Oteng Tabona, Thabiso M. Maupong, Kopo M. Ramokapane, Thabo Semong
{"title":"Intelligence sharing in big data forensics","authors":"Oteng Tabona, Thabiso M. Maupong, Kopo M. Ramokapane, Thabo Semong","doi":"10.1504/ijesdf.2023.127755","DOIUrl":null,"url":null,"abstract":"With the high prevalence of digital crimes, forensic investigators rely on traditional desktop tools to conduct investigations. Most of these tools are device-specific and majority of them are desktop-based therefore they suffer from limited storage and fail to process big data. These tools also lack the analytical ability to link evidence between cases or share information between cases. Therefore, inter-links can exist between cases without being detected. The poor ability to detect links between cases may result in investigators: taking a long time to complete investigations and failing to establish organised crimes. In this paper, we propose a novel solution that can cross-link evidence between cases. Our solution is not desktop-based, nor is it restricted by the evidence source. Using real-world data for evaluation, we demonstrate that our solution is capable of uncovering evidence common between cases that could otherwise be missed.","PeriodicalId":54070,"journal":{"name":"International Journal of Electronic Security and Digital Forensics","volume":"24 1","pages":"0"},"PeriodicalIF":0.4000,"publicationDate":"2023-01-01","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"1","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"International Journal of Electronic Security and Digital Forensics","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1504/ijesdf.2023.127755","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"Q4","JCRName":"COMPUTER SCIENCE, INFORMATION SYSTEMS","Score":null,"Total":0}
引用次数: 1
Abstract
With the high prevalence of digital crimes, forensic investigators rely on traditional desktop tools to conduct investigations. Most of these tools are device-specific and majority of them are desktop-based therefore they suffer from limited storage and fail to process big data. These tools also lack the analytical ability to link evidence between cases or share information between cases. Therefore, inter-links can exist between cases without being detected. The poor ability to detect links between cases may result in investigators: taking a long time to complete investigations and failing to establish organised crimes. In this paper, we propose a novel solution that can cross-link evidence between cases. Our solution is not desktop-based, nor is it restricted by the evidence source. Using real-world data for evaluation, we demonstrate that our solution is capable of uncovering evidence common between cases that could otherwise be missed.
期刊介绍:
IJESDF aims to establish dialogue in an ideal and unique setting for researchers and practitioners to have a knowledge resource, report and publish scholarly articles and engage in debate on various security related issues, new developments and latest proven methodologies in the field of electronic security and digital forensics. This includes the measures governments must take to protect the security of information on the Internet, the implications of cyber-crime in large corporations and individuals, vulnerability research, zero day attacks, digital forensic investigation, ethical hacking, anti-forensics, identity fraud, phishing, pharming, and relevant case studies and “best practice" on tackling cyber crime.
京公网安备 11010802042870号
京ICP备2023020795号-1
分享
求助内容:
应助结果提醒方式:
扫码关注我们
