Please use this identifier to cite or link to this item: http://ir.unikl.edu.my/jspui/handle/123456789/9607
metadata.conference.dc.title: An Evidential Network Forensics Analysis with Metrics for Conviction Evidence
metadata.conference.dc.contributor.*: Ahmad Roshidi Amran
Amna Saad
Mohd Raziff Abd Razak
UniKL BMI
metadata.conference.dc.date.issued: 19-Mar-2015
metadata.conference.dc.description.abstract: Abstract - Analysing forensics evidence is an essential step in proving the malicious intents of an attacker or adversary and the severity of the damages caused to any network. This paper presents how security metrics can be used to sustain a sense of credibility to network evidence gathered as an elaboration and extension to an embedded feature of Network Forensic Readiness (NFR) – Redress that is defined as holding intruders responsible. We apply the Common Vulnerability Scoring System (CVSS) metrics to show that a forensics metrics system could assess the severity of network attacks committed, thus giving a degree of credibility to the evidence gathered. This way, hard evidence could be objectively collected to lend support to the resource intensive process of investigation and litigation, leading to successful conviction, while reducing effort expended on the process.
metadata.conference.dc.description: UniKL BMI
metadata.conference.dc.identifier.uri: 10.1109/ICE2T.2014.7006222
metadata.conference.dc.conference.name: International Conference on Engineering Technology and Technopreneurship (ICE2T 2014)
metadata.conference.dc.conference.year: 2014
Appears in Collections:Conference Papers



Items in UniKL IR are protected by copyright, with all rights reserved, unless otherwise indicated.