{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2024,9,8]],"date-time":"2024-09-08T21:36:01Z","timestamp":1725831361403},"publisher-location":"Cham","reference-count":23,"publisher":"Springer International Publishing","isbn-type":[{"type":"print","value":"9783319255118"},{"type":"electronic","value":"9783319255125"}],"license":[{"start":{"date-parts":[[2015,1,1]],"date-time":"2015-01-01T00:00:00Z","timestamp":1420070400000},"content-version":"unspecified","delay-in-days":0,"URL":"http:\/\/www.springer.com\/tdm"}],"content-domain":{"domain":[],"crossmark-restriction":false},"short-container-title":[],"published-print":{"date-parts":[[2015]]},"DOI":"10.1007\/978-3-319-25512-5_5","type":"book-chapter","created":{"date-parts":[[2015,10,1]],"date-time":"2015-10-01T17:23:36Z","timestamp":1443720216000},"page":"53-66","source":"Crossref","is-referenced-by-count":1,"title":["Forensically Sound Retrieval and Recovery of Images from GPU Memory"],"prefix":"10.1007","author":[{"given":"Yulong","family":"Zhang","sequence":"first","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Baijian","family":"Yang","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Marcus","family":"Rogers","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Raymond A.","family":"Hansen","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"297","published-online":{"date-parts":[[2015,12,25]]},"reference":[{"key":"5_CR1","unstructured":"ACPO E-Crime Working Group: Good practice guide for computer-based electronic evidence. In: 7safe Information Security Website (2011)"},{"issue":"2","key":"5_CR2","doi-asserted-by":"publisher","first-page":"63","DOI":"10.1145\/1113034.1113070","volume":"49","author":"F Adelstein","year":"2006","unstructured":"Adelstein, F.: Live forensics: diagnosing your system without killing it first. Commun. ACM 49(2), 63\u201366 (2006)","journal-title":"Commun. ACM"},{"key":"5_CR3","doi-asserted-by":"crossref","unstructured":"Aljaedi, A., Lindskog, D., Zavarsky, P., Ruhl, R., Almari, F.: Comparative analysis of volatile memory forensics: live response vs. memory imaging. In: Privacy, Security, Risk and Trust (Passat) and 2011 IEEE Third International Conference on Social Computing (Socialcom), pp. 1253\u20131258. IEEE Press, New York (2011)","DOI":"10.1109\/PASSAT\/SocialCom.2011.68"},{"key":"5_CR4","unstructured":"AMD. \n                    http:\/\/web.amd.com\/assets\/customerreferenceprogrampackage2012\/CRP%20Oct%202013%20WinZip%20Case%20Study.pdf"},{"key":"5_CR5","unstructured":"Bilby, D.: Low down and dirty: anti-forensic rootkits. In: Proceedings of Ruxcon (2006)"},{"key":"5_CR6","unstructured":"Bre\u00df, S., Kiltz, S., Schaler, M.: Forensics on GPU co-processing in databases research challenges, first experiments, and countermeasures. In: BTW Workshops (2013)"},{"key":"5_CR7","unstructured":"Campbell, W.: Volatile memory acquisition tools-a comparison across taint and correctness (2013). \n                    http:\/\/ro.ecu.edu.au\/adf\/115\/"},{"key":"5_CR8","unstructured":"Center, C.C.: Steps for Recovering from a Unix or NT system compromise. Technical report, Software Engineer Institute (2001)"},{"key":"5_CR9","unstructured":"Claricesimmons. \n                    http:\/\/community.amd.com\/community\/amd-blogs\/amd\/blog\/2013\/10\/30\/the-new-winzip-18-with-accelerated-performance-for-amd-apus-and-gpus"},{"key":"5_CR10","unstructured":"Geeks3D. \n                    http:\/\/www.geeks3d.com\/20111217\/winzip-16-5-will-support-opencl-for-ultra-fast-compression-and-decompression\/"},{"issue":"2","key":"5_CR11","doi-asserted-by":"publisher","first-page":"30","DOI":"10.1109\/MSP.2009.43","volume":"7","author":"B Hay","year":"2009","unstructured":"Hay, B., Bishop, M., Nance, K.: Live analysis: progress and challenges. Secur. Priv. 7(2), 30\u201337 (2009)","journal-title":"Secur. Priv."},{"key":"5_CR12","unstructured":"Jang, K., Han, S., Han, S., Moon, S.B., Park, K.: Sslshader: cheap SSL acceleration with commodity processors. In: Nsdi (2011)"},{"key":"5_CR13","doi-asserted-by":"crossref","unstructured":"Kent, K., Chevalier, S., Grance, T., Dang, H.: Guide to Integrating Forensic Techniques into Incident Response. NIST Special Publication, 800-86 (2006)","DOI":"10.6028\/NIST.SP.800-86"},{"key":"5_CR14","doi-asserted-by":"crossref","unstructured":"Lee, S., Kim, Y., Kim, J., Kim, J.: Stealing Webpages rendered on your browser by exploiting GPU vulnerabilities. In: 2014 IEEE Symposium on Security and Privacy, pp. 19\u201333. IEEE Press, New York (2014)","DOI":"10.1109\/SP.2014.9"},{"key":"5_CR15","unstructured":"McKemmish, R.: When is digital evidence forensically sound? In: Ray, I., Shenoi, S., (eds.) Advances in Digital Forensics IV. Springer (2008)"},{"key":"5_CR16","unstructured":"NVIDIA. \n                    http:\/\/www.nvidia.com\/object\/what-is-gpu-computing.html#sthash.fYjRi2ZR.dpuf"},{"key":"5_CR17","unstructured":"Palmer, G.: A road map for digital forensic research. In: First Digital Forensic Research Workshop, pp. 27\u201330, Utica, New York (2001)"},{"key":"5_CR18","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"158","DOI":"10.1007\/978-3-540-30191-2_13","volume-title":"Information and Communications Security","author":"S Ring","year":"2004","unstructured":"Ring, S., Cole, E.: Volatile memory computer forensics to detect kernel level compromise. In: L\u00f3pez, J., Qing, S., Okamoto, E. (eds.) ICICS 2004. LNCS, vol. 3269, pp. 158\u2013170. Springer, Heidelberg (2004)"},{"key":"5_CR19","unstructured":"Service U.S. S.: Best practices for seizing electronic evidence (2007). \n                    http:\/\/www.treas.gov\/usss\/electronic_evidence.shtml"},{"issue":"3","key":"5_CR20","doi-asserted-by":"publisher","first-page":"65","DOI":"10.1145\/1368506.1368516","volume":"42","author":"I Sutherland","year":"2008","unstructured":"Sutherland, I., Evans, J., Tryfonas, T., Blyth, A.: Acquiring volatile operating system data tools and techniques. ACM SIGOPS Operating Syst. Rev. 42(3), 65\u201373 (2008)","journal-title":"ACM SIGOPS Operating Syst. Rev."},{"key":"5_CR21","unstructured":"Urrea, J.M.: An analysis of Linux RAM forensics. Unpublished Doctoral Dissertation, Monterey, California, Naval Postgraduate School (2006)"},{"issue":"3","key":"5_CR22","doi-asserted-by":"publisher","first-page":"289","DOI":"10.1007\/s10207-014-0262-9","volume":"14","author":"G Vasiliadis","year":"2010","unstructured":"Vasiliadis, G., Polychronakis, M., Ioannidis, S.: GPU-Assisted Malware. Int. J. Inf. Secur. 14(3), 289\u2013297 (2010). \n                    http:\/\/dl.acm.org\/citation.cfm?id=2777077","journal-title":"Int. J. Inf. Secur."},{"key":"5_CR23","doi-asserted-by":"crossref","unstructured":"Wang, L., Zhang, R., Zhang, S.: A model of computer live forensics based on physical memory analysis. In: 2009 1st International Conference on Information Science and Engineering, pp. 4647\u20134649. IEEE Press, Nanjing (2009)","DOI":"10.1109\/ICISE.2009.69"}],"container-title":["Lecture Notes of the Institute for Computer Sciences, Social Informatics and Telecommunications Engineering","Digital Forensics and Cyber Crime"],"original-title":[],"link":[{"URL":"http:\/\/link.springer.com\/content\/pdf\/10.1007\/978-3-319-25512-5_5","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2019,5,30]],"date-time":"2019-05-30T23:08:31Z","timestamp":1559257711000},"score":1,"resource":{"primary":{"URL":"http:\/\/link.springer.com\/10.1007\/978-3-319-25512-5_5"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2015]]},"ISBN":["9783319255118","9783319255125"],"references-count":23,"URL":"https:\/\/doi.org\/10.1007\/978-3-319-25512-5_5","relation":{},"ISSN":["1867-8211","1867-822X"],"issn-type":[{"type":"print","value":"1867-8211"},{"type":"electronic","value":"1867-822X"}],"subject":[],"published":{"date-parts":[[2015]]}}}