Title :
A Study of Volatile Information Collection of Computer Forensics System for Computer Emergency Based on Ubiquitous Computing
Author :
Oh, Se-Min ; Kim, Young-Mo ; Jang, Jae-Hyeok ; Koh, Byoung-Soo ; Choi, Yong-Rak
Author_Institution :
Daejeon Univ., Daejeon
Abstract :
In Ubiquitous Computing Environment (UCE), volatile information such as register, cache memory, and network information are hard to make certain of a real-time collection because such volatile information are easily modified or disappeared. Thus, a collection of volatile information is one of important step for computer forensics system on ubiquitous computing. In this paper, we propose a volatile information collection module, which collects variable volatile information of server system based on memory mapping in real-time. In addition, the proposed module ensure the integrity of collected information, thus, the collected information have legal force.
Keywords :
computer crime; ubiquitous computing; computer emergency; computer forensics system; memory mapping; server system; ubiquitous computing; volatile information collection module; Cache memory; Computer crime; Computer networks; Forensics; Information security; Kernel; Pervasive computing; Real time systems; Registers; Ubiquitous computing;
Conference_Titel :
Natural Computation, 2007. ICNC 2007. Third International Conference on
Conference_Location :
Haikou
Print_ISBN :
978-0-7695-2875-5
DOI :
10.1109/ICNC.2007.149
