Anti-Forensic Threat Modeling - Advances in Digital Forensics XIII
Conference Papers Year : 2017

Anti-Forensic Threat Modeling

Abstract

The role of a digital forensic professional is to collect and analyze digital evidence. However, anti-forensic techniques can reduce the availability or usefulness of the evidence. They threaten the digital forensic examination process and may compromise its conclusions. This chapter proposes the use of threat modeling to manage the risks associated with anti-forensic threats. Risk management is introduced in the early stages of the digital forensic process to assist a digital forensic professional in determining the resources to be invested in detecting and mitigating the risk. The proposed threat model complements the incident response and digital forensic processes by providing a means for assessing the impact and likelihood of anti-forensic threats, evaluating the cost of risk mitigation and selecting tools and techniques that can be used as countermeasures. This renders the digital forensic process more robust and less susceptible to the consequences of anti-forensic actions.
Fichier principal
Vignette du fichier
456364_1_En_10_Chapter.pdf (173.74 Ko) Télécharger le fichier
Origin Files produced by the author(s)
Loading...

Dates and versions

hal-01716404 , version 1 (23-02-2018)

Licence

Identifiers

Cite

Bruno Hoelz, Marcelo Maues. Anti-Forensic Threat Modeling. 13th IFIP International Conference on Digital Forensics (DigitalForensics), Jan 2017, Orlando, FL, United States. pp.169-183, ⟨10.1007/978-3-319-67208-3_10⟩. ⟨hal-01716404⟩
137 View
450 Download

Altmetric

Share

More