Internet Archive Scholar

Obtaining Digital Evidence from Intrusion Detection Systems

Mboupda MoyoAchille, Atsa Etoundi Roger
2014 International Journal of Computer Applications  

Preserved Fulltext

fulltext thumbnail
Web Archive Capture PDF (616.5 kB)
https://web.archive.org/web/20150714061248/http://research.ijcaonline.org:80/volume95/number12/pxc3896623.pdf

A copy of this work was available on the public web and has been preserved in the Wayback Machine. The capture dates from 2015; you can also visit the original URL. The file type is application/pdf.

Intrusion detection techniques have appeared to inspect all of the inbound and outbound network activities, and to identify suspicious patterns that indicate an attack that might compromise an information system. However, related information can be collected so as to supply evidence in criminal and civil legal proceedings. Several works have been carried out in the domain of Intrusion Detection and Prevention System (IDPS) but, none of the resulting models taking into account the possibility to
more » ... collect intrusion related information in such a way that some of it can be turned in evidence in a proactive digital forensic purpose. In the literature, some authors have mentioned the possibility of redesigning IDPS as sources of evidence but, a formal model has never been proposed. This paper proposes an intrusion detection architecture for digital forensic purposes implemented using SNORT program.
doi:10.5120/16649-6623 fatcat:m5ermu4rsffkrk6jwjcnw2jyae
Citation

Mboupda MoyoAchille, Atsa Etoundi Roger. "Obtaining Digital Evidence from Intrusion Detection Systems." International Journal of Computer Applications 95.12 (2014) 34-41