DEVICE AND METHOD FOR PROVIDING SECURITY IN REMOTE DIGITAL FORENSIC ENVIRONMENT

摘要

An apparatus and method for collecting digital evidence from a target system to be analyzed at a remote location and then providing security in a remote digital forensic environment based on the collected digital evidence. The method of providing security includes making, by a security providing apparatus, an evidence collection request for collection of evidence of an evidence collection-target apparatus from an evidence collection agent in a remote digital forensic environment, collecting evidence data corresponding to the evidence collection request from the evidence collection agent, verifying the evidence data based on a signature value of the evidence data collected from the evidence collection agent, generating evidence analysis data based on the verified evidence data, verifying the evidence analysis data based on a signature value of the evidence analysis data, and providing security for the evidence collection-target apparatus based on results of the verification of the evidence analysis data.

主权项

1. A method of providing security, comprising:
making, by a security providing apparatus, an evidence collection request for collection of evidence of an evidence collection-target apparatus to an evidence collection agent in a remote digital forensic environment; collecting evidence data corresponding to the evidence collection request from the evidence collection agent; verifying the evidence data based on a signature value of the evidence data collected from the evidence collection agent; generating evidence analysis data based on the verified evidence data; verifying the evidence analysis data based on a signature value of the evidence analysis data; and providing security for the evidence collection-target apparatus based on results of the verification of the evidence analysis data.