Forensic-Ready Risk Management Concepts
Lukas Daubner, Martin Macak, Raimundas Matulevi\v{c}ius, Barbora, Buhnova, Sofija Maksovi\'c, Tomas Pitner
TL;DR
This paper clarifies and aligns forensic readiness concepts across multiple approaches to improve the design and assessment of forensic-ready software systems, enhancing security risk management.
Contribution
It systematically derives and aligns forensic readiness concepts from six approaches to support better integration into security risk management.
Findings
Unified forensic readiness concepts established
Framework for integrating forensic readiness into ISSRM
Enhanced clarity in forensic readiness requirements
Abstract
Currently, numerous approaches exist supporting the implementation of forensic readiness and, indirectly, forensic-ready software systems. However, the terminology used in the approaches and their focus tends to vary. To facilitate the design of forensic-ready software systems, the clarity of the underlying concepts needs to be established so that their requirements can be unambiguously formulated and assessed. This is especially important when considering forensic readiness as an add-on to information security. In this paper, the concepts relevant to forensic readiness are derived and aligned based on six existing approaches. The results then serve as a stepping stone for enhancing Information Systems Security Risk Management (ISSRM) with forensic readiness.
Peer Reviews
No public reviews on file for this paper yet. If you reviewed it on a platform where reviews are public (OpenReview, ICLR, NeurIPS, ICML), you can paste yours below so the community can read it here.
Videos
No videos yet. Explain this paper in a talk, walkthrough, or lecture? Add one.
Taxonomy
TopicsDigital and Cyber Forensics · Information and Cyber Security · Software Engineering Research