Integrating Digital Forensics and Digital Discovery to Improve E-mail Communication Analysis in Organisations

In Digital Forensics and Digital Discovery, e-mail communication analysis has become an important part of the litigation process. Integrating these two can improve e-mail communication analysis in organisations and help both legal and technical professionals achieve goals of conducting analysis in a manner that is legally defensible and forensically sound. In this forensic discovery process, digital evidence plays an increasingly vital role in the court to prove or disprove an individual or a group of individual’s actions in order to secure a conviction. However, e-mail investigations are becoming increasingly complex and time consuming due to the multifaceted large data involved, and investigators find themselves unable to explore and conduct analysis in an appropriately efficient and effective manner. This situation has prompted the need for improved e-mail communication analysis that can be capable of handling large and complex investigations to detect suspicious activities. So, our interactive visualisations aims to improve digital forensics discovery ability to search and analyse a vast amount of e-mail information quickly and efficiently.

[1]  Mithileysh Sathiyanarayanan,et al.  Determining and Visualising E-mail Subsets to Support E-discovery , 2016 .

[2]  M. Sheelagh T. Carpendale,et al.  Empirical Studies in Information Visualization: Seven Scenarios , 2012, IEEE Transactions on Visualization and Computer Graphics.

[3]  Ann Blandford,et al.  Discovery-led refinement in e-discovery investigations: sensemaking, cognitive ergonomics and system design , 2010, Artificial Intelligence and Law.

[4]  Mithileysh Sathiyanarayanan,et al.  Is Multi-perspective Visualisation recommended for E-discovery Email Investigations? , 2016 .

[5]  John Stasko,et al.  Jigsaw: supporting investigative analysis through interactive visualization , 2008 .

[6]  Mithileysh Sathiyanarayanan,et al.  Design and implementation of small multiples matrix-based visualisation to monitor and compare email socio-organisational relationships , 2018, 2018 10th International Conference on Communication Systems & Networks (COMSNETS).

[7]  Yiming Yang,et al.  The Enron Corpus: A New Dataset for Email Classi(cid:12)cation Research , 2004 .

[8]  M. Sheelagh T. Carpendale,et al.  DocuBurst: Visualizing Document Content using Language Structure , 2009, Comput. Graph. Forum.

[9]  Eoghan Casey,et al.  Chapter 4 – Intrusion Investigation , 2010 .

[10]  Eoghan Casey,et al.  Handbook of Digital Forensics and Investigation , 2009 .

[11]  Mithileysh Sathiyanarayanan,et al.  Challenges and Opportunities in using Analytics Combined with Visualisation Techniques for Finding Anomalies in Digital Communications , 2017 .

[12]  Eoghan Casey,et al.  Digital Evidence and Computer Crime - Forensic Science, Computers and the Internet, 3rd Edition , 2011 .