You are here

Cyberspace Forensics Readiness and Security Awareness Model

Authors: 

Aadil Al-Mahrouqi, Sameh Abdalla, Tahar Kechadi

Publication Type: 
Refereed Original Article
Abstract: 
The goal of reaching a high level of security in wire- less and wired communication networks is continuously proving difficult to achieve. The speed at which both keepers and violators of secure networks are evolving is relatively close. Nowadays, network infrastructures contain a large number of event logs captured by Firewalls and Domain Controllers (DCs). However, these logs are increasingly becoming an obstacle for network administrators in analyzing networks for malicious activities. Forensic investigators mission to detect malicious activities and reconstruct incident scenarios is extremely complex considering the number, as well as the quality of these event logs. This paper presents the building blocks for a model for automated network readiness and awareness. The idea for this model is to utilize the current network security outputs to construct forensically comprehensive evidence. The proposed model covers the three vital phases of the cybercrime management chain, which are: 1) Forensics Readiness, 2) Active Forensics, and 3) Forensics Awareness.
Digital Object Identifer (DOI): 
10.14569/IJACSA.2015.060617
Publication Status: 
Published
Date Accepted for Publication: 
Friday, 1 May, 2015
Publication Date: 
01/06/2015
Journal: 
International Journal of Advanced Computer Science and Applications(IJACSA)
Institution: 
National University of Ireland, Dublin (UCD)
Open access repository: 
No