DocumentCode :
175356
Title :
Resource-Based Event Reconstruction of Digital Crime Scenes
Author :
Yi-Ching Liao ; Langweg, Hanno
Author_Institution :
Norwegian Inf. Security Lab., Gjovik Univ. Coll., Gjovik, Norway
fYear :
2014
fDate :
24-26 Sept. 2014
Firstpage :
129
Lastpage :
136
Abstract :
To ensure that the potential evidence is readily available in an acceptable form when an incident or a crime occurs, we propose a resource-based event reconstruction prototype that corresponds to different phases of digital forensics framework, and demonstrate its feasibility by assessing the applicability of existing open-source applications to the proposed prototype. The feasibility study results show that the proposed prototype can enhance the capability of an organization for collecting, preserving, protecting, and analysing digital evidence by regarding system resources as an evidence source and system calls as digital events.
Keywords :
digital forensics; image reconstruction; public domain software; digital crime scenes; digital events; digital evidence; digital forensics framework; evidence source; open-source applications; resource-based event reconstruction; system calls; system resources; Digital forensics; Instruments; Kernel; Privacy; Prototypes; Security;
fLanguage :
English
Publisher :
ieee
Conference_Titel :
Intelligence and Security Informatics Conference (JISIC), 2014 IEEE Joint
Conference_Location :
The Hague
Print_ISBN :
978-1-4799-6363-8
Type :
conf
DOI :
10.1109/JISIC.2014.28
Filename :
6975564
Link To Document :
https://search.ricest.ac.ir/dl/search/defaultta.aspx?DTC=49&DC=175356
بازگشت