Forensic live response and event reconstruction methods in Linux systems

Funminiyi Olajide; Nick Savage; David Ndzi; Haitham Al-Sinani

Forensic live response and event reconstruction methods in Linux systems

Funminiyi Olajide, Nick Savage, David Ndzi, Haitham Al-Sinani

Research output: Chapter in Book/Report/Conference proceeding › Chapter

Abstract

In this paper, we describe forensic live analysis and event reconstruction methods in digital crime investigation. This information is forensically interesting because it helps to determine the origin of events by gathering data for analysis and applying the methods of event reconstruction for evidential purposes in the court of law. Our investigation is focussed on Linux systems. We have noted the effectiveness of existing automated event reconstruction systems and we present an experimental study that describes the forensic live response and event reconstruction in digital crime investigation.

Original language	English
Title of host publication	PGNET 2009
Subtitle of host publication	The 10th Annual PostGraduate Symposium on The Convergence of Telecommunications, Networking and Broadcasting
Publisher	Liverpool John Moores University
Pages	141-146
Number of pages	6
ISBN (Print)	978-1-902560-22-9
Publication status	Published - 2009
Externally published	Yes

UN SDGs

This output contributes to the following UN Sustainable Development Goals (SDGs)

Access to Document

http://www.cms.livjm.ac.uk/pgnet2009/Proceedings/Papers/2009001.pdfLicence: Unspecified

Cite this

Olajide, F., Savage, N., Ndzi, D., & Al-Sinani, H. (2009). Forensic live response and event reconstruction methods in Linux systems. In PGNET 2009 : The 10th Annual PostGraduate Symposium on The Convergence of Telecommunications, Networking and Broadcasting (pp. 141-146). Liverpool John Moores University. http://www.cms.livjm.ac.uk/pgnet2009/Proceedings/Papers/2009001.pdf

@inbook{7bd1e280134347a88d53fd5e793149cc,

title = "Forensic live response and event reconstruction methods in Linux systems",

abstract = "In this paper, we describe forensic live analysis and event reconstruction methods in digital crime investigation. This information is forensically interesting because it helps to determine the origin of events by gathering data for analysis and applying the methods of event reconstruction for evidential purposes in the court of law. Our investigation is focussed on Linux systems. We have noted the effectiveness of existing automated event reconstruction systems and we present an experimental study that describes the forensic live response and event reconstruction in digital crime investigation.",

author = "Funminiyi Olajide and Nick Savage and David Ndzi and Haitham Al-Sinani",

year = "2009",

language = "English",

isbn = "978-1-902560-22-9",

pages = "141--146",

booktitle = "PGNET 2009",

publisher = "Liverpool John Moores University",

address = "United Kingdom",

}

Forensic live response and event reconstruction methods in Linux systems. / Olajide, Funminiyi; Savage, Nick; Ndzi, David et al.
PGNET 2009 : The 10th Annual PostGraduate Symposium on The Convergence of Telecommunications, Networking and Broadcasting. Liverpool John Moores University, 2009. p. 141-146.

Research output: Chapter in Book/Report/Conference proceeding › Chapter

TY - CHAP

T1 - Forensic live response and event reconstruction methods in Linux systems

AU - Olajide, Funminiyi

AU - Savage, Nick

AU - Ndzi, David

AU - Al-Sinani, Haitham

PY - 2009

Y1 - 2009

N2 - In this paper, we describe forensic live analysis and event reconstruction methods in digital crime investigation. This information is forensically interesting because it helps to determine the origin of events by gathering data for analysis and applying the methods of event reconstruction for evidential purposes in the court of law. Our investigation is focussed on Linux systems. We have noted the effectiveness of existing automated event reconstruction systems and we present an experimental study that describes the forensic live response and event reconstruction in digital crime investigation.

AB - In this paper, we describe forensic live analysis and event reconstruction methods in digital crime investigation. This information is forensically interesting because it helps to determine the origin of events by gathering data for analysis and applying the methods of event reconstruction for evidential purposes in the court of law. Our investigation is focussed on Linux systems. We have noted the effectiveness of existing automated event reconstruction systems and we present an experimental study that describes the forensic live response and event reconstruction in digital crime investigation.

M3 - Chapter

SN - 978-1-902560-22-9

SP - 141

EP - 146

BT - PGNET 2009

PB - Liverpool John Moores University

ER -

Forensic live response and event reconstruction methods in Linux systems

Abstract

UN SDGs

Access to Document

Fingerprint

Cite this