Meta-Forensics: Quantifying Plausibility and Probative Value in Digital
determine quantitatively the relative plausibility of alternative
explanations (hypotheses) for the existence of the recovered digital evidence.
This enables the prosecution and defence sides to evaluate the strength of
their respective cases.
determine quantitatively the probative value of an item of
digital evidence – i.e., how much evidential weight it contributes
to the hypothesis about a criminal case. This enables cost-effective digital
forensic triage schema to be devised in which the most important evidence is
with colleagues from the University of Hong Kong, the Hong Kong Police Service
and the Metropolitan Police Service.
- US ONR Minerva award, jointly with Thomas Rid &
David Betz (War Studies, KCL), Strategy and the Network Society (2011-2013)
- cyber-forensics & cyber-evidence (ICUK Partnership
grant & Proof of Concept award 2008-2010)
- DDoS attack mitigation (PhD students: Alan Saied & Matus Vadura)
- malware detection (PhD student: Vida Ghanaei)
- information security management systems (PhD student:
- fraud detection using computational immunology
(EPSRC/DTI-funded MI project CIFD 2000-2003), jointly with ICSA, KCL
- intrusion detection (DERA-funded MoD project IWAAS
1997-2000) , jointly with ICSA, KCL