Font Size: a A A

Design And Implementation Of Forensics System Based On User Behavior Analysis

Posted on:2017-11-28Degree:MasterType:Thesis
Country:ChinaCandidate:Z GaoFull Text:PDF
GTID:2358330482491361Subject:Engineering
Abstract/Summary:PDF Full Text Request
With the Internet users who use Network payment rapid increasing, online payment security has gradually become an important aspect of information security. In order to ensure the effective supervision of online payment, we can analysis the evidence of abnormal operation. Therefore, in order to accurately combat computer crime, some computer forensic techniques for abnormal behavior of individuals become an urgent need. At present, computer forensics is only limited to the network evidence and individual traces of the host, and abnormal behavior is lack of effective forensic methods. The difficulty of Individual abnormal behavior forensics is how to dig out the useful evidence, through analysis the operation data of user. Therefore, the forensic of user behavior is one of the difficult problems in the current computer forensics science and computer forensics application.Abnormal behavior of user forensics research is based on the current international and domestic relatively little field. The main work is to design and implement a good performance Forensics System Based on the user behavior analysis technology. The system can determine whether the user behavior is abnormal by capturing and analyzing the operating data changes closely related to the user behavior. Therefore, the following work is done in this paper:(1) Based on understanding current development status of user behavior analysis technology, this paper introduced Windows API hook technology which is used for data acquisition, data fingerprint technology which is used for data verification and User behavior analysis technique which is used for data analysis. Finally, what problem needs to be solved by the system is cleared, and development environment of the system is determined.(2) Based on the requirements analysis, a forensic system based on user behavior analysis is designed. First of all, the outline design determined the system is divided into two parts, the client side and the web server side. The client is responsible for data acquisition, data upload and report download. The web server is mainly responsible for data reception, data analysis and report generation. Finally, the system is designed in detail from the angle of system design. The technical architecture of the system and the function of each module are confirmed.(3) On the basis of system design, using user behavior analysis technique, the forensic system based on user behavior analysis is realized through programming. Finally, the system is deployed in the Hadoop platform, and is tested by functional and performance. Through acquiring user common operation, taking data analysis module as a test case, we found that the system could detect the user abnormal operation integrity, and it has a higher accuracy.
Keywords/Search Tags:User Behavior Analysis, User Operation, Electronic Evidence Collection
PDF Full Text Request
Related items