Adding event reconstruction to a Cloud Forensic Readiness model
作者: Victor R. Kebande , H.S. Venter
DOI: 10.1109/ISSA.2015.7335050
关键词: Digital forensics 、 Degree of certainty 、 Focus (computing) 、 Event reconstruction 、 Computer security 、 Event (computing) 、 Computer science 、 Cloud computing 、 Process (engineering) 、 Digital evidence 、 Data science
摘要: During post-event response, proactive forensics is of critical importance in any organisation when conducting digital forensic investigations cloud environments. However, there exist no reliable event reconstruction processes the that can help analysis and examination Digital Evidence (DE) aspects, during Forensic Readiness (DFR) process, as defined standard ISO/IEC 27043:2015. The problem this paper addresses lack an easy way performing process forensically ready preparation a Investigation (DFI). DFR approaches, helps pre-analysis characteristics potential security incidents. As result, authors have proposed Enhanced Cloud (ECFR) model with support future investigative technologies degree certainty. We also propose algorithm shows methodology used to reconstruct events ECFR. main focus work examine addition initially (CFR) model, by providing more enhanced detailed readiness model.
sci-hub.se 参考文章(10)
Robert Rowlingson, A Ten Step Process for Forensic Readiness. International Journal of Digital Evidence. ,vol. 2, ,(2004)
Victor R. Kebande, Hein. S. Venter, A cognitive approach for botnet detection using Artificial Immune System in the cloud Cyber Security, Cyber Warfare and Digital Forensic (CyberSec), 2014 Third International Conference on. pp. 52- 57 ,(2014) , 10.1109/CYBERSEC.2014.6913971
Aleksandar Valjarevic, H.S. Venter, Implementation guidelines for a harmonised digital forensic investigation readiness process model information security for south africa. pp. 1- 9 ,(2013) , 10.1109/ISSA.2013.6641041
Christopher Hargreaves, Jonathan Patterson, An automated timeline reconstruction approach for digital forensic investigations Digital Investigation. ,vol. 9, ,(2012) , 10.1016/J.DIIN.2012.05.006
Yi-Ching Liao, Hanno Langweg, Resource-Based Event Reconstruction of Digital Crime Scenes intelligence and security informatics. pp. 129- 136 ,(2014) , 10.1109/JISIC.2014.28
Eugene H. Spafford, Brian D. Carrier, An Event-Based Digital Forensic Investigation Framework Digital Investigation. ,(2004)
Victor R Kebande, Hein S Venter, A Cloud Forensic Readiness Model Using a Botnet as a Service The International Conference on Digital Security and Forensics (DigitalSec2014). pp. 23- 32 ,(2014)
Brian D. Carrier, Eugene H. Spafford, Defining event reconstruction of digital crime scenes. Journal of Forensic Sciences. ,vol. 49, pp. 1291- 1298 ,(2004) , 10.1520/JFS2004127
Victor R. Kebande, H.S. Venter, On digital forensic readiness in the cloud using a distributed agent-based solution : issues and challenges Australian Journal of Forensic Sciences. ,vol. 50, pp. 209- 238 ,(2018) , 10.1080/00450618.2016.1194473
Tom Bevel, Ross M. Gardner, Bloodstain Pattern Analysis: With an Introduction to Crime Scene Reconstruction ,(1997)