SAM: A Mechanism to Facilitate Smear-Aware Forensic Analysis of Volatile System Memory

Trushna Parida,Kanika Nath,Suvrojit Das

doi:10.1080/19361610.2022.2161972

SAM: A Mechanism to Facilitate Smear-Aware Forensic Analysis of Volatile System Memory

Trushna Parida, Kanika Nath + Show 1 more

https://doi.org/10.1080/19361610.2022.2161972

Copy DOI

Journal: Journal of Applied Security Research	Publication Date: Dec 29, 2022
Citations: 1

Affiliation: National Institute of Technology Durgapur

#Page Table #Inconsistent Values + Show 8 more

Abstract
Full-Text
Similar Papers

Abstract

Page smear is a phenomenon that occurs when a system’s volatile memory dump is obtained in a non-atomic manner; it’s more common in systems with a lot of RAM and different workloads. It has a considerable impact on the quality and reliability of the forensic artifacts obtained, as well as the analysis of such snapshots. We present SAM, a timeline-based page table state information collection mechanism that enables a reliable memory analysis. It facilitates visualizing inconsistencies in the page table data structure and provides the investigator with a reliable source of page table information to deal with the inconsistent values.

Talk to us

Join us for a 30 min session where you can share your feedback and ask us any queries you have

Schedule a call

Similar Papers

Paper Title

Journal

Date

Author

View more papers

More From: Journal of Applied Security Research

Paper Title

Journal

Date

Author

View more papers

Disclaimer: All third-party content on this website/platform is and will remain the property of their respective owners and is provided on "as is" basis without any warranties, express or implied. Use of third-party content does not indicate any affiliation, sponsorship with or endorsement by them. Any references to third-party content is to identify the corresponding services and shall be considered fair use under The CopyrightLaw.