Amazing technological breakthrough possible @S-Logix pro@slogix.in

Office Address

  • #5, First Floor, 4th Street Dr. Subbarayan Nagar Kodambakkam, Chennai-600 024 Landmark : Samiyar Madam
  • pro@slogix.in
  • +91- 81240 01111

Social List

Digital Forensic System Profiling Using Context Analysis

Digital Forensic System Profiling Using Context Analysis

Great PhD Thesis on Digital Forensic System Profiling Using Context Analysis

Research Area:  Digital Forensics

Abstract:

   Conventional digital forensic investigations search digital devices for specific events or specific artifacts that indicate a crime has occurred. This does fulfill the investigative need to identify a crime, but it does not attribute the user of that digital device when the crime occurred. If a crime occurs frequently, such as accessing unlawful pornography, or is an isolated event but is co-located in time with other frequently occurring events, such as the one-off sending of a harassing message, then there may be investigative value in processing the history of the device to determine if there are patterns of repetitive behavior present at the times of interest.
   This research project investigates the habitual use of a digital device by analysing the Internet history that can be recovered from the physical digital device, or from logs that are retained as the device is connected to a firewall or service provider. The presumption in this project is that there is zero-knowledge of the content of the web history, page content or even an accurate classification of the nature of the sites that are visited. We propose in this research that the patterns of usage themselves are a significant indicator of who the user is, or the type of usage that is being performed.
   We define context analysis as the investigation not of what is contained within the artifacts, but rather the investigation of the meta-data relating to that artifact and any other similar artifacts within a proximity, be it temporal, spatial or potentially spatio-temporal. Specifically, we show in this thesis that given suitable feature selection the context analysis we define is effective at identifying patterns of habitual behavior, as evaluated in the case of Internet history artifacts.
   We present as our major contributions: the methods of analyzing periods of Internet history in contextual groups of sessions; the novel approaches to feature selection for the Internet history sessions; and the display of the results on a network graph such that techniques such as community detection can be used to automatically cluster the Internet history.

Name of the Researcher:  Gresty, David William

Name of the Supervisor(s):  Diane Gan

Year of Completion:  2018

University:  University of Greenwich

Thesis Link:   Home Page Url