Abstract
Digital forensics techniques that have been used to analyze system intrusion incidents traditionally are used to detect anomaly behavior that may occur in the user terminal environment. Particularly, for the method to analyze user terminals, automated live forensics techniques that are used as supporting tool for malicious code (malware) detection. We suggest a way to take advantage of the live forensic techniques for the anomaly detection of malware.
Original language | English |
---|---|
Pages (from-to) | 181-188 |
Number of pages | 8 |
Journal | International Journal of Security and its Applications |
Volume | 7 |
Issue number | 1 |
Publication status | Published - 2013 |
Keywords
- Anomaly detection
- Live forensics
- Malware
- User terminals
ASJC Scopus subject areas
- General Computer Science