Embedding Hercule Poirot in Networks: Addressing Inefficiencies in Digital Forensic Investigations
作者: Barbara Endicott-Popovsky , Deborah A. Frincke
DOI: 10.1007/978-3-540-73216-7_41
关键词:
摘要: Forensic investigations on networks are not scalable in terms of time and money [1]. Those that do occur consume months attention from the very experts who should be investing more productive activities, like designing improving network performance Given these circumstances, organizations often must select which cases to pursue, ignoring many could prosecuted, if allowed. Recognizing exponential growth number crimes employ computers become subject digital evidence procedures, researchers practitioners, alike, have called for embedding forensics-essentially integrating cognitive skills a detective into [2, 3, 4]. The premise is level effort required document incidents can thus reduced, significantly. This paper introduces what technical factors might reflect those detecting skills, leading solutions offset inefficiencies current practice.
springer.com
osti.gov
sci-hub.st 参考文章(11)
Deborah A. Frincke, Barbara E. Endicott-Popovsky, Adding the Fourth "R": A Systems Approach to Solving the Hacker's Arms Race IEEE Computer Society, Los Alamitos, CA, United States(US).. ,(2006)
Daniel J. Ryan, Barbara Popovsky, Deborah A. Frincke, The New Zealand Hacker Case: A Post Mortem Oxford Internet Institute, Oxford, United Kingdom.. ,(2005)
R. Power, CSI/FBI computer crime and security survey Computer Security Journal. ,vol. 17, pp. 20- 51 ,(2001)
Pierre Girard, Jean-Luc Giraud, Software attacks on smart cards Information Security Technical Report. ,vol. 8, pp. 55- 66 ,(2003) , 10.1016/S1363-4127(03)00106-7
Sarah Mocas, Building theoretical underpinnings for digital forensics research Digital Investigation. ,vol. 1, pp. 61- 68 ,(2004) , 10.1016/J.DIIN.2003.12.004
R. J. Ellison, D. A. Fisher, R. C. Linger, H. F. Lipson, T. Longstaff, Survivable Network Systems: An Emerging Discipline Defense Technical Information Center. ,(1997) , 10.21236/ADA341963
B.E. Endicott-Popovsky, D.A. Frincke, Embedding Forensic Capabilities into Networks: Addressing Inefficiencies in Digital Forensics Investigations 2006 IEEE Information Assurance Workshop. pp. 133- 139 ,(2006) , 10.1109/IAW.2006.1652087
Barbara E. Endicott-Popovsky, J.D. Fluckiger, Deborah A. Frincke, Establishing Tap Reliability in Expert Witness Testimony: Using Scenarios to Identify Calibration Needs Second International Workshop on Systematic Approaches to Digital Forensic Engineering (SADFE'07). pp. 131- 146 ,(2007) , 10.1109/SADFE.2007.10
Eugene H. Spafford, Brian D. Carrier, Getting Physical with the Digital Investigation Process International Journal of Digital Evidence. ,vol. 2, ,(2003)
Michael I. Weintraub, Expert witness testimony: An update. Neurologic Clinics. ,vol. 17, pp. 363- 369 ,(1999) , 10.1016/S0733-8619(05)70139-0