Identifying Malware Using Cross-Evidence Correlation - Advances in Digital Forensics VII
Conference Papers Year : 2011

Identifying Malware Using Cross-Evidence Correlation

Abstract

This paper proposes a new correlation method for the automatic identification of malware traces across multiple computers. The method supports forensic investigations by efficiently identifying patterns in large, complex datasets using link mining techniques. Digital forensic processes are followed to ensure evidence integrity and chain of custody.
Fichier principal
Vignette du fichier
978-3-642-24212-0_13_Chapter.pdf (401.59 Ko) Télécharger le fichier
Origin Files produced by the author(s)
Loading...

Dates and versions

hal-01569545 , version 1 (27-07-2017)

Licence

Identifiers

Cite

Anders Flaglien, Katrin Franke, Andre Arnes. Identifying Malware Using Cross-Evidence Correlation. 7th Digital Forensics (DF), Jan 2011, Orlando, FL, United States. pp.169-182, ⟨10.1007/978-3-642-24212-0_13⟩. ⟨hal-01569545⟩
221 View
138 Download

Altmetric

Share

More