As cyber-attacks become more frequent, the inadequacies of current forensic methodologies could severely jeopardize national security. A hybrid approach is required - based on active forensics, adaptive security and integrated with intelligent response capabilities. This improved forensics approach consists of a comprehensive methodology and the necessary support to implement it. Our approach is cognitive of evidentiary procedure and flexible enough to respond to any cyber-threat. Our model provides a constant forensics presence that becomes an integral part of a total information security program.
|