On-the-spot digital investigation by means of LDFS: Live Data Forensic System
DC Field | Value | Language |
---|---|---|
dc.contributor.author | Lim, Kyung-Soo | - |
dc.contributor.author | Savoldi, Antonio | - |
dc.contributor.author | Lee, Changhoon | - |
dc.contributor.author | Lee, Sangjin | - |
dc.date.accessioned | 2021-09-06T23:15:19Z | - |
dc.date.available | 2021-09-06T23:15:19Z | - |
dc.date.created | 2021-06-18 | - |
dc.date.issued | 2012-01 | - |
dc.identifier.issn | 0895-7177 | - |
dc.identifier.uri | https://scholar.korea.ac.kr/handle/2021.sw.korea/109116 | - |
dc.description.abstract | The ever growing capacity of hard drives poses a severe problem to forensic practitioners who strive to deal with digital investigations in a timely manner. Therefore, the on-the-spot digital investigation paradigm is emerging as a new standard to select only that evidence which is important for the case being investigated. In the light of this issue, we propose an incident response tool which is able to speed up the investigation by finding crime-related evidence in a faster way compared with the traditional state-of-the-art post-mortem analysis tools. The tool we have implemented is called Live Data Forensic System (LDFS). LDFS is an on-the-spot live forensic toolkit, which can be used to collect and analyze relevant data in a timely manner and to perform a triage of a Microsoft Windows-based system. Particularly, LDFS demonstrates the ability of the tool to automatically gather evidence according to general categories, such as live data, Windows Registry, file system metadata, instant messaging services clients, web browser artifacts, memory dump and page file. In addition, unified analysis tools of ELF provide a fast and effective way to obtain a picture of the system at the time the analysis is done. The result of the analysis from different categories can be easily correlated to provide useful clues for the sake of the investigation. (C) 2011 Elsevier Ltd. All rights reserved. | - |
dc.language | English | - |
dc.language.iso | en | - |
dc.publisher | PERGAMON-ELSEVIER SCIENCE LTD | - |
dc.title | On-the-spot digital investigation by means of LDFS: Live Data Forensic System | - |
dc.type | Article | - |
dc.contributor.affiliatedAuthor | Lee, Sangjin | - |
dc.identifier.doi | 10.1016/j.mcm.2011.05.019 | - |
dc.identifier.scopusid | 2-s2.0-82755182926 | - |
dc.identifier.wosid | 000296919500024 | - |
dc.identifier.bibliographicCitation | MATHEMATICAL AND COMPUTER MODELLING, v.55, no.1-2, pp.223 - 240 | - |
dc.relation.isPartOf | MATHEMATICAL AND COMPUTER MODELLING | - |
dc.citation.title | MATHEMATICAL AND COMPUTER MODELLING | - |
dc.citation.volume | 55 | - |
dc.citation.number | 1-2 | - |
dc.citation.startPage | 223 | - |
dc.citation.endPage | 240 | - |
dc.type.rims | ART | - |
dc.type.docType | Article | - |
dc.description.journalClass | 1 | - |
dc.description.journalRegisteredClass | scie | - |
dc.description.journalRegisteredClass | scopus | - |
dc.relation.journalResearchArea | Computer Science | - |
dc.relation.journalResearchArea | Mathematics | - |
dc.relation.journalWebOfScienceCategory | Computer Science, Interdisciplinary Applications | - |
dc.relation.journalWebOfScienceCategory | Computer Science, Software Engineering | - |
dc.relation.journalWebOfScienceCategory | Mathematics, Applied | - |
dc.subject.keywordAuthor | On-the-spot digital investigation | - |
dc.subject.keywordAuthor | Live forensics | - |
dc.subject.keywordAuthor | Automated digital investigation process | - |
Items in ScholarWorks are protected by copyright, with all rights reserved, unless otherwise indicated.
(02841) 서울특별시 성북구 안암로 14502-3290-1114
COPYRIGHT © 2021 Korea University. All Rights Reserved.
Certain data included herein are derived from the © Web of Science of Clarivate Analytics. All rights reserved.
You may not copy or re-distribute this material in whole or in part without the prior written consent of Clarivate Analytics.