Professional Documents
Culture Documents
com
School of Computing, University of Portsmouth, Buckingham Building, Lion Terrace, Portsmouth PO1 3HE, UK
b
Department of Informatics, Lund University, Ole Rmers vg 6, 223 63 Lund, Sweden
Available online 14 October 2007
Abstract
Epistemic uncertainty is an unavoidable attribute which is present in criminal investigations and could affect negatively the effectiveness of the
process. A cyber-crime investigation involves a potentially large number of individuals and groups who need to communicate, share and make
decisions across many levels and boundaries. This paper presents an approach adopting elements of the Strategic Systems Thinking Framework
(SST) by which conflicting information due to the unavoidable uncertainty can be captured and processed, in support of the investigation process.
A formal description of this approach is proposed as a basis for developing a cyber-crime investigation support system.
2007 Elsevier B.V. All rights reserved.
Keywords: Strategic systems thinking; DempsterShafer Theory; Cyber-crime scene
224
mF 0
In addition to the mass assignment function, there is also the
belief Bel:2 i [0,1] and the plausibility Pl:2 i [0,1] function:
X
Bel A
m B
BpA
Pl A
m B
B\AF
225
226
ApHUk
i
nHTk1
g
[ HTUk1
1ViVn i
227
228
References
[1] P. Bednar, A contextual integration of individual and organizational
learning perspectives as part of IS analysis, Informing Science 3 (3) (2000)
145156.
[2] P. Checkland, S. Holwell, Information, Systems and Information Systems,
Wiley, Chichester, 1998.
[3] T. Chen, C. Davis, An overview of electronic attacks, in: P. Kanellis (Ed.),
Digital Crime and Forensic Science in Cyberspace, Idea Group Pub.,
London, 2006, pp. 126.
[4] C. Chibelushi, B. Sharp, H. Shah, ASKARI: a crime text mining approach,
in digital crime and forensic scienc, in: P. Kanellis (Ed.), Cyberspace, Idea
Group Pub., London, 2006, pp. 155174.
[5] P. Demspster, Upper and lower probabilities induced by a multivalued
mapping, Annals of Statistics 28 (1967) 325339.
[6] D. Dubois, H. Prade, A set-theoretic view on belief functions: logical
approximations by fuzzy sets, International Journal of General Systems 12
(1986) 193226.
[7] T. Ignaki, Interdependence between safety-control policy and multiplesensor schemes via dempster-shafer theory, IEEE Transactions on
Reliability 40 (2) (1991) 182188.
[8] V. Katos, P. Bednar, C. Welch, Dealing with epistemic uncertainty in the
SST framework. creativity and innovation, Decision Making and Decision
Support, Decision Support Press, London, 2006, pp. 886903.
[9] N. Keung-Chi, B. Abramson, Uncertainty management in expert systems,
EEE Expert: Intelligent Systems and Their Applications 5 (2) (1990)
2948.
[10] Parliamentary Office of Science and Technology, POST. Computer Crime.
POSTnote, N. 271, (2006) available from: http://www.parliament.uk/
documents/upload/postpn271.pdf
[11] G. Shafer, A Mathematical Theory of Evidence, Princeton University
Press, 1976.
[12] P. Smets, Data Fusion in the Transferable Belief Model Proceedings of
Third International Conference on Information Fusion, Paris, France,
2000.
[13] P. Turner, Unification of digital evidence from disparate sources (Digital
Evidence Bags), Digital Investigation 2 (3) (2005) 223228.
[14] R. Yager, On the DempsterShafer framework and new combination rules,
Information Sciences 41 (1987) 93137.
[15] J. Yen, Can evidence be combined in the DempsterShafer theory? in: L.N.
Kanal, T.S. Levitt, J.F. Lemmer (Eds.), Uncertainty in Artificial Intelligence
(1987) 6372.