Abstract | ||
---|---|---|
Network forensics is an after the fact process to investigate malicious activities conducted over computer networks by gathering useful intelligence. Recently, several machine learning techniques have been proposed to automate and develop intelligent network forensics systems. An intelligent network forensics system that reconstructs intrusion scenarios and makes attack attributions requires knowledge about intrusions signatures, evidences, impacts, and objectives. In addition, problem solving knowledge that describes how the system can use domain knowledge to analyze malicious activities is essential for the design of intelligent network forensics systems. In this paper we adapt recent researches in semantic-web, information architecture, and ontology engineering to design a method ontology for network forensics analysis. The proposed ontology represents both network forensics domain knowledge and problem solving knowledge. It can be used as a knowledge-base for developing sophisticated intelligent network forensics systems to support complex chain of reasoning. We use a real life network intrusion scenario to show how our ontology can be integrated and used in intelligent network forensics systems. |
Year | DOI | Venue |
---|---|---|
2010 | 10.1109/PST.2010.5593235 | PST |
Keywords | Field | DocType |
learning (artificial intelligence),computer forensics,machine learning techniques,computer networks,problem solving knowledge,semantic-web,ontologies (artificial intelligence),information architecture,intelligent network forensics analysis,ontology engineering,computer network,intelligent networks,intelligent network,cognition,knowledge base,network forensics,semantic web,intrusion detection,machine learning,domain knowledge,learning artificial intelligence,forensics,ontologies | Ontology (information science),Data science,Ontology,Ontology engineering,Domain knowledge,Computer forensics,Network forensics,Computer science,Intelligent Network,Intrusion detection system | Conference |
ISSN | ISBN | Citations |
1712-364X | 978-1-4244-7549-0 | 9 |
PageRank | References | Authors |
0.52 | 11 | 2 |
Name | Order | Citations | PageRank |
---|---|---|---|
Sherif Saad | 1 | 128 | 7.45 |
Issa Traoré | 2 | 217 | 18.02 |