Intelligence-led response: turning theory into law enforcement practice in cyber security incidents | NCCU Academic Hub

學術產出-Periodical Articles

Article View/Open

html(197)

Publication Export

Google Scholar^TM

政大圖書館

學術資源探索系統

Citation Infomation

Simple Record
Full Record

題名	Intelligence-led response: turning theory into law enforcement practice in cyber security incidents
作者	左瑞麟 Tso, Raylin Kao, Da-Yu Hsiao, Shou-Ching
貢獻者	資科系
關鍵詞	digital forensics; ISO/IEC 27043: 2015; intelligence-led response; cyber security; law enforcement
日期	2020-11
上傳時間	23-Dec-2021 15:39:01 (UTC+8)
摘要	As the internet grows drastically in scale and density, the number of cyber security incidents investigated by law enforcement agencies (LEAs) is skyrocketing. Criminals may deny committing a crime, but LEAs are hindered in proving it by the limited processing capabilities of human analysis. While initial crime scene investigation emphasises finding actionable intelligence as quickly as possible, lab forensics focuses on reconstructing the case and cross-referencing the evidence to find the truth. Both are critical parts of the investigative response to cyber security incidents. This paper presents a practical digital forensic framework based on ISO/IEC 27043: 2015 activities, intended to handle digital evidence at the crime scene and lessen the caseload burden at the lab. By advocating an intelligence-led response to crime scene investigation and lab forensics, we aim to turn theory into practice for LEAs, supporting the resolution of cyber security incidents and the understanding of what happened. By working through the different processes and activities in practical exercises, we aim to enable LEAs to implement a response strategy for combating cyber crime.
關聯	International Journal of Electronic Business, Vol.15, No.4, pp.352-350
資料類型	article
DOI	https://doi.org/10.1504/IJEB.2020.111058

dc.contributor	資科系	-
dc.creator (作者)	左瑞麟	-
dc.creator (作者)	Tso, Raylin	-
dc.creator (作者)	Kao, Da-Yu	-
dc.creator (作者)	Hsiao, Shou-Ching	-
dc.date (日期)	2020-11	-
dc.date.accessioned	23-Dec-2021 15:39:01 (UTC+8)	-
dc.date.available	23-Dec-2021 15:39:01 (UTC+8)	-
dc.date.issued (上傳時間)	23-Dec-2021 15:39:01 (UTC+8)	-
dc.identifier.uri (URI)	http://nccur.lib.nccu.edu.tw/handle/140.119/138318	-
dc.description.abstract (摘要)	As the internet grows drastically in scale and density, the number of cyber security incidents investigated by law enforcement agencies (LEAs) is skyrocketing. Criminals may deny committing a crime, but LEAs are hindered in proving it by the limited processing capabilities of human analysis. While initial crime scene investigation emphasises finding actionable intelligence as quickly as possible, lab forensics focuses on reconstructing the case and cross-referencing the evidence to find the truth. Both are critical parts of the investigative response to cyber security incidents. This paper presents a practical digital forensic framework based on ISO/IEC 27043: 2015 activities, intended to handle digital evidence at the crime scene and lessen the caseload burden at the lab. By advocating an intelligence-led response to crime scene investigation and lab forensics, we aim to turn theory into practice for LEAs, supporting the resolution of cyber security incidents and the understanding of what happened. By working through the different processes and activities in practical exercises, we aim to enable LEAs to implement a response strategy for combating cyber crime.	-
dc.format.extent	124 bytes	-
dc.format.mimetype	text/html	-
dc.relation (關聯)	International Journal of Electronic Business, Vol.15, No.4, pp.352-350	-
dc.subject (關鍵詞)	digital forensics; ISO/IEC 27043: 2015; intelligence-led response; cyber security; law enforcement	-
dc.title (題名)	Intelligence-led response: turning theory into law enforcement practice in cyber security incidents	-
dc.type (資料類型)	article	-
dc.identifier.doi (DOI)	10.1504/IJEB.2020.111058	-
dc.doi.uri (DOI)	https://doi.org/10.1504/IJEB.2020.111058	-