Digital Investigation and the Trojan Defense, Revisited

Digital Chain of Custody

International Journal of Advanced Research in Computer Science and Software Engineering ◽

10.23956/ijarcsse.v7i7.109 ◽

2017 ◽

Vol 7 (7) ◽

pp. 117

Author(s):

Matthew N.O. Sadiku ◽

Adebowale E. Shadare ◽

Sarhan M. Musa

Keyword(s):

Digital Evidence ◽

Chain Of Custody ◽

Digital Investigation ◽

A Chain ◽

Admissible Evidence ◽

Investigation Process

Digital chain of custody is the record of preservation of digital evidence from collection to presentation in the court of law. This is an essential part of digital investigation process. Its key objective is to ensure that the digital evidence presented to the court remains as originally collected, without tampering. The chain of custody is important for admissible evidence in court. Without a chain of custody, the opposing attorney can challenge or dismiss the evidence presented. The aim of this paper is to provide a brief introduction to the concept of digital chain custody.

Download Full-text

The Future Direction of Cybercrime and the Difficulties of Digital Investigations: A Rationale for a Review of Digital Investigation Specialist Education

Proceedings of the 19th European Conference on Cyber Warfare ◽

10.34190/ews.20.095 ◽

2020 ◽

Keyword(s):

The Future ◽

Digital Investigation ◽

Future Direction

Download Full-text

Corrigendum to “Decrypting password-based encrypted backup data for Huawei smartphones” [Digital Investigation 28 (2019) 200890]

Forensic Science International: Digital Investigation ◽

10.1016/j.fsidi.2021.301179 ◽

2021 ◽

pp. 301179

Author(s):

Myungseo Park ◽

Giyoon Kim ◽

Younjai Park ◽

Insoo Lee ◽

Jongsung Kim

Keyword(s):

Digital Investigation

Download Full-text

Panoramic perspective of Digital Investigation

Digital Investigation ◽

10.1016/j.diin.2019.100886 ◽

2019 ◽

Vol 30 ◽

pp. 173

Author(s):

Eoghan Casey ◽

Zeno Geradts ◽

Bruce Nikkel

Keyword(s):

Digital Investigation

Download Full-text

An Argumentation-Based Reasoner to Assist Digital Investigation and Attribution of Cyber-Attacks

Forensic Science International: Digital Investigation ◽

10.1016/j.fsidi.2020.300925 ◽

2020 ◽

Vol 32 ◽

pp. 300925

Author(s):

Erisa Karafili ◽

Linna Wang ◽

Emil C. Lupu

Keyword(s):

Cyber Attacks ◽

Digital Investigation

Download Full-text

Awareness of Problems and Defies with Big Data Involved in Network Security Management with Revised Data Fusion-Based Digital Investigation Model

Big Data Analytics and Computing for Digital Forensic Investigations ◽

10.1201/9781003024743-7 ◽

2020 ◽

pp. 151-170

Author(s):

Sateesh Kumar Pradhan ◽

Satyasundara Mahapatra ◽

Chandrakant Mallick

Keyword(s):

Big Data ◽

Network Security ◽

Data Fusion ◽

Security Management ◽

Digital Investigation ◽

Network Security Management

Download Full-text

Digital Forensics and Digital Investigation to Form a Suspension Bridge Flanked by Law Enforcement, Prosecution, and Examination of Computer Frauds and Cybercrime

Big Data Analytics and Computing for Digital Forensic Investigations ◽

10.1201/9781003024743-2 ◽

2020 ◽

pp. 21-41

Author(s):

M.S. Rao ◽

Sarat Chandra Satpathy

Keyword(s):

Law Enforcement ◽

Digital Forensics ◽

Suspension Bridge ◽

Digital Investigation

Download Full-text

Hypothesis Generation and Testing in Event Profiling for Digital Forensic Investigations

Emerging Digital Forensics Applications for Crime Detection, Prevention, and Security ◽

10.4018/978-1-4666-4006-1.ch013 ◽

2013 ◽

pp. 181-194

Author(s):

Lynn Batten ◽

Lei Pan ◽

Nisar Khan

Keyword(s):

Hypothesis Generation ◽

Digital Forensic ◽

Detailed Case ◽

Analysis Phase ◽

Question And Answer ◽

Digital Investigation ◽

Testing Of Hypotheses ◽

Digital Forensic Investigations ◽

Investigative Process

The need for an automated approach to forensic digital investigation has been recognized for some years, and several authors have developed frameworks in this direction. The aim of this paper is to assist the forensic investigator with the generation and testing of hypotheses in the analysis phase. In doing so, the authors present a new architecture which facilitates the move to automation of the investigative process; this new architecture draws together several important components of the literature on question and answer methodologies including the concept of ‘pivot’ word and sentence ranking. Their architecture is supported by a detailed case study demonstrating its practicality.

Download Full-text

A Framework for the Forensic Investigation of Unstructured Email Relationship Data

International Journal of Digital Crime and Forensics ◽

10.4018/jdcf.2011070101 ◽

2011 ◽

Vol 3 (3) ◽

pp. 1-18 ◽

Cited By ~ 11

Author(s):

John Haggerty ◽

Alexander J. Karran ◽

David J. Lamb ◽

Mark Taylor

Keyword(s):

Forensic Analysis ◽

Structured Data ◽

Unstructured Data ◽

Forensic Investigation ◽

Qualitative Information ◽

Data Set ◽

Analysis Techniques ◽

Potential Sources ◽

Network Identification ◽

Digital Investigation

The continued reliance on email communications ensures that it remains a major source of evidence during a digital investigation. Emails comprise both structured and unstructured data. Structured data provides qualitative information to the forensics examiner and is typically viewed through existing tools. Unstructured data is more complex as it comprises information associated with social networks, such as relationships within the network, identification of key actors and power relations, and there are currently no standardised tools for its forensic analysis. This paper posits a framework for the forensic investigation of email data. In particular, it focuses on the triage and analysis of unstructured data to identify key actors and relationships within an email network. This paper demonstrates the applicability of the approach by applying relevant stages of the framework to the Enron email corpus. The paper illustrates the advantage of triaging this data to identify (and discount) actors and potential sources of further evidence. It then applies social network analysis techniques to key actors within the data set. This paper posits that visualisation of unstructured data can greatly aid the examiner in their analysis of evidence discovered during an investigation.

Download Full-text

Data Mining Analytics for Crime Security Investigation and Intrusion Detection

Advances in Data Mining and Database Management - Data Mining Trends and Applications in Criminal Science and Investigations ◽

10.4018/978-1-5225-0463-4.ch008 ◽

2016 ◽

pp. 212-244

Author(s):

Boutheina Fessi ◽

Yacine Djemaiel ◽

Noureddine Boudriga

Keyword(s):

Data Mining ◽

Dynamic Environments ◽

Future Research ◽

Cyber Crime ◽

Research Directions ◽

Data Mining Techniques ◽

Crime Investigation ◽

Security Investigation ◽

Future Research Directions ◽

Digital Investigation

This chapter provides a review about the usefulness of applying data mining techniques to detect intrusion within dynamic environments and its contribution in digital investigation. Numerous applications and models are described based on data mining analytics. The chapter addresses also different requirements that should be fulfilled to efficiently perform cyber-crime investigation based on data mining analytics. It states, at the end, future research directions related to cyber-crime investigation that could be investigated and presents new trends of data mining techniques that deal with big data to detect attacks.

Download Full-text