| Title |
Kompiuterio įvykių laike atkūrimo sistemos kūrimas ir tyrimas / |
| Translation of Title |
Development and research of the computer events’ timeline reconstruction system. |
| Authors |
Kašelynas, Tomas |
| Full Text |
|
| Pages |
125 |
| Keywords [eng] |
event timeline reconstruction ; abstraction levels ; digital forensics facilitation |
| Abstract [eng] |
The main goal of Master‘s thesis is to analyze various data structures and algorithms to find the most effective ways of importing events from file, saving and loading work, and forming abstraction levels. Different sources state that the amount of digital crime occurances is constantly growing and they are getting more sofisticated. The sources also introduce various models and methods to facilitate and accelerate the processes of digital forensics. Computer events‘ timeline reconstruction system is based on forming four abstraction levels. It has been created on .NET framework using MVVM architecture, which allows to develop user interface independently to business logic. Various data structures and iteration methods on them are used to research the importation of events from file and saving of work. Moreover, the benefits of using Factory design pattern are analyzed for the loading of work as well as the adaptability of Chain of Responsibility design pattern is discussed for the formation of each abstraction level. Finally, the best way to import events from file is the one already implemented in the system which iterates over IEnumerable collection in foreach loop. The most effective way to save work is using foreach loop which iterates over Span object which is formed from List type collection. The best way to load work is to use Factory design pattern. The most effective way to form each level of abstraction is to use Chain of Responsibility design pattern. |
| Dissertation Institution |
Kauno technologijos universitetas. |
| Type |
Master thesis |
| Language |
Lithuanian |
| Publication date |
2023 |
