Telenor Key Partner [Oslo] (Enterprise Security and Connectivity, laboratory, no (Tut.: Telenor Key Partner) - Oslo Norway - Norway)
Abstract : This paper proposes a new correlation method for the automatic identification of malware traces across multiple computers. The method supports forensic investigations by efficiently identifying patterns in large, complex datasets using link mining techniques. Digital forensic processes are followed to ensure evidence integrity and chain of custody.
https://hal.inria.fr/hal-01569545 Contributor : Hal IfipConnect in order to contact the contributor Submitted on : Thursday, July 27, 2017 - 8:22:21 AM Last modification on : Thursday, March 5, 2020 - 4:46:41 PM
Anders Flaglien, Katrin Franke, Andre Arnes. Identifying Malware Using Cross-Evidence Correlation. 7th Digital Forensics (DF), Jan 2011, Orlando, FL, United States. pp.169-182, ⟨10.1007/978-3-642-24212-0_13⟩. ⟨hal-01569545⟩