siew

A2 - William, Yeoh Ging Sun

A2 - Rana, Muhammad Ehsan

PB - Springer Science and Business Media Deutschland GmbH

T2 - 7th International Conference on Smart Computing and Informatics, SCI 2025

Y2 - 8 April 2025 through 9 April 2025

ER -

Deshpande AR, Ignisha Rajathi G, Mohanalin J, Yashaswini KA, Devadas RM, Rama Krishna K et al. Autoencoders for Insider Threat Detection of Healthcare Records. In Bhateja V, Hoong ALS, William YGS, Rana ME, editors, Smart Computing Paradigms: Intelligent Solutions for Sustainable Wellbeing - Proceedings of 7th International Conference on Smart Computing and Informatics, SCI 2025. Springer Science and Business Media Deutschland GmbH. 2026. p. 434-445. (Lecture Notes in Networks and Systems). doi: 10.1007/978-3-032-08246-6_35

Autoencoders for Insider Threat Detection of Healthcare Records

Abstract

Publication series

Conference

All Science Journal Classification (ASJC) codes

Access to Document

Other files and links

Fingerprint

Cite this