Digital forensic model for computer networks
- Authors: Sanyamahwe, Tendai
- Date: 2011
- Subjects: Computer crimes -- Investigation , Evidence, Criminal , Computer networks -- Security measures , Electronic evidence , Forensic sciences , Internet -- Security measures
- Language: English
- Type: Thesis , Masters , MCom (Information Systems)
- Identifier: vital:11127 , http://hdl.handle.net/10353/d1000968 , Computer crimes -- Investigation , Evidence, Criminal , Computer networks -- Security measures , Electronic evidence , Forensic sciences , Internet -- Security measures
- Description: The Internet has become important since information is now stored in digital form and is transported both within and between organisations in large amounts through computer networks. Nevertheless, there are those individuals or groups of people who utilise the Internet to harm other businesses because they can remain relatively anonymous. To prosecute such criminals, forensic practitioners have to follow a well-defined procedure to convict responsible cyber-criminals in a court of law. Log files provide significant digital evidence in computer networks when tracing cyber-criminals. Network log mining is an evolution of typical digital forensics utilising evidence from network devices such as firewalls, switches and routers. Network log mining is a process supported by presiding South African laws such as the Computer Evidence Act, 57 of 1983; the Electronic Communications and Transactions (ECT) Act, 25 of 2002; and the Electronic Communications Act, 36 of 2005. Nevertheless, international laws and regulations supporting network log mining include the Sarbanes-Oxley Act; the Foreign Corrupt Practices Act (FCPA) and the Bribery Act of the USA. A digital forensic model for computer networks focusing on network log mining has been developed based on the literature reviewed and critical thought. The development of the model followed the Design Science methodology. However, this research project argues that there are some important aspects which are not fully addressed by South African presiding legislation supporting digital forensic investigations. With that in mind, this research project proposes some Forensic Investigation Precautions. These precautions were developed as part of the proposed model. The Diffusion of Innovations (DOI) Theory is the framework underpinning the development of the model and how it can be assimilated into the community. The model was sent to IT experts for validation and this provided the qualitative element and the primary data of this research project. From these experts, this study found out that the proposed model is very unique, very comprehensive and has added new knowledge into the field of Information Technology. Also, a paper was written out of this research project.
- Full Text:
- Date Issued: 2011
Operational risk model for MSES :impact on organisational information communication technology
- Authors: Bayaga, Anass
- Date: 2011
- Subjects: Risk management -- Statistical methods Computer networks -- Security measures Risk assessment
- Language: English
- Type: Thesis , Masters , M Comm
- Identifier: http://hdl.handle.net/10353/8332 , vital:32270
- Description: The aim of the study was to investigate the impact of Information Communication Technology Operational Risk Management (ICT ORM) on the performance of a Medium Small Enterprise (MSE). The study was based upon a survey design to collect the primary data from 107 respondents using simple random sampling. The research instrument was administered online. A one stage normative model, associative in nature, was developed based upon reviewing previous research and in line with the research findings. The model elicited five factors based upon the multiple regression analysis of the data: principal causes of ORM failure related to ICT; change management requirements and ICT risk; characteristic(s) of information; challenges posed by ORM solutions and evaluation models affecting ICT adoption within MSEs. Based on the methodologies used in this study including factor analysis and multivariate regression analysis, it is recommended that this model be applied to monitor these changes more closely and to measure the changing strategies and the associated factors such as insufficient or improper user participation in systems development process, identified as potential barriers to the effective adoption and implementation of ICT within an MSE.
- Full Text:
- Date Issued: 2011