Advances in digital forensics XVII : 17th IFIP WG 11.9 International Conference, Virtual event, February 1-2, 2021, Revised selected papers / Gilbert Peterson, Sujeet Shenoi (eds.).
IFIP International Conference on Digital Forensics (17th : 2021 : Online); Peterson, Gilbert, 1969- editor.; Shenoi, Sujeet, editor.
2021
QA76.9.A25
Available Online

Linked e-resources

Linked Resource Online Access
Concurrent users Unlimited
Authorized users Authorized users
Document Delivery Supplied Can lend chapters, not whole ebooks

Details

Title Advances in digital forensics XVII : 17th IFIP WG 11.9 International Conference, Virtual event, February 1-2, 2021, Revised selected papers / Gilbert Peterson, Sujeet Shenoi (eds.).
Meeting Name IFIP International Conference on Digital Forensics (17th : 2021 : Online)
ISBN 9783030883812 (electronic bk.)
3030883817 (electronic bk.)
9783030883805 (print)
3030883809
DOI https://doi.org/10.1007/978-3-030-88381-2
Published Cham, Switzerland : Springer, 2021.
Language English
Description 1 online resource (xiv, 267 pages) : illustrations
Other Standard Identifiers 10.1007/978-3-030-88381-2 doi
Call Number QA76.9.A25
Dewey Decimal Classification 005.8
Summary ADVANCES IN DIGITAL FORENSICS XVII Edited by: Gilbert Peterson and Sujeet Shenoi Digital forensics deals with the acquisition, preservation, examination, analysis and presentation of electronic evidence. Computer networks, cloud computing, smartphones, embedded devices and the Internet of Things have expanded the role of digital forensics beyond traditional computer crime investigations. Practically every crime now involves some aspect of digital evidence; digital forensics provides the techniques and tools to articulate this evidence in legal proceedings. Digital forensics also has myriad intelligence applications; furthermore, it has a vital role in cyber security -- investigations of security breaches yield valuable information that can be used to design more secure and resilient systems. Advances in Digital Forensics XVII describes original research results and innovative applications in the discipline of digital forensics. In addition, it highlights some of the major technical and legal issues related to digital evidence and electronic crime investigations. The areas of coverage include: ¨ Themes and Issues ¨ Approximate Matching Techniques ¨ Advanced Forensic Techniques ¨ Novel Applications ¨ Image Forensics This book is the seventeenth volume in the annual series produced by the International Federation for Information Processing (IFIP) Working Group 11.9 on Digital Forensics, an international community of scientists, engineers and practitioners dedicated to advancing the state of the art of research and practice in digital forensics. The book contains a selection of thirteen edited papers from the Seventeenth Annual IFIP WG 11.9 International Conference on Digital Forensics, a fully-remote event held in the winter of 2021. Advances in Digital Forensics XVII is an important resource for researchers, faculty members and graduate students, as well as for practitioners and individuals engaged in research and development efforts for the law enforcement and intelligence communities. Gilbert Peterson is a Professor of Computer Engineering at the Air Force Institute of Technology, Wright-Patterson Air Force Base, Ohio, USA. Sujeet Shenoi is the F.P. Walter Professor of Computer Science and a Professor of Chemical Engineering at the University of Tulsa, Tulsa, Oklahoma, USA.
Access Note Access limited to authorized users.
Digital File Characteristics text file
PDF
Source of Description Online resource; title from PDF title page (SpringerLink, viewed October 19, 2021).
Added Author Peterson, Gilbert, 1969- editor.
Shenoi, Sujeet, editor.
Series IFIP advances in information and communication technology ; 612. 1868-422X
Available in Other Form Print version: 9783030883805
Linked Resources Online Access
Record Appears in Online Resources > Ebooks
All Resources
Intro
Contents
Contributing Authors
Preface
I THEMES AND ISSUES
Chapter 1 DIGITAL FORENSIC ACQUISITION KILL CHAIN
ANALYSIS AND DEMONSTRATION
1. Introduction
2. Related Work
3. Digital Forensic Acquisition Kill Chain
3.1 Background
3.2 Kill Chain Overview
3.3 Kill Chain Phases
4. Case-Motivated Kill Chain Example
5. Conclusions
Acknowledgement
References
Chapter 2 ENHANCING INDUSTRIAL CONTROL SYSTEM FORENSICS USING REPLICATION-BASED DIGITAL TWINS
1. Introduction
2. Background
2.1 Digital Twin
2.2 Digital Twin Security

2.3 Digital Forensics
3. Related Work
4. Replication Using Digital Twins
4.1 Replication and Replay Theorems
4.2 Conceptual Framework
5. Implementation and Evaluation
5.1 Implementation and Experimental Setup
5.2 Results and Evaluation
6. Discussion
7. Conclusions
Acknowledgement
References
Chapter 3 COMPARISON OF CYBER ATTACKS ON SERVICES IN THE CLEARNET AND DARKNET
1. Introduction
2. Background
3. Common Targets and Attacks
4. Related Work
5. Honeypot Deployment
5.1 Security Considerations
5.2 Deployment Process

6. Implementation Details
6.1 Virtual Machine Architectures
6.2 Honeypot Services
7. Experiments and Results
7.1 Service Deployments
7.2 Announcements
7.3 Observed Web Requests
7.4 Observed SSH and Telnet Access
7.5 Observed SMTP Requests
7.6 Observed FTP Requests
7.7 Discussion
8. Conclusions
Acknowledgement
References
II APPROXIMATE MATCHING TECHNIQUES
Chapter 4 USING PARALLEL DISTRIBUTED PROCESSING TO REDUCE THE COMPUTATIONAL TIME OF DIGITAL MEDIA SIMILARITY MEASURES
1. Introduction
2. Previous Work
3. Jaccard Indexes of Similarity

3.1 Jaccard Index
3.2 Jaccard Index with Normalized Frequency
4. Jaccard Index with Split Files
5. Results and Validation
6. Conclusions
References
Chapter 5 EVALUATION OF NETWORK TRAFFIC ANALYSIS USING APPROXIMATE MATCHING ALGORITHMS
1. Introduction
2. Foundations and Related Work
2.1 Current State of Approximate Matching
2.2 Approximate Matching Algorithms
3. Controlled Study
3.1 All vs. All Evaluation
3.2 Evaluation Methodology
4. Experimental Results and Optimizations
5. Conclusions
Acknowledgement
References

III ADVANCED FORENSIC TECHNIQUES
Chapter 6 LEVERAGING USB POWER DELIVERY IMPLEMENTATIONS FOR DIGITAL FORENSIC ACQUISITION
1. Introduction
2. USB Power Delivery Protocol
3. Research Methodology
4. Results
4.1 Information Gathering
4.2 Passive Monitoring
4.3 Firmware Files
4.4 Firmware Reverse Engineering
4.5 Apple Vendor-Defined Protocol
4.6 Firmware Modification and Rollback
5. Conclusions
Acknowledgements
References
Chapter 7 DETECTING MALICIOUS PDF DOCUMENTS USING SEMI-SUPERVISED MACHINE LEARNING
1. Introduction
2. Background and Related Work

Browse Subjects

Show more subjects...

Statistics

from
to
Export