Citation Export
| DC Field | Value | Language |
|---|---|---|
| dc.contributor.author | Kim, Donghyun | - |
| dc.contributor.author | Shon, Taeshik | - |
| dc.date.issued | 2023-01-01 | - |
| dc.identifier.uri | https://aurora.ajou.ac.kr/handle/2018.oak/36977 | - |
| dc.identifier.uri | https://www.scopus.com/inward/record.uri?partnerID=HzOxMe3b&scp=85175403533&origin=inward | - |
| dc.description.abstract | There are various techniques (String Search, Signature, List Traversal, Kernel Object, etc.) to perform memory forensics. Among them, Kernel Object-based memory forensics techniques that utilize the object structure of the kernel are considered the most reliable. Kernel Object-based memory forensics techniques require prior knowledge of the object structure of the operating system kernel used in the memory dump. However, reverse engineering the kernel for a vast number of operating system versions and architectures to identify the object structure is labor- and time-consuming. To solve this problem, academic researchers have developed methods to efficiently identify the structure of various kernel objects. Various studies have been conducted to identify key features that kernel objects leave in memory, or to use automation technology. We will review these works and discuss what further research can be done and the challenges that need to be considered. | - |
| dc.language.iso | eng | - |
| dc.publisher | Institute of Electrical and Electronics Engineers Inc. | - |
| dc.subject.mesh | Forensic Techniques | - |
| dc.subject.mesh | Kernel object | - |
| dc.subject.mesh | Memory forensics | - |
| dc.subject.mesh | Object based | - |
| dc.subject.mesh | Object structure | - |
| dc.subject.mesh | Objects-based | - |
| dc.subject.mesh | Operating system kernel | - |
| dc.subject.mesh | Prior-knowledge | - |
| dc.subject.mesh | String search | - |
| dc.subject.mesh | System version | - |
| dc.title | Future of Kernel Object-Based Memory Forensics | - |
| dc.type | Conference | - |
| dc.citation.conferenceDate | 2023.8.16. ~ 2023.8.18. | - |
| dc.citation.conferenceName | 9th International Conference on Platform Technology and Service, PlatCon 2023 | - |
| dc.citation.edition | 2023 International Conference on Platform Technology and Service, PlatCon 2023 - Proceedings | - |
| dc.citation.endPage | 66 | - |
| dc.citation.startPage | 64 | - |
| dc.citation.title | 2023 International Conference on Platform Technology and Service, PlatCon 2023 - Proceedings | - |
| dc.identifier.bibliographicCitation | 2023 International Conference on Platform Technology and Service, PlatCon 2023 - Proceedings, pp.64-66 | - |
| dc.identifier.doi | 10.1109/platcon60102.2023.10255186 | - |
| dc.identifier.scopusid | 2-s2.0-85175403533 | - |
| dc.identifier.url | http://ieeexplore.ieee.org/xpl/mostRecentIssue.jsp?punumber=10255091 | - |
| dc.subject.keyword | Digital Forensics | - |
| dc.subject.keyword | Kernel Object | - |
| dc.subject.keyword | Memory | - |
| dc.type.other | Conference Paper | - |
| dc.description.isoa | false | - |
| dc.subject.subarea | Artificial Intelligence | - |
| dc.subject.subarea | Computer Networks and Communications | - |
| dc.subject.subarea | Computer Science Applications | - |
| dc.subject.subarea | Information Systems and Management | - |
| dc.subject.subarea | Safety, Risk, Reliability and Quality | - |
| dc.subject.subarea | Media Technology | - |
Items in DSpace are protected by copyright, with all rights reserved, unless otherwise indicated.
