I research the threats and crimes against society where processing and communications artifacts are used to disintermediate the human experience. As such I look at computer network attack, computer network exploitation, computer network defense, and apply generalizable aspects of investigation and forensics towards attribution of actors and agents. This involves aspects of espionage, intelligence, technology, techniques, conflict, crime, and war as possible issues and problems as applications of my research.
- The things I look for and attempt to research are artifacts such as log files and malware.
- The processes we look for are motive, means, and opportunity which are behavioral indicators of culpability.
- The techniques we apply are investigatory and thematic driven analysis techniques.
The topics based list is found here, but it is what I’ve already worked on. It is not reflective of where I am going necessarily.