Title :
Towards More Trustable Log Files for Digital Forensics by Means of “Trusted Computing”
Author :
Benjamin Böck;David Huemer;A. Min Tjoa
Author_Institution :
Secure Bus. Austria, Vienna, Austria
Abstract :
Trustable log data is essential in digital forensic investigations in order to allow reliable reconstruction of events. Existing solutions do not provide adequate protection, exposing the log-producing application to software-based attacks. In this paper we provide a solution based on Trusted Computing using a Trusted Platform Module (TPM) and AMD’s Secure Virtual Machine technology (SVM). While current solutions only protect against manipulation of existing logs, we go one step further by establishing hardware-based trust in the log producing application. Our solution ensures confidentiality, integrity and non-repudiation during creation, storage and transmission of log data.
Keywords :
"Digital forensics","Application software","Authentication","Protection","Hardware","Virtual machining","Support vector machines","Public key cryptography","Computer networks","Interactive systems"
Conference_Titel :
Advanced Information Networking and Applications (AINA), 2010 24th IEEE International Conference on
Print_ISBN :
978-1-4244-6695-5
DOI :
10.1109/AINA.2010.26
