Malware Behavior Ontology for Digital Evidence
説明
Not only in computer security, dealing with malware also presents one of vital challenges in computer forensics. Attempting to get away from their criminal activities, a suspect usually uses malware defense where they can claim that they did nothing wrong but malware did. Therefore, the burden of proof for the prosecution in pinning down the criminals is often extremely heavy due to the complex behavior demonstrated by malware. The goal of this project is to apply the theory and technique of ontology in analyzing the malware behavior and then to use the result of this study in classifying malware into the forensic-aware categories. Assisted by these proposed categories, prosecutors will have the upper hand to defeat suspect's alibi in a more efficient way. Moreover, the result of this project will help computer forensics professionals to present their expert opinions against malware defense in court with the uniformity and clarity.
収録刊行物
-
- 2017 IEEE International Conference on Software Quality, Reliability and Security Companion (QRS-C)
-
2017 IEEE International Conference on Software Quality, Reliability and Security Companion (QRS-C) 585-586, 2017-07-01
IEEE