[go: up one dir, main page]
Skip to main content
Springer Nature Link
Log in

Recent Trends in Collection of Software Forensics Artifacts: Issues and Challenges

  • Conference paper
Security in Computing and Communications (SSCC 2013)

Part of the book series: Communications in Computer and Information Science ((CCIS,volume 377))

Included in the following conference series:

Abstract

Digital forensics helps an investigator to find traces of any malicious activity of user, done by using a particular piece of software. In recent years, analysis of computer software products has been done for collection of forensics artifacts, using traditional digital forensic approach. But as the traditional forensics has now been established as a standard, more people are familiar with the forensic processes. They know where traces can be left behind and how to get rid of them so as to eliminate possible evidence. Thus anti forensic techniques are imposing as disruptive challenge for investigators. In this paper we discuss recent trends in the field of artifacts collection and highlight some challenges that have made finding and collecting forensics artifacts a very hard job. We examine whether it is possible for a forensics investigator to rely on old traditional approach or not. Furthermore in conclusion we suggest possible solutions and new areas where we can find evidences.

This is a preview of subscription content, log in via an institution to check access.

Access this chapter

Log in via an institution

Subscribe and save

Springer+ Basic
$34.99 /Month
  • Get 10 units per month
  • Download Article/Chapter or eBook
  • 1 Unit = 1 Article or 1 Chapter
  • Cancel anytime
Subscribe now

Buy Now

Chapter
USD 29.95
Price excludes VAT (USA)
  • Available as PDF
  • Read on any device
  • Instant download
  • Own it forever
eBook
USD 39.99
Price excludes VAT (USA)
  • Available as PDF
  • Read on any device
  • Instant download
  • Own it forever
Softcover Book
USD 54.99
Price excludes VAT (USA)
  • Compact, lightweight edition
  • Dispatched in 3 to 5 business days
  • Free shipping worldwide - see info

Tax calculation will be finalised at checkout

Purchases are for personal use only

Institutional subscriptions

Preview

Unable to display preview. Download preview PDF.

Unable to display preview. Download preview PDF.

Similar content being viewed by others

References

  1. Castiglione, A., Cattaneo, G.: Automatic, Selective and Secure Deletion of Digital Evidence. In: International Conference on Broadband and Wireless Computing, pp. 392–398 (2011)

    Google Scholar 

  2. Yasin, M., Wahla, M.A., Kausar, F.: Analysis of Download Accelerator Plus (DAP) for Forensic Artefacts. In: Fifth International Conference on IT Security Incident Management and IT Forensics, pp. 142–152 (2009)

    Google Scholar 

  3. Yasin, M., Cheema, A.R., Kausar, F.: Analysis of Internet Download Manager for collection of digital forensic artefacts. Digital Investigation 7(1-2), 90–94 (2010)

    Article  Google Scholar 

  4. Lallie, H.S., Briggs, P.J.: Windows 7 registry forensic evidence created by three popular bittorrent clients. Digital Investigation 7(3-4), 127–134 (2011)

    Article  Google Scholar 

  5. Fellows, G.: WinRAR temporary folder artefacts. Digital Investigation 7(1-2), 9–13 (2010)

    Article  Google Scholar 

  6. Van Dongen, W.S.: Forensic artefacts left by Windows Live Messenger 8.0. Digital Investigation 4(2), 73–87 (2007)

    Google Scholar 

  7. Carvey, H.: The Windows Registry as a forensic resource. Digital Investigation 2(3), 201–205 (2005)

    Article  Google Scholar 

  8. Event Log, http://windows.microsoft.com/en-IN/windows7/What-information-appears-in-event-logs-Event-Viewer

  9. Windows Temporary files, http://support.microsoft.com/kb/92635

  10. Oha, J., Leeb, S., Leea, S.: Advanced evidence collection and analysis of web browser activity. Digital Investigation 8(suppl.), S62–S70 (2011)

    Google Scholar 

  11. Shinder, L., Cross, M.: Chapter 7 – Acquiring Data, Duplicating Data, and Recovering Deleted Files. Scene of the Cybercrime, 2nd edn., pp. 305–346. Syngress Publication (2008)

    Google Scholar 

  12. Smid, M.E., Branstad, D.K.: Data Encryption Standard: past and future. Proceedings of the IEEE 76(5), 550–559 (2002)

    Article  Google Scholar 

  13. Bares, R.A.: Hiding in a Virtual World: Using unconventionally installed operating system. In: International Conference on Intelligence and Security Informatics, pp. 276–284 (2009)

    Google Scholar 

  14. Gutmann, P.: Secure Deletion of Data from Magnetic and Solid-State Memory. In: Proceedings of the 6th conference on USENIX Security Symposium, Focusing on Applications of Cryptography, vol. 6, pp. 77–89. USENIX Association, Berkeley (1996)

    Google Scholar 

Download references

Author information

Authors and Affiliations

  1. Institute for Development and Research in Banking Technology, Reserve Bank of India, Masab Tank. Castle Hills Road No 1, Hyderabad, 500057, India

    Deepak Gupta & Babu M. Mehtre

Authors
  1. Deepak Gupta
    View author publications

    You can also search for this author in PubMed Google Scholar

  2. Babu M. Mehtre
    View author publications

    You can also search for this author in PubMed Google Scholar

Editor information

Editors and Affiliations

  1. Indian Institute of Information Technology and Management, Technopark Campus, 695581, Trivandrum, Kerala, India

    Sabu M. Thampi

  2. Department of Applied Computer Science, The University of Winnipeg, 515 Portage Avenue, R3B 2E9, Winnipeg, MB, Canada

    Pradeep K. Atrey

  3. Electrical and Computer Science Engineering Building, National Sun Yat-sen University, Kaohsiung, Taiwan R.O.C.

    Chun-I Fan

  4. Facultad de Informatica, Campus de Espinardo, s/n, 30.100, Murcia, Spain

    Gregorio Martinez Perez

Rights and permissions

Reprints and permissions

Copyright information

© 2013 Springer-Verlag Berlin Heidelberg

About this paper

Cite this paper

Gupta, D., Mehtre, B.M. (2013). Recent Trends in Collection of Software Forensics Artifacts: Issues and Challenges. In: Thampi, S.M., Atrey, P.K., Fan, CI., Perez, G.M. (eds) Security in Computing and Communications. SSCC 2013. Communications in Computer and Information Science, vol 377. Springer, Berlin, Heidelberg. https://doi.org/10.1007/978-3-642-40576-1_30

Download citation

  • DOI: https://doi.org/10.1007/978-3-642-40576-1_30

  • Publisher Name: Springer, Berlin, Heidelberg

  • Print ISBN: 978-3-642-40575-4

  • Online ISBN: 978-3-642-40576-1

  • eBook Packages: Computer ScienceComputer Science (R0)

Publish with us

Policies and ethics

Search

Navigation