Conference ProceedingsOPEN ACCESS

Identifying malware using cross-evidence correlation

IFIP Advances in Information and Communication Technology (2011) 361 169-182
DOI: 10.1007/978-3-642-24212-0_13
8Citations
Citations of this article
21Readers
Mendeley users who have this article in their library.

This article is free to access.

Abstract

This paper proposes a new correlation method for the automatic identification of malware traces across multiple computers. The method supports forensic investigations by efficiently identifying patterns in large, complex datasets using link mining techniques. Digital forensic processes are followed to ensure evidence integrity and chain of custody.

Author supplied keywords

Cite

CITATION STYLE

APA

Flaglien, A., Franke, K., & Arnes, A. (2011). Identifying malware using cross-evidence correlation. In IFIP Advances in Information and Communication Technology (Vol. 361, pp. 169–182). Springer New York LLC. https://doi.org/10.1007/978-3-642-24212-0_13

Register to see more suggestions

Mendeley helps you to discover research relevant for your work.

Already have an account?

Save time finding and organizing research with Mendeley

Sign up for free