Digital forensics framework for reviewing and investigating cyber attacks

The journal “Computer Science” of Elsevier posted a tweet suggesting the D4I – Digital forensics framework for reviewing and investigating cyber attacks as a new tool in the armoury of those investigating phishing and other cyber-attacks. D4I has been developed by prof. Ioannis Mavridis, with PhD candidate and member of MSNLab Athanasios Dimitriadis and researchers from the National Institute of Standards and Technology (NIST), Gaithersburg, D4I focuses on enhancing the two most important phases of a digital forensics process (i.e., “examination” and “analysis”) offering a structured way of investigating cyber-attacks. D4I is based on two aspects: categorization and mapping of the digital artifacts to a generalized attack model detailed instructing steps for the examination and analysis phases Finally, D4I is based on standards and best practices of internationally recognized organizations such as NIST, SANS and Lockheed Martin, and is independent of the attack type and sophistication so it can be used in conjunction with any digital forensics process.

You can see the tweet here.

You can read more here.