A Case Study on the Impact of Forensic-Ready Information Systems on the Security Posture

DAUBNER, Lukáš, Raimundas MATULEVICIUS, Barbora BÜHNOVÁ, Matej ANTOL, Michal RŮŽIČKA and Tomáš PITNER. A Case Study on the Impact of Forensic-Ready Information Systems on the Security Posture. Online. In Advanced Information Systems Engineering. Cham: Springer Nature Switzerland, 2023, p. 522-538. ISBN 978-3-031-34559-3. Available from: https://dx.doi.org/10.1007/978-3-031-34560-9_31.

Basic information

Original name

A Case Study on the Impact of Forensic-Ready Information Systems on the Security Posture

Authors

DAUBNER, Lukáš (203 Czech Republic, guarantor, belonging to the institution), Raimundas MATULEVICIUS, Barbora BÜHNOVÁ (203 Czech Republic, belonging to the institution), Matej ANTOL (703 Slovakia, belonging to the institution), Michal RŮŽIČKA (203 Czech Republic, belonging to the institution) and Tomáš PITNER (203 Czech Republic, belonging to the institution)

Edition

Cham, Advanced Information Systems Engineering, p. 522-538, 17 pp. 2023

Publisher

Springer Nature Switzerland

---

Other information

Language

English

Type of outcome

Stať ve sborníku

Field of Study

10200 1.2 Computer and information sciences

Confidentiality degree

není předmětem státního či obchodního tajemství

Publication form

electronic version available online

References:

URL

Impact factor

Impact factor: 0.402 in 2005

RIV identification code

RIV/00216224:14330/23:00131068

Organization unit

Faculty of Informatics

ISBN

978-3-031-34559-3

ISSN

DOI

http://dx.doi.org/10.1007/978-3-031-34560-9_31

Keywords in English

Forensic Readiness;Forensic-Ready Systems;Risk Management;Information Security;Digital Forensics

Tags

best2, core_A, firank_A

Tags

International impact, Reviewed

---

Abstract

V originále

While approaches aimed at developing forensic-ready systems are starting to emerge, it is still primarily a theoretical concept. This paper presents a case study of integrating forensic readiness capabilities into SensitiveCloud, an information system for storing and processing sensitive data. A risk-based approach to forensic readiness design is followed to achieve it. Consequently, weaknesses in both processes and systems are identified, and forensic readiness requirements are formulated. This case study reports on lessons learned in a practical implementation of a forensic-ready system, its impact on security, and its support towards ISO/IEC 27k.

---

Links

CZ.02.1.01/0.0/0.0/16_019/0000822, interní kód MU (CEP code: EF16_019/0000822)	Name: Centrum excelence pro kyberkriminalitu, kyberbezpečnost a ochranu kritických informačních infrastruktur (Acronym: C4e) Investor: Ministry of Education, Youth and Sports of the CR, CyberSecurity, CyberCrime and Critical Information Infrastructures Center of Excellence, Priority axis 1: Strengthening capacities for high-quality research
EF16_019/0000822, research and development project	Name: Centrum excelence pro kyberkriminalitu, kyberbezpečnost a ochranu kritických informačních infrastruktur
LM2018140, research and development project	Name: e-Infrastruktura CZ (Acronym: e-INFRA CZ) Investor: Ministry of Education, Youth and Sports of the CR
MUNI/A/1433/2022, interní kód MU	Name: Zapojení studentů Fakulty informatiky do mezinárodní vědecké komunity 23 Investor: Masaryk University
101087529, interní kód MU	Name: Cyber-security Excellence Hub in Estonia and South Moravia (CHESS) Investor: European Union, Cyber-security Excellence Hub in Estonia and South Moravia (CHESS), Widening participation and strengthening the European Research Area