Options
2011
Conference Paper
Titel
3LSPG: Forensic tool evaluation by three layer stochastic process-based generation of data
Abstract
Since organizations cannot prevent all criminal activities of employees by secur ity technology in practice, the application of IT forensic methods for finding t races in data is extremely important. However, new attack variants for occupatio nal crime require new forensic tools and specific environments may require adopt ions of methods and tools. Obviously, the development of tools or their adaption require testing using data containing corresponding traces of attacks. Since re al-world data are often not available, synthetic data are necessary to perform t esting. With 3LSPG we propose a systematic method to generate synthetic test dat a which contain traces of selected attacks. These data can then be used to evalu ate the performance of different forensic tools.