Ahmad Roshidi Amran scite author profile

Ahmad Roshidi Amran

5Publications

6Citation Statements Received

19Citation Statements Given

How they've been cited

How they cite others

Affiliations

University of Kuala Lumpur, Loughborough University

Publications

Order By: Most citations

Metrics for network forensics conviction evidence

Amran

Phan

Parish

2009

View full text Add to dashboard Cite

Evaluation of forensics evidence is an essential step in proving the malicious intents of an attacker or adversary and the severity of the damages caused to any network. This paper takes a step forward showing how security metrics can be used to sustain a sense of credibility to network evidence gathered as an elaboration and extension to an embedded feature of Network Forensic Readiness (NFR) -Redress that is defined as holding intruders responsible. We propose a procedure of evidence acquisition in network forensics where we then analyse sample of packet data in order to extract useful information as evidence through a formalised intuitive model, based on capturing adversarial behaviour and layer analysis. We then apply the Common Vulnerability Scoring System (CVSS) metrics to show that a forensics metrics system could assess the severity of network attacks committed, thus giving a degree of credibility to the evidence gathered. This way, hard evidence could be objectively collected to lend support to the resourceintensive process of investigation and litigation, leading to successful conviction, while reducing effort expended on the process.

show abstract

Evidential structures and metrics for network forensics

Amran

Phan

Parish

et al. 2010

IJITST

View full text Add to dashboard Cite

Evidential Notions of Defensibility and Admissibility with Property Preservation

Phan

Amran

Whitley

et al. 2011

View full text Add to dashboard Cite

For security-emphasizing fields that deal with evidential data acquisition, processing, communication, storage and presentation, for instance network forensics, border security and enforcement surveillance, ultimately the outcome is not the technical output but rather physical prosecutions in court (e.g. of hackers, terrorists, law offenders) or counterattack measures against the malicious adversaries. The aim of this paper is to motivate the research direction of formally linking these technical fields with the legal field. Notably, deriving technical representations of evidential data such that they are useful as evidences in court; while aiming that the legal parties understand the technical representations in better light. More precisely, we design the security notions of evidence processing and acquisition, guided by the evidential requirements from the legal perspective; and discuss example relations to forensics investigations.

show abstract

An evidential network forensics analysis model with adversarial capability and layering

Amran

Saad

2014

View full text Add to dashboard Cite

Privacy and security gaps in mitigating Cyber crime: The review

Saad

Amran

Afif

et al. 2016

View full text Add to dashboard Cite

scite is a Brooklyn-based organization that helps researchers better discover and understand research articles through Smart Citations–citations that display the context of the citation and describe whether the article provides supporting or contrasting evidence. scite is used by students and researchers from around the world and is funded in part by the National Science Foundation and the National Institute on Drug Abuse of the National Institutes of Health.

Contact Info

customersupport@researchsolutions.com

10624 S. Eastern Ave., Ste. A-614

Henderson, NV 89052, USA

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

Blog Terms and Conditions API Terms Privacy Policy Contact Cookie Preferences Do Not Sell or Share My Personal Information

Made with 💙 for researchers

Part of the Research Solutions Family.