Invention Grant
US08458805B2 Digital forensic analysis using empirical privilege profiling (EPP) for filtering collected data
有权
使用经验特权分析(EPP)对过滤收集的数据进行数字法医分析
- Patent Title: Digital forensic analysis using empirical privilege profiling (EPP) for filtering collected data
- Patent Title (中): 使用经验特权分析(EPP)对过滤收集的数据进行数字法医分析
-
Application No.: US12469558Application Date: 2009-05-20
-
Publication No.: US08458805B2Publication Date: 2013-06-04
- Inventor: Frank Adelstein , Carla Marceau
- Applicant: Frank Adelstein , Carla Marceau
- Applicant Address: US MN Minneapolis
- Assignee: Architecture Technology Corporation
- Current Assignee: Architecture Technology Corporation
- Current Assignee Address: US MN Minneapolis
- Agency: Shumaker & Sieffert, P.A.
- Main IPC: G06F7/04
- IPC: G06F7/04
Abstract:
A forensic device allows a user to remotely interrogate a target computing device in order to collect and analyze computer evidence that may be stored on the target computing device. The forensic device acquires the computer evidence from the target computing device and filters the computer evidence using an application-specific system-level privilege profile that describes the aggregate exercise of system-level privileges by a plurality of software application instances executing throughout an enterprise. The forensic device presents a user interface through which the remote user views the filtered computer evidence acquired from the target computing device. In this manner, forensic device allows the user to filter the collected computer evidence to data that is likely to have forensic relevance.
Public/Granted literature
- US20090288164A1 DIGITAL FORENSIC ANALYSIS USING EMPIRICAL PRIVILEGE PROFILING (EPP) FOR FILTERING COLLECTED DATA Public/Granted day:2009-11-19
Information query
