| Popis: |
In Ubiquitous Computing Environment (UCE), volatile information such as register, cache memory, and network information are hard to make certain of a real-time collection because such volatile information are easily modified or disappeared. Thus, a collection of volatile information is one of important step for computer forensics system on ubiquitous computing. In this paper, we propose a volatile information collection module, which collects variable volatile information of server system based on memory mapping in real-time. In addition, the proposed module ensure the integrity of collected information, thus, the collected information have legal force. |
