کد مقاله کد نشریه سال انتشار مقاله انگلیسی نسخه تمام متن
10342483 696142 2005 7 صفحه PDF دانلود رایگان
عنوان انگلیسی مقاله ISI
Case study: Network intrusion investigation - lessons in forensic preparation
موضوعات مرتبط
مهندسی و علوم پایه مهندسی کامپیوتر شبکه های کامپیوتری و ارتباطات
پیش نمایش صفحه اول مقاله
Case study: Network intrusion investigation - lessons in forensic preparation
چکیده انگلیسی
Investigations of network security breaches are both complex and costly. Even a moderate amount of forensic preparation in an organization can mitigate the impact of a major incident and can enable the organization to obtain restitution. A case study of an intrusion is outlined in which the victim organization worked with law enforcement agencies to apprehend the perpetrator. This case study contains examples of challenges that can arise during this type of investigation, and discusses practical steps that an organization can take to prepare for a major incident. The overlapping roles of System Administrators, Incident Handlers, and Forensic Examiners in a network intrusion are explored, with an emphasis on the need for collaboration and proper evidence handling. This case study also shows how effective case management and methodical reconstruction of events can help create a more complete picture of the crime and help establish links between computer intruders and their illegal activities.
ناشر
Database: Elsevier - ScienceDirect (ساینس دایرکت)
Journal: Digital Investigation - Volume 2, Issue 4, December 2005, Pages 254-260
نویسندگان
,