A proposal for automating investigations in live forensics

Seokhee Lee, Antonio Savoldi, Kyoung Soo Lim, Jong Hyuk Park, Sangjin Lee

Research output: Contribution to journalArticle

8 Citations (Scopus)

Abstract

In this paper we present an XML-based framework, called XLIVE, which provides an efficient way to collect data in live forensic cases, according to well-known crime categories. XLIVE is a forensic automated framework that can be used in live forensic investigations for gathering live data on a Windows-based system. In addition, we have also implemented a proof-of-concept, called LRDS (Live Resource Detection System). This approach of examination will be used extensively to deal with terabyte/petabyte digital systems, where other approaches, such as a post-mortem analysis, cannot be adopted.

Original languageEnglish
Pages (from-to)246-255
Number of pages10
JournalComputer Standards and Interfaces
Volume32
Issue number5-6
DOIs
Publication statusPublished - 2010 Oct 1

Keywords

  • Automated digital investigation process
  • Digital evidence collection
  • Live forensics
  • XML technology

ASJC Scopus subject areas

  • Software
  • Hardware and Architecture
  • Law

Fingerprint Dive into the research topics of 'A proposal for automating investigations in live forensics'. Together they form a unique fingerprint.

  • Cite this