Identifying Malware Using Cross-Evidence Correlation

Abstract : This paper proposes a new correlation method for the automatic identification of malware traces across multiple computers. The method supports forensic investigations by efficiently identifying patterns in large, complex datasets using link mining techniques. Digital forensic processes are followed to ensure evidence integrity and chain of custody.
Document type :
Conference papers
Complete list of metadatas

Cited literature [24 references]  Display  Hide  Download

https://hal.inria.fr/hal-01569545
Contributor : Hal Ifip <>
Submitted on : Thursday, July 27, 2017 - 8:22:21 AM
Last modification on : Monday, October 8, 2018 - 9:00:02 PM

File

978-3-642-24212-0_13_Chapter.p...
Files produced by the author(s)

Licence


Distributed under a Creative Commons Attribution 4.0 International License

Identifiers

Citation

Anders Flaglien, Katrin Franke, Andre Arnes. Identifying Malware Using Cross-Evidence Correlation. 7th Digital Forensics (DF), Jan 2011, Orlando, FL, United States. pp.169-182, ⟨10.1007/978-3-642-24212-0_13⟩. ⟨hal-01569545⟩

Share

Metrics

Record views

280

Files downloads

178