Performing an APT Investigation: Using People-Process-Technology-Strategy Model in Digital Triage Forensics

机译：进行APT调查：在数字分流司法鉴定中使用人员-过程-技术-策略模型

获取原文

获取原文并翻译 | 示例

页面导航

摘要
著录项
相似文献
相关主题

摘要

Taiwan has become the frontline in an emerging cyberspace battle. Cyber attacks from different countries are constantly reported during past decades. The incident of Advanced Persistent Threat (APT) is analyzed from the golden triangle components (people, process and technology) to ensure the application of digital forensics. This study presents a novel People-Process-Technology-Strategy (PPTS) model by implementing a triage investigative step to identify evidence dynamics in digital data and essential information in auditing logs. The result of this study is expected to improve APT investigation. The investigation scenario of this proposed methodology is illustrated by applying to some APT incidents in Taiwan.

机译：台湾已成为新兴的网络空间之战的第一线。在过去的几十年中，不断有来自不同国家的网络攻击报道。从金三角组成部分（人员，流程和技术）分析了高级持续威胁（APT）事件，以确保数字取证的应用。这项研究通过实施分流调查步骤来识别数字数据中的证据动态和审核日志中的基本信息，从而提出了一种新颖的“人员-过程-技术-策略”（PPTS）模型。这项研究的结果有望改善APT调查。通过对台湾的一些APT事件进行说明，说明了此提议方法的调查场景。

著录项

来源
《2015 IEEE 39th Annual Computer Software and Applications Conference Workshops》|2015年|47-52|共6页
会议地点 Taichung(CT)
作者
Kao Da-Yu;
展开▼
作者单位

Dept. of Inf. Manage., Central Police Univ., Taoyuan, Taiwan;

展开▼
会议组织
原文格式 PDF
正文语种 eng
中图分类
关键词
cyber security incident; cybercrime investigation; digital evidence; digital forensic practitioner; digital forensics;

机译：网络安全事件;网络犯罪调查;数字证据;数字取证从业人员;数字取证;

相似文献

外文文献
中文文献
专利

1. Triage template pipelines in digital forensic investigations [J] . Richard E. Overill, Jantje A.M. Silomon, Keith A. Roscoe Digital investigation . 2013,第2期

机译：数字取证调查中的分类模板流水线
2. Drone Forensics:A Case Study of Digital Forensic Investigations Conducted on Common Drone Models [J] . Al-Room Khalifa, Iqbal Farkhund, Baker Thar, International journal of digital crime and forensics . 2021,第1期

机译：无人机取证：在普通无人机模型上进行数字法医调查的案例研究
3. A Formal Two Stage Triage Process Model (FTSTPM) for Digital Forensic Practice [J] . Reza Montasari International Journal of Computer Science and Security . 2016,第2期

机译：用于数字取证实践的正式两阶段分流过程模型（FTSTPM）
4. Performing an APT Investigation: Using People-Process-Technology-Strategy Model in Digital Triage Forensics [C] . Kao Da-Yu IEEE Annual Computer Software and Applications Conference Workshops . 2015

机译：执行APT调查：在数字分类取证中使用人的过程 - 技术战略模型
5. The Comprehensive Digital Forensic Investigation Process Model (CDFIPM) for Digital Forensic Practice [D] . Montasari, Reza. 2016

机译：数字法医实践的综合数字法医调查过程模型（CDFIPM）
6. An overview of the digital forensic investigation infrastructure of Ghana [O] . Richard Apau, Felix N. Koranteng 2020

机译：加纳数字法医调查基础设施的概述
7. Anti-Forensic Trace Detection in Digital Forensic Triage Investigations [O] . Kyoung Park, Jung-Min Park, Eun-jin Kim, 2017

机译：数字法医分类调查中的反法医痕量检测

Performing an APT Investigation: Using People-Process-Technology-Strategy Model in Digital Triage Forensics

摘要

著录项

相似文献

相关主题

期刊订阅