Forensic Analysis Process Through
نویسنده
چکیده
omputer forensics is the preservation, analysis, and interpretation of computer data [1]. There is a need for software that aids investigators in locating data on hard drives left by persons committing illegal activities. These software tools must reduce the tedious efforts of forensic examiners, especially when searching very large hard drives. A great deal of time is wasted by analysts trying to interpret massive amounts of data that isn’t correlated or meaningful without high levels of patience and tolerance for error. Visualization techniques can greatly aid forensic specialists to direct their search to suspicious files; in effect aiding the interpretation process. Essentially we are relying on the old adage: “A picture is worth a thousand words;” a saying derived from the fact that humans have the ability to visually interpret and comprehend pictures, video, and charts much faster than reading a textual description of the same. Indeed, humans perceive graphical images perceptually while text is perceived serially. VISUALIZATION
منابع مشابه
The contribution of forensic science to crime analysis and investigation: forensic intelligence.
The debate in forensic science concentrates on issues such as standardisation, accreditation and de-contextualisation, in a legal and economical context, in order to ensure the scientific objectivity and efficiency that must guide the process of collecting, analysing, interpreting and reporting forensic evidence. At the same time, it is recognised that forensic case data is still poorly integra...
متن کاملEffective Digital Forensic Analysis of the Ntfs Disk Image
Forensic analysis of the Windows NT File System (NTFS) could provide useful information leading towards malware detection and presentation of digital evidence for the court of law. Since NTFS records every event of the system, forensic tools are required to process an enormous amount of information related to user / kernel environment, buffer overflows, trace conditions, network stack, etc. Thi...
متن کاملScope of Practice of Forensic Midwifery: An Integrative Review
Background & aim: Forensic midwifery is a new major which has been established in response to the need of endangered women for forensic services and also the lack of service provision in this domain. However, there are ambiguities in the definition of this major and its scope of practice. The present study was conducted to investigate the scope of practice in forensic ...
متن کاملVisual Network Forensic Techniques and Processes
Network forensics is the critical next step in the analysis of network attacks, intrusions, and misuses. It is the forensic process that will aid identification of what occurred and how. With the explosion in numbers and types of attacks it is critical that new techniques be developed to aid in the analysis of said attacks. For instance, with the recent widespread deployment of botnets, it is f...
متن کاملIntegrating forensic information in a crime intelligence database.
Since 2008, intelligence units of six states of the western part of Switzerland have been sharing a common database for the analysis of high volume crimes. On a daily basis, events reported to the police are analysed, filtered and classified to detect crime repetitions and interpret the crime environment. Several forensic outcomes are integrated in the system such as matches of traces with pers...
متن کاملBiochemical Markers of Acute and Chronic Ethanol Use: Forensic and Clinical Applications
Background: The analysis of ethanol in bio-samples is an important method for determination of acute alcohol use/abuse both in clinical and forensic toxicology. In forensic cases, it is known that micro-organisms involved in the postmortem putrefaction process can produce alcohol and when the body has been traumatized. In clinical setting, post-ingestion time has a critical role for determinati...
متن کامل