论文信息 - A digital evidence protection method with hierarchical access control mechanisms

A digital evidence protection method with hierarchical access control mechanisms

Digital evidences are the important basis in digital forensic. This paper proposed a concrete digital evidence protection method with hierarchical access control mechanisms using cryptographic techniques. It allows judicial policeman to authenticated encrypt the collected digital evidences from being disclosed and modified by potential malicious attackers (including malicious insiders and outsiders). Only the authorized users can retrieve and access the digital evidences and verify their integrity. Hence, confidentiality, integrity, authenticity protection for digital evidences can be achieved. Moreover, this method also allows the judiciary bureaus to present the digital evidences together with protection proof to a trusted third party in case of a later dispute. We further considered the access control security issues in hierarchical judiciary bureaus to propose two access control mechanisms, i.e. partial and full supervision. In the partial supervision, the supervisor will given a partial privilege to access some specified digital evidences when he want to monitor and supervise the investigation progress. In the full supervision, the supervisor is given a full privilege to access all digital evidences investigated by his subordinates in a particular situation.

Chien-Lung Hsu | Yu-Li Lin | Boo-Chen Liu

[1] Eoghan Casey,et al. Digital Evidence and Computer Crime - Forensic Science, Computers and the Internet, 3rd Edition , 2011 .

[2] Eoghan Casey,et al. Digital Evidence and Computer Crime , 2000 .

[3] F. Kuo,et al. Cryptographic key assignment scheme for dynamic access control in a user hierarchy , 1999 .

[4] Deniz Sinangin. Computer Forensics Investigations in a Corporate Environment , 2002 .

[5] Kelly J. Kuchta. Computer Forensics Today , 2000, Inf. Secur. J. A Glob. Perspect..

[6] Victor R. L. Shen,et al. A Novel Key Management Scheme Based on Discrete Logarithms and Polynomial Interpolations , 2002, Comput. Secur..

[7] Selim G. Akl,et al. Cryptographic solution to a problem of access control in a hierarchy , 1983, TOCS.

[8] Albert Marcella,et al. Cyber Forensics: A Field Manual for Collecting, Examining, and Preserving Evidence of Computer Crimes , 2002 .

[9] Kelly J. Kuchta. Forensic Fieldwork: Experience Is the Best Teacher , 2002, Inf. Secur. J. A Glob. Perspect..

[10] Ravi S. Sandhu,et al. Cryptographic Implementation of a Tree Hierarchy for Access Control , 1988, Inf. Process. Lett..

[11] R. Jones,et al. Digital Evidence and Computer Crime: Forensic Science, Computers and the Internet , 2003, Int. J. Law Inf. Technol..

[12] Chin-Chen Chang,et al. Crypographic key assignment scheme for access control in a hierarchy , 1992, Inf. Syst..