Research on computer forensics based on multiple correlation analysis technology of multi-source logs

Log files are important bases for computer forensics and scenarios reconstruction, on the basis of improving the traditional association algorithm, this paper analyzes the existing and related methods of log forensics, and puts forward a forensics model of multi-source log multi association analysis by using reverse causal association algorithm. The forensics model makes it more suitable for discovering computer crime in time and realizing the reconstruction of computer crime scenarios.