Publications-Periodical Articles

Article View/Open

Publication Export

Google ScholarTM

NCCU Library

Citation Infomation

Related Publications in TAIR

題名 Intelligence-led response: turning theory into law enforcement practice in cyber security incidents
作者 左瑞麟
Tso, Raylin
Kao, Da-Yu
Hsiao, Shou-Ching
貢獻者 資科系
關鍵詞 digital forensics; ISO/IEC 27043: 2015; intelligence-led response; cyber security; law enforcement
日期 2020-11
上傳時間 23-Dec-2021 15:39:01 (UTC+8)
摘要 As the internet grows drastically in scale and density, the number of cyber security incidents investigated by law enforcement agencies (LEAs) is skyrocketing. Criminals may deny committing a crime, but LEAs are hindered in proving it by the limited processing capabilities of human analysis. While initial crime scene investigation emphasises finding actionable intelligence as quickly as possible, lab forensics focuses on reconstructing the case and cross-referencing the evidence to find the truth. Both are critical parts of the investigative response to cyber security incidents. This paper presents a practical digital forensic framework based on ISO/IEC 27043: 2015 activities, intended to handle digital evidence at the crime scene and lessen the caseload burden at the lab. By advocating an intelligence-led response to crime scene investigation and lab forensics, we aim to turn theory into practice for LEAs, supporting the resolution of cyber security incidents and the understanding of what happened. By working through the different processes and activities in practical exercises, we aim to enable LEAs to implement a response strategy for combating cyber crime.
關聯 International Journal of Electronic Business, Vol.15, No.4, pp.352-350
資料類型 article
DOI https://doi.org/10.1504/IJEB.2020.111058
dc.contributor 資科系-
dc.creator (作者) 左瑞麟-
dc.creator (作者) Tso, Raylin-
dc.creator (作者) Kao, Da-Yu-
dc.creator (作者) Hsiao, Shou-Ching-
dc.date (日期) 2020-11-
dc.date.accessioned 23-Dec-2021 15:39:01 (UTC+8)-
dc.date.available 23-Dec-2021 15:39:01 (UTC+8)-
dc.date.issued (上傳時間) 23-Dec-2021 15:39:01 (UTC+8)-
dc.identifier.uri (URI) http://nccur.lib.nccu.edu.tw/handle/140.119/138318-
dc.description.abstract (摘要) As the internet grows drastically in scale and density, the number of cyber security incidents investigated by law enforcement agencies (LEAs) is skyrocketing. Criminals may deny committing a crime, but LEAs are hindered in proving it by the limited processing capabilities of human analysis. While initial crime scene investigation emphasises finding actionable intelligence as quickly as possible, lab forensics focuses on reconstructing the case and cross-referencing the evidence to find the truth. Both are critical parts of the investigative response to cyber security incidents. This paper presents a practical digital forensic framework based on ISO/IEC 27043: 2015 activities, intended to handle digital evidence at the crime scene and lessen the caseload burden at the lab. By advocating an intelligence-led response to crime scene investigation and lab forensics, we aim to turn theory into practice for LEAs, supporting the resolution of cyber security incidents and the understanding of what happened. By working through the different processes and activities in practical exercises, we aim to enable LEAs to implement a response strategy for combating cyber crime.-
dc.format.extent 124 bytes-
dc.format.mimetype text/html-
dc.relation (關聯) International Journal of Electronic Business, Vol.15, No.4, pp.352-350-
dc.subject (關鍵詞) digital forensics; ISO/IEC 27043: 2015; intelligence-led response; cyber security; law enforcement-
dc.title (題名) Intelligence-led response: turning theory into law enforcement practice in cyber security incidents-
dc.type (資料類型) article-
dc.identifier.doi (DOI) 10.1504/IJEB.2020.111058-
dc.doi.uri (DOI) https://doi.org/10.1504/IJEB.2020.111058-