Challenges, Opportunities and a Framework for Web Environment Forensics

The web has evolved into a robust and ubiquitous platform, changing almost every aspect of people’s lives. The unique characteristics of the web pose new challenges to digital forensic investigators. For example, it is much more difficult to gain access to data that is stored online than it is to access data on the hard drive of a laptop. Despite the fact that data from the web is more challenging for forensic investigators to acquire and analyze, web environments continue to store more data than ever on behalf of users.

[1]  Bradley L. Schatz,et al.  Extending the advanced forensic format to accommodate multiple data sources, logical evidence, arbitrary information and forensic workflow , 2009, Digit. Investig..

[2]  Golden G. Richard,et al.  FACE: Automated digital evidence discovery and correlation , 2008, Digit. Investig..

[3]  Raffael Marty,et al.  Cloud application logging for forensics , 2011, SAC.

[4]  Eoghan Casey,et al.  Leveraging CybOX™ to standardize representation and exchange of digital forensic information , 2015, Digit. Investig..

[5]  Gaurav Gupta,et al.  A Tool for Extracting Static and Volatile Forensic Artifacts of Windows 8.x Apps , 2015, IFIP Int. Conf. Digital Forensics.

[6]  Florian P. Buchholz,et al.  Design and Implementation of Zeitline: a Forensic Timeline Editor , 2005, DFRWS.

[7]  Alex Nelson,et al.  Advancing coordinated cyber-investigations and tool interoperability using a community developed specification language , 2017, Digit. Investig..

[8]  Adam Doupé,et al.  dbling: Identifying extensions installed on encrypted web thin clients , 2016 .

[9]  Andrew Reed,et al.  Identifying HTTPS-Protected Netflix Videos in Real-Time , 2017, CODASPY.

[10]  Vassil Roussev,et al.  API-Based Forensic Acquisition of Cloud Drives , 2016, IFIP Int. Conf. Digital Forensics.

[11]  Sieteng Soh,et al.  Cloud forensics: Technical challenges, solutions and comparative analysis , 2015, Digit. Investig..

[12]  Oscar Vermaas,et al.  Open Computer Forensic Architecture a Way to Process Terabytes of Forensic Disk Images , 2010 .

[13]  Fabio Marturana,et al.  A Machine Learning-based Triage methodology for automated categorization of digital media , 2013, Digit. Investig..

[14]  Simson L. Garfinkel,et al.  Digital forensics XML and the DFXML toolset , 2012, Digit. Investig..

[15]  Martin Boldt,et al.  Computer forensic timeline visualization tool , 2009 .

[16]  M. Tahar Kechadi,et al.  A complete formalized knowledge representation model for advanced digital forensics timeline analysis , 2014, Digit. Investig..

[17]  Ankur Padia,et al.  UCO: A Unified Cybersecurity Ontology , 2016, AAAI Workshop: Artificial Intelligence for Cyber Security.

[18]  Gail-Joon Ahn,et al.  Towards comprehensive and collaborative forensics on email evidence , 2013, 9th IEEE International Conference on Collaborative Computing: Networking, Applications and Worksharing.

[19]  Eugene H. Spafford,et al.  On the role of file system metadata in digital forensics , 2004, Digit. Investig..

[20]  Christoph Wegener,et al.  Technical Issues of Forensic Investigations in Cloud Computing Environments , 2011, 2011 Sixth IEEE International Workshop on Systematic Approaches to Digital Forensic Engineering.

[21]  Bruce Schneier,et al.  Secure audit logs to support computer forensics , 1999, TSEC.

[22]  Kim-Kwang Raymond Choo,et al.  Forensic Visualization: Survey and Future Research Directions , 2017, Contemporary Digital Forensic Investigations of Cloud and Mobile Applications.

[23]  Alan T. Sherman,et al.  Acquiring forensic evidence from infrastructure-as-a-service cloud computing: Exploring and evaluating tools, trust, and techniques , 2012, Digit. Investig..