Advances in Digital Forensics II (Google eBook)

Front Cover
Martin S. Olivier, Sujeet Shenoi
Springer Science & Business Media, Aug 30, 2006 - Computers - 364 pages
2 Reviews

ADVANCES IN DIGITAL FORENSICS II

Edited by: Martin S. Olivier and Sujeet Shenoi

Digital forensics deals with the acquisition, preservation, examination, analysis and presentation of electronic evidence. Networked computing, wireless communications and portable electronic devices have expanded the role of digital forensics beyond traditional computer crime investigations. Practically every crime now involves some aspect of digital evidence; digital forensics provides the techniques and tools to articulate this evidence. Digital forensics also has myriad intelligence applications. Furthermore, it has a vital role in information assurance – investigations of security breaches yield valuable information that can be used to design more secure systems.

Advances in Digital Forensics II describes original research results and innovative applications in the emerging discipline of digital forensics. In addition, it highlights some of the major technical and legal issues related to digital evidence and electronic crime investigations. The areas of coverage include:

  • Themes and Issues in Digital Forensics
  • Evidence Collecting and Handling
  • Forensic Techniques
  • Operating System and File System Forensics
  • Network Forensics
  • Portable Electronic Device Forensics
  • Linux and File System Forensics
  • Training, Governance and Legal Issues 

This book is the second volume in the anual series produced by the International Federation for Information Processing (IFIP) Working Group 11.9 on Digital Forensics, an international community of scientists, engineers and practitioners dedicated to advancing the state of the art of research and practice in digital forensics. The book contains a selection of twenty-five edited papers from the First Annual IFIP WG 11.9 Conference on Digital Forensics, held at the National Center for Forensic Science, Orlando, Florida, USA in the spring of 2006.

Advances in Digital Forensics is an important resource for researchers, faculty members and graduate students, as well as for practitioners and individuals engaged in research and development efforts for the law enforcement and intelligence communities.

Martin S. Olivier is a Professor of Computer Science and co-manager of the Information and Computer Security Architectures Research Group at the University of Pretoria, Pretoria, South Africa.

Sujeet Shenoi is the F.P. Walter Professor of Computer Science and a principal with the Center for Information Security at the University of Tulsa, Tulsa, Oklahoma, USA.

For more information about the 300 other books in the IFIP series, please visit www.springeronline.com.

For more information about IFIP, please visit www.ifip.org.

  

What people are saying - Write a review

We haven't found any reviews in the usual places.

Selected pages

Contents

SOME CHALLENGES IN DIGITAL FORENSICS
3
ADVANCED FORENSIC FORMAT AN OPEN EXTENSIBLE FORMAT FOR DISK IMAGING
13
FILE SYSTEM SUPPORT FOR DIGITAL EVIDENCE BAGS
29
REMOTE UPLOAD OF EVIDENCE OVER MOBILE AD HOC NETWORKS
41
APPLYING MACHINE TRUST MODELS TO FORENSIC INVESTIGATIONS
55
EXPLORING BIG HAYSTACKS Data Mining and Knowledge Management
67
COUNTERING HOSTILE FORENSIC TECHNIQUES
79
USING PLSIU TO DETECT INSIDER THREATS FROM EMAIL TRAFFIC
91
ON THE RELIABILITY OF NETWORK EAVESDROPPING TOOLS
199
ACTIVE TRAFFIC CAPTURE FOR NETWORK FORENSICS
215
LOGICAL TRAFFIC ISOLATION USING DIFFERENTIATED SERVICES
229
PASSIVE DETECTION OF NAT ROUTERS AND CLIENT COUNTING
239
ANALYSIS OF WEB PROXY LOGS
247
GSM CELL SITE FORENSICS
259
AN ARCHITECTURE FOR SCADA NETWORK FORENSICS
273
IDENTIFYING DIGITAL CAMERAS USING CFA INTERPOLATION
289

COLLUSION DETECTION USING MULTIMEDIA FINGERPRINTS
105
AUTHORSHIP ATTRIBUTION FOR ELECTRONIC DOCUMENTS
119
LINKING INDIVIDUALS TO DIGITAL INFORMATION
131
USEMISUSE CASE DRIVEN ANALYSIS OF POSITIVE TRAIN CONTROL
141
MAC OS X FORENSICS
159
DETECTING DATA CONCEALMENT PROGRAMS USING PASSIVE FILE SYSTEM ANALYSIS
171
ASSESSING TRACE EVIDENCE LEFT BY SECURE DELETION PROGRAMS
185
FORENSIC ANALYSIS OF BIOS CHIPS
301
A TRAINING TOOL FOR INTERNET CRIMES AGAINST CHILDREN CASES
317
PROCESS FLOW DIAGRAMS FOR TRAINING AND OPERATIONS
331
A CONTROL FRAMEWORK FOR DIGITAL FORENSICS
343
CRIMINAL REGULATION OF ANTI FORENSIC TOOLS IN JAPAN
357
Copyright

Common terms and phrases

About the author (2006)

Eric Goetz is the Associate Director for Research at the Institute for Information Infrastructure Protection, Dartmouth College, Hanover, New Hampshire, USA.

Sujeet Shenoi is the F.P. Walter Professor of Computer Science and a principal with the Center for Information Security at the University of Tulsa, Tulsa, Oklahoma, USA