Pretraga

Pretražite po imenu i prezimenu autora, mentora, urednika, prevoditelja

Napredna pretraga

Pregled bibliografske jedinice broj: 1053874

Investigating file use and knowledge with Windows 10 artifacts

Duranec, Antun; Topolčić, Davorka; Hausknecht, Krešimir; Delija, Damir
Investigating file use and knowledge with Windows 10 artifacts // 42th International Convention on Information, Communication and Electronic Technology (MIPRO) - proceedings / Skala, Karolj (ur.).
Rijeka: Hrvatska udruga za informacijsku i komunikacijsku tehnologiju, elektroniku i mikroelektroniku - MIPRO, 2019. str. 546-555 doi:10.23919/mipro.2019.8756877 (predavanje, međunarodna recenzija, cjeloviti rad (in extenso), znanstveni)

CROSBI ID: 1053874 Za ispravke kontaktirajte CROSBI podršku putem web obrasca

Naslov
Investigating file use and knowledge with Windows 10 artifacts

Autori
Duranec, Antun ; Topolčić, Davorka ; Hausknecht, Krešimir ; Delija, Damir

Vrsta, podvrsta i kategorija rada
Radovi u zbornicima skupova, cjeloviti rad (in extenso), znanstveni

Izvornik
42th International Convention on Information, Communication and Electronic Technology (MIPRO) - proceedings / Skala, Karolj - Rijeka : Hrvatska udruga za informacijsku i komunikacijsku tehnologiju, elektroniku i mikroelektroniku - MIPRO, 2019, 546-555

Skup
42nd International Convention on Information and Communication Technology, Electronics and Microelectronics (MIPRO 2019)

Mjesto i datum
Opatija, Hrvatska, 20.05.2019. - 24.05.2019

Vrsta sudjelovanja
Predavanje

Vrsta recenzije
Međunarodna recenzija

Ključne riječi
digital forensics ; file organisation ; Microsoft Windows (operating systems)

Sažetak
Windows 10 operating system is the most widely used operating system today that contains many programs and mechanisms for managing computer hardware and software. Looking from a digital forensics point of view these produce valuable records of user activities. In a forensic world, such records are known as Windows artifact which can be described as a system generated records of the user activities that have forensic value. Gaining a deep understanding of how these records are created and what information they contain can help the examiner to acquire valuable data that can be used as evidence and support other evidence. The artifacts can be a great way to focus on relevant data and reduce the need for full examination of constantly increasing data storage that examiners encounter. Through this paper, the focus will be on analyzing different, fewer know artifacts, that aren't supported by mainstream forensic tools because they vary between versions of Windows, resulting in the need for manual analysis. Their deep understanding is necessary to avoid misinterpreting their content which can result in wrong conclusions. Additionally, the paper presents the results of testing Windows 10 artifacts and open-source tools used in the testing process.

Izvorni jezik
Engleski

Znanstvena područja
Računarstvo



POVEZANOST RADA

Ustanove:
Tehničko veleučilište u Zagrebu

Profili:

Avatar Url Damir Delija (autor)

Poveznice na cjeloviti tekst rada:

doi ieeexplore.ieee.org

Citiraj ovu publikaciju:

Duranec, Antun; Topolčić, Davorka; Hausknecht, Krešimir; Delija, Damir
Investigating file use and knowledge with Windows 10 artifacts // 42th International Convention on Information, Communication and Electronic Technology (MIPRO) - proceedings / Skala, Karolj (ur.).
Rijeka: Hrvatska udruga za informacijsku i komunikacijsku tehnologiju, elektroniku i mikroelektroniku - MIPRO, 2019. str. 546-555 doi:10.23919/mipro.2019.8756877 (predavanje, međunarodna recenzija, cjeloviti rad (in extenso), znanstveni)
Duranec, A., Topolčić, D., Hausknecht, K. & Delija, D. (2019) Investigating file use and knowledge with Windows 10 artifacts. U: Skala, K. (ur.)42th International Convention on Information, Communication and Electronic Technology (MIPRO) - proceedings doi:10.23919/mipro.2019.8756877.
@article{article, author = {Duranec, Antun and Topol\v{c}i\'{c}, Davorka and Hausknecht, Kre\v{s}imir and Delija, Damir}, editor = {Skala, K.}, year = {2019}, pages = {546-555}, DOI = {10.23919/mipro.2019.8756877}, keywords = {digital forensics, file organisation, Microsoft Windows (operating systems)}, doi = {10.23919/mipro.2019.8756877}, title = {Investigating file use and knowledge with Windows 10 artifacts}, keyword = {digital forensics, file organisation, Microsoft Windows (operating systems)}, publisher = {Hrvatska udruga za informacijsku i komunikacijsku tehnologiju, elektroniku i mikroelektroniku - MIPRO}, publisherplace = {Opatija, Hrvatska} }
@article{article, author = {Duranec, Antun and Topol\v{c}i\'{c}, Davorka and Hausknecht, Kre\v{s}imir and Delija, Damir}, editor = {Skala, K.}, year = {2019}, pages = {546-555}, DOI = {10.23919/mipro.2019.8756877}, keywords = {digital forensics, file organisation, Microsoft Windows (operating systems)}, doi = {10.23919/mipro.2019.8756877}, title = {Investigating file use and knowledge with Windows 10 artifacts}, keyword = {digital forensics, file organisation, Microsoft Windows (operating systems)}, publisher = {Hrvatska udruga za informacijsku i komunikacijsku tehnologiju, elektroniku i mikroelektroniku - MIPRO}, publisherplace = {Opatija, Hrvatska} }

Časopis indeksira:


  • Web of Science Core Collection (WoSCC)
    • Conference Proceedings Citation Index - Science (CPCI-S)
  • Scopus

Citati:

    Altmetrijski pokazatelji:


    Podijeli:





    Contrast
    Increase Font
    Decrease Font
    Dyslexic Font
    CROSBI koristi kolačiće (cookies) kako bi poboljšao funkcionalnost stranice.