Nowadays,the capability of traditional digital forensic tools fails to meet the demand of ever increasing of criminal or civil cases.One of the challenges is that digital devices and applications are multifarious and ...Nowadays,the capability of traditional digital forensic tools fails to meet the demand of ever increasing of criminal or civil cases.One of the challenges is that digital devices and applications are multifarious and changing quickly.Here,we propose a new mode for digital forensic tools utilization via integrating open-source single tools into a platform and setting up into Live DVD/USB.The platform,an Integrated Open Forensic Environment(named IOFE),takes full advantage of these tools and,at the same time,elevates its power and interoperability via standardized input/output data.The IOFE features conducting live and dead investigation and covers three consecutive major phases of digital forensics:acquisition,analysis,and presentation.Our experiments prove that IOFE can carry out manifold acquisition,interpretation,analysis,and presentation task of evidentiary data in an efficient and effective manner.展开更多
基金Supported by the National Natural Science Foundation of China (61103219, 60970114)Program of State Key Laboratory of Software Engineering (SKLSE 2010-08-24)+3 种基金Fund of Key Laboratory of Information Security Technology (KJ-11-06-2)the Policing Theory & Soft Science Research Project of Public Security Ministry of China (2008LLYJHBST031)Theory Research Project of Central Tasks 2011 of Hubei Provincial Department of Public Security,Applied Innovation Project of Hubei Provincial Department of Public Security (2009hbstsjkyyycx007)Science & Technology Research Project of Hubei Provincial Department of Education (B20128201)
文摘Nowadays,the capability of traditional digital forensic tools fails to meet the demand of ever increasing of criminal or civil cases.One of the challenges is that digital devices and applications are multifarious and changing quickly.Here,we propose a new mode for digital forensic tools utilization via integrating open-source single tools into a platform and setting up into Live DVD/USB.The platform,an Integrated Open Forensic Environment(named IOFE),takes full advantage of these tools and,at the same time,elevates its power and interoperability via standardized input/output data.The IOFE features conducting live and dead investigation and covers three consecutive major phases of digital forensics:acquisition,analysis,and presentation.Our experiments prove that IOFE can carry out manifold acquisition,interpretation,analysis,and presentation task of evidentiary data in an efficient and effective manner.
