Systematic Approaches to Digital Forensic Engineering, IEEE International Workshop on (2008)
May 22, 2008 to May 22, 2008
DOI Bookmark: http://doi.ieeecomputersociety.org/10.1109/SADFE.2008.20
Abstract Investigation of security incidents is of great importance as it allows to trace back the actions taken by the intruders. In this paper we develop a formal technique for digital investigation based on the use of Incident Response Probabilistic Cognitive Maps. Three main issues are addressed here: (1) construction and extraction of plausible known attack scenarios, (2) construction of hypothetical scenarios and their validation using a logic-based formalism, and (3) selection of optimal countermeasures addressing the detected attacks.
Digital investigation, Incident Response Probabilistic Cognitive Maps, attack scenarios identification, hypothetical scenarios validation, countermeasures selection
J. Krichene, S. Rekhis and N. Boudriga, "Cognitive-Maps Based Investigation of Digital Security Incidents," Systematic Approaches to Digital Forensic Engineering, IEEE International Workshop on(SADFE), vol. 00, no. , pp. 25-40, 2008.