A study on the live forensic techniques for anomaly detection in user terminals

Ae Chan Kim; Won Hyung Park; Dong Hoon Lee

A study on the live forensic techniques for anomaly detection in user terminals

Ae Chan Kim, Won Hyung Park, Dong Hoon Lee

School of Cybersecurity

Research output: Contribution to journal › Article › peer-review

10 Citations (Scopus)

Abstract

Digital forensics techniques that have been used to analyze system intrusion incidents traditionally are used to detect anomaly behavior that may occur in the user terminal environment. Particularly, for the method to analyze user terminals, automated live forensics techniques that are used as supporting tool for malicious code (malware) detection. We suggest a way to take advantage of the live forensic techniques for the anomaly detection of malware.

Original language	English
Pages (from-to)	181-188
Number of pages	8
Journal	International Journal of Security and its Applications
Volume	7
Issue number	1
Publication status	Published - 2013

Keywords

Anomaly detection
Live forensics
Malware
User terminals

ASJC Scopus subject areas

Computer Science(all)

Cite this

@article{690a0eb25122424698db05a232fa5a20,

title = "A study on the live forensic techniques for anomaly detection in user terminals",

abstract = "Digital forensics techniques that have been used to analyze system intrusion incidents traditionally are used to detect anomaly behavior that may occur in the user terminal environment. Particularly, for the method to analyze user terminals, automated live forensics techniques that are used as supporting tool for malicious code (malware) detection. We suggest a way to take advantage of the live forensic techniques for the anomaly detection of malware.",

keywords = "Anomaly detection, Live forensics, Malware, User terminals",

author = "Kim, {Ae Chan} and Park, {Won Hyung} and Lee, {Dong Hoon}",

year = "2013",

language = "English",

volume = "7",

pages = "181--188",

journal = "International Journal of Security and its Applications",

issn = "1738-9976",

publisher = "Science and Engineering Research Support Society",

number = "1",

}

TY - JOUR

T1 - A study on the live forensic techniques for anomaly detection in user terminals

AU - Kim, Ae Chan

AU - Park, Won Hyung

AU - Lee, Dong Hoon

PY - 2013

Y1 - 2013

N2 - Digital forensics techniques that have been used to analyze system intrusion incidents traditionally are used to detect anomaly behavior that may occur in the user terminal environment. Particularly, for the method to analyze user terminals, automated live forensics techniques that are used as supporting tool for malicious code (malware) detection. We suggest a way to take advantage of the live forensic techniques for the anomaly detection of malware.

AB - Digital forensics techniques that have been used to analyze system intrusion incidents traditionally are used to detect anomaly behavior that may occur in the user terminal environment. Particularly, for the method to analyze user terminals, automated live forensics techniques that are used as supporting tool for malicious code (malware) detection. We suggest a way to take advantage of the live forensic techniques for the anomaly detection of malware.

KW - Anomaly detection

KW - Live forensics

KW - Malware

KW - User terminals

UR - http://www.scopus.com/inward/record.url?scp=84877115294&partnerID=8YFLogxK

UR - http://www.scopus.com/inward/citedby.url?scp=84877115294&partnerID=8YFLogxK

M3 - Article

AN - SCOPUS:84877115294

SN - 1738-9976

VL - 7

SP - 181

EP - 188

JO - International Journal of Security and its Applications

JF - International Journal of Security and its Applications

IS - 1

ER -

A study on the live forensic techniques for anomaly detection in user terminals

Abstract

Keywords

ASJC Scopus subject areas

Other files and links

Fingerprint

Cite this