Advanced Persistent Threats (APTs) use multiple processes to break into a system, avoid detection, harvest valuable information, and inflict serious harm to an organization. It may help us perform information governance to implement security policies, identify risk assessment, and block computer packets. There is still a lack of standards in the APTs investigation processes. In order to obtain the required evidences in the court for prosecution, the golden triangle components (People, Process and Technology) for APTs counter measures have been carried out in this study. Since information security is vital for developing and running an efficient business, this study constitutes a strategic approach to improve the information security. The result of this study is also expected to improve the APTs investigation process and place emphasis on potential possibilities of gathered evidence. The golden triangle components of this proposed methodology is illustrated by applying to some APTs incidents in Taiwan.
Prof. Dr. Bilal BİLGİN