Home // COGNITIVE 2013, The Fifth International Conference on Advanced Cognitive Technologies and Applications // View article
Authors:
Tamer Fares Gayed
Hakim Lounis
Moncef Bari
Rafek Nicolas
Keywords: Chain of Custody; Knowledge Representation; Provenance Vocabularies; Forensic Models; Semantic Web; Linked Data Principles; Public Key Infrastructure.
Abstract:
Tangible Chain of Custody (CoC) in cyber forensics (CF) is a document accompanying digital evidences. It records all information related to the evidences at each phase of the forensics investigation process in order to improve and prosecute them in a court of law. Because a digital evidence can be easily altered and loses its value, the CoC plays a vital role in the digital investigation by demonstrating the road map of Who exactly, When, Where, Why, What and How came into contact with the digital evidence. With the advent of the digital age, the tangible CoC document needs to undergo a radical transformation from paper to electronic data (e-CoC). This e-CoC will be readable, and consumed by computers. The semantic web is a fertile land to represent and manage the tangible CoC because it uses web principles known as Linked Data Principles (LDP), which provide useful information in Resource Description Framework (RDF) upon Unified Resource Identifier (URI) resolution. These principles are used to publish data publicly on the web and provide a standard framework that allows such data to be shared, and consumed in a machine readable format. This paper provides a framework explaining how these principles are applied to represent the chain of custodies and used only by actors in each forensics process, in order to be consumed at the end by the jury in a court of law. This paper also illustrates this idea by giving an example of the authentication phase imported from the Kruse forensics process.
Pages: 87 to 96
Copyright: Copyright (c) IARIA, 2013
Publication date: May 27, 2013
Published in: conference
ISSN: 2308-4197
ISBN: 978-1-61208-273-8
Location: Valencia, Spain
Dates: from May 27, 2013 to June 1, 2013