Automating case reports for the analysis of digital evidence
| dc.contributor.advisor | Eagle, Chris | |
| dc.contributor.author | Cassidy, Regis H. Friend | |
| dc.contributor.corporate | Naval Postgraduate School | |
| dc.contributor.department | Department of Computer Science | |
| dc.contributor.secondreader | Dinolt, George W. | |
| dc.date.accessioned | 2012-03-14T17:33:47Z | |
| dc.date.available | 2012-03-14T17:33:47Z | |
| dc.date.issued | 2005-09 | |
| dc.description.abstract | The reporting process during computer analysis is critical in the practice of digital forensics. Case reports are used to review the process and results of an investigation and serve multiple purposes. The investigator may refer to these reports to monitor the progress of his analysis throughout the investigation. When acting as an expert witness, the investigator will refer to organized documentation to recall past analysis. A lot of time can elapse between the analysis and the actual testimony. Specific reports may also be used in court as visual aids. Not all cases make it to court, but corporate managers will still likely want to review a case report. Since digital forensics is a relatively new field and can have a high learning curve, reports may be used as a mechanism for sharing knowledge of digital forensic practices. Existing open source forensics tools are an inexpensive alternative to commercial products, but lack the functionality to generate case reports. Open source tools are more likely to be accepted by the professional forensics community with this added capability. This thesis adds case report features to the Sleuth Kit and Autopsy Forensic Browser suite of tools, the premiere open-source forensics analysis software currently available. | en_US |
| dc.description.distributionstatement | Approved for public release; distribution is unlimited. | |
| dc.description.uri | http://archive.org/details/automatingcasere109451993 | |
| dc.format.extent | xvi, 217 p. : col. ill. ; | en_US |
| dc.identifier.oclc | 62165816 | |
| dc.identifier.uri | https://hdl.handle.net/10945/1993 | |
| dc.publisher | Monterey, California. Naval Postgraduate School | en_US |
| dc.subject.lcsh | Computer science | en_US |
| dc.subject.lcsh | Computer crimes | en_US |
| dc.subject.lcsh | Investigation | en_US |
| dc.title | Automating case reports for the analysis of digital evidence | en_US |
| dc.type | Thesis | en_US |
| dspace.entity.type | Publication | |
| etd.thesisdegree.discipline | Computer Science | en_US |
| etd.thesisdegree.grantor | Naval Postgraduate School | en_US |
| etd.thesisdegree.level | Masters | en_US |
| etd.thesisdegree.name | M.S. | en_US |
| etd.verified | no | en_US |