Earticle

초록

영어

To date there has been no evidence of a suitable cloud computing digital forensics framework. This is due to the fact that each framework is dependent on the type of data cloud investigations involved, and each framework is tailored to the specific virtualised data cloud being examined as potential evidence. This paper describes a basic model for using the computer’s virtual machine (VM) history based on finite state machine (FSM) automata theory. This theoretical model abstracts the low level (primitive) events of the VM, which in turn can later be used to define the categories and classes of VM investigation analysis required by law enforcement for establishing higher level frameworks relevant to pursuing potential cases. The model motivates this framework context by making a high-level mapping of the VM’s complex event histories as recorded by the VM-hosted operating system (hypervisor) kernel logs.

목차

Abstract
 I. MOTIVATION
 II. INTRODUCTION
 III. VIRTUAL MACHINE HISTORY MODEL
  A. VM Primitive Computer History Model
  B. VM Complex History Model
 IV. APPLICATION OF THE VM HISTORY MODEL
 V. CONCLUSION AND FUTURE WORK
 REFERENCES
 BIOGRAPHIES

키워드

저자

• Sean Thorpe [ School of Computing and Information Technology, Faculty of Engineering and Computing, University of Technology, Jamaica, West Indies ]

참고문헌

발행기관

간행물

표지보기 관심저널 등록

• 간행물명

  JoC [Journal of Convergence]

• 간기

  계간

• pISSN

  2093-7741

• eISSN

  2093-775X

• 수록기간

  2010~2015

• 십진분류

  KDC 004 DDC 004