Universiti Teknologi Malaysia Institutional Repository

Centralizing network digital evidences

Abbas, M. and Sabeil, E. and Abdul Manaf, Azizah (2011) Centralizing network digital evidences. In: Communications in Computer and Information Science. Communications in Computer and Information Science, 2 . Springer Berlin Heidelberg, London, pp. 310-320. ISBN 978-364222190-3

[img] PDF (Abstract)
68Kb

Official URL: http://dx.doi.org/10.1007/978-3-642-22191-0_28

Abstract

The forensic community has long acknowledged only investigating operating system (computer) for the sake of discovering digital crimes secrets. However, these techniques are not reliable anymore in case when to be used to achieve investigation aims since the data of the operating system can be tampered with by an attacker himself. Hence, focusing on alternative fields; that is network forensic comes into picture. In this paper, a methodology to collect and centralize network digital evidences in order to come up with the reliable investigation is introduced. In a case study, the laboratory is designed and set up to examine the proposed solution toward network digital evidences and centralize them as well. Finally, the operating system forensic weaknesses are obviously proven, and then a successful solution to these shortcomings through collecting and centralizing network digital evidences to be used for the investigation is presented.

Item Type:Book Section
Uncontrolled Keywords:botnets, computer forensic, digital crime investigation, digital forensic, malware, network forensic
Subjects:Q Science > QA Mathematics > QA76 Computer software
Divisions:Others
ID Code:28894
Deposited By: Liza Porijo
Deposited On:04 Dec 2012 00:31
Last Modified:04 Dec 2012 00:39

Repository Staff Only: item control page