Cryptopometry as a Methodology for Investigating Encrypted Material
When encrypted material is discovered during a digital investigation and the investigator cannot decrypt the material then he or she is faced with the problem of how to determine the evidential value of the material. This research is proposing a methodology titled Cryptopometry. Cryptopometry extracts probative value from the encrypted file of a hybrid cryptosystem. Cryptopometry also incorporates a technique for locating the original plaintext file. Since child pornography (KP) images and terrorist related information (TI) are transmitted in encrypted formats, the digital investigator must ask the question Cui Bono?—who benefits or who is the recipient? By following Cryptopometry, the scope of the digital investigation can be extended to reveal the intended recipient. The derivation of the term Cryptopometry is also described and explained.