• DocumentCode
    3635583
  • Title

    Towards More Trustable Log Files for Digital Forensics by Means of “Trusted Computing”

  • Author

    Benjamin Böck;David Huemer;A. Min Tjoa

  • Author_Institution
    Secure Bus. Austria, Vienna, Austria
  • fYear
    2010
  • Firstpage
    1020
  • Lastpage
    1027
  • Abstract
    Trustable log data is essential in digital forensic investigations in order to allow reliable reconstruction of events. Existing solutions do not provide adequate protection, exposing the log-producing application to software-based attacks. In this paper we provide a solution based on Trusted Computing using a Trusted Platform Module (TPM) and AMD’s Secure Virtual Machine technology (SVM). While current solutions only protect against manipulation of existing logs, we go one step further by establishing hardware-based trust in the log producing application. Our solution ensures confidentiality, integrity and non-repudiation during creation, storage and transmission of log data.
  • Keywords
    "Digital forensics","Application software","Authentication","Protection","Hardware","Virtual machining","Support vector machines","Public key cryptography","Computer networks","Interactive systems"
  • Publisher
    ieee
  • Conference_Titel
    Advanced Information Networking and Applications (AINA), 2010 24th IEEE International Conference on
  • ISSN
    1550-445X
  • Print_ISBN
    978-1-4244-6695-5
  • Type

    conf

  • DOI
    10.1109/AINA.2010.26
  • Filename
    5474823
    • Link To Document
    https://search.isc.ac/dl/search/defaultta.aspx?DTC=49&DC=3635583