Unifying Computer Forensics Modeling Approaches: A Software Engineering Perspective

S
SADFE
2005
First International Workshop on Systematic Approaches to Digital Forensic Engineering (SADFE'05)
Abstract - Unifying Computer Forensics Modeling Approaches: A Software Engineering Perspective

	This Article
	Subscribers, please Login Purchase article: $19 PDF IEEE Xplore Subscribers RSS feed
	Share
	Email this Article to a friend
	Bibliographic References
	ASCII Text BibTex RefWorks Procite/RefMan
	Add to:
	Digg Furl Spurl Blink Simpy Google Del.icio.us Y!MyWeb
	Search
	Similar Articles Articles by A. Chris Bogen Articles by David A. Dampier

First International Workshop on Systematic Approaches to Digital Forensic Engineering (SADFE'05)

Taipei, Taiwan

November 07-November 09

ISBN: 0-7695-2478-8

	ASCII Text	x
	A. Chris Bogen, David A. Dampier, "Unifying Computer Forensics Modeling Approaches: A Software Engineering Perspective," Systematic Approaches to Digital Forensic Engineering, IEEE International Workshop on, pp. 27-39, First International Workshop on Systematic Approaches to Digital Forensic Engineering (SADFE'05), 2005.

	BibTex	x
	@article{ 10.1109/SADFE.2005.27, author = {A. Chris Bogen and David A. Dampier}, title = {Unifying Computer Forensics Modeling Approaches: A Software Engineering Perspective}, journal ={Systematic Approaches to Digital Forensic Engineering, IEEE International Workshop on}, volume = {0}, year = {2005}, isbn = {0-7695-2478-8}, pages = {27-39}, doi = {http://doi.ieeecomputersociety.org/10.1109/SADFE.2005.27}, publisher = {IEEE Computer Society}, address = {Los Alamitos, CA, USA}, }

	RefWorks Procite/RefMan/Endnote	x
	TY - CONF JO - Systematic Approaches to Digital Forensic Engineering, IEEE International Workshop on TI - Unifying Computer Forensics Modeling Approaches: A Software Engineering Perspective SN - 0-7695-2478-8 SP27 EP39 A1 - A. Chris Bogen, A1 - David A. Dampier, PY - 2005 KW - null VL - 0 JA - Systematic Approaches to Digital Forensic Engineering, IEEE International Workshop on ER -

A. Chris Bogen, US Army Corps of Engineers, Vicksburg, MS

David A. Dampier, Mississippi State University

DOI Bookmark: http://doi.ieeecomputersociety.org/10.1109/SADFE.2005.27

As an effort to introduce formalism into computer forensics, researchers have presented various modeling techniques for planning, analysis, and documentation of forensics activities. These modeling techniques provide representations of various forensics subjects such as investigative processes, chain of events, and evidence tests. From a software engineering perspective, it seems that several of these computer forensics modeling approaches may be unified to create a more complete, multi-view modeling methodology for examination planning and analysis. This paper proposes a core set of modeling views for a unified computer forensics modeling methodology: investigative process view, case domain view, and, evidence view. An example email threat case scenario is used as the context for a multiview modeling example.

Citation:

A. Chris Bogen, David A. Dampier, "Unifying Computer Forensics Modeling Approaches: A Software Engineering Perspective," sadfe, pp.27-39, First International Workshop on Systematic Approaches to Digital Forensic Engineering (SADFE'05), 2005

Peer Review Notice | Give Us Feedback

Usage of this product signifies your acceptance of the Terms of Use.