Forensic Analysis of Plug Computers
نویسندگان
چکیده
A plug computer is essentially a cross between an embedded computer and a traditional computer, and with many of the same capabilities. However, the architecture of a plug computer makes it difficult to apply commonly used digital forensic methods. This paper describes methods for extracting and analyzing digital evidence from plug computers. Two popular plug computer models are examined, the SheevaPlug and the Pogoplug.
منابع مشابه
Low Budget Forensic Drive Imaging Using ARM Based Single Board Computers
Traditional forensic analysis of hard disks and external media typically involves a “dead analysis” of a powered down machine. Forensic acquisition of hard drives and external media has traditionally been accomplished by one of several means: standalone forensic duplicator; using a hardware write-blocker or dock attached to a laptop, computer, workstation, etc.; forensic operating systems that ...
متن کاملA method for forensic analysis of control
This paper examines technical underpinnings for the notion of control as identified in laws and regulations in order to provide a technical basis for performing forensic analysis of digital forensic evidence in cases where taking control over systems or mechanisms is the issue. KeywordsTuring capability, control, digital forensics; attribution
متن کاملFireguard – A Secure Browser with Reduced Forensic Footprint
Fireguard is a secure portable browser designed to reduce both data leakage from browser data remnants and cyber attacks from malicious code exploiting vulnerabilites in browser plug-ins, extensions and software updates. A browser can leave data remnants on a host PC hard disk drive, often unbeknown to a user, in the form of cookies, histories, saved passwords, cached web pages and downloaded o...
متن کاملIdentifying Malicious Code Infections Out of Network
Best practices have evolved within the forensic industry over the past few years to address an emerging need for organizations to properly handle malicious code incidents. While this area of forensics is increasingly strong, the industry at large struggles with how to approac...
متن کاملWANDA: A generic Framework applied in Forensic Handwriting Analysis and Writer Identification
This paper presents the WANDA Workbench, which is an open framework for electronic data processing. The framework provides generic interfaces for ’plugin’ applications for graphical user interfaces (client desktop with client plug-ins) and processing modules (server with server plug-ins). The applied plug-in concept allows for the functional extension of the workbench without changing the frame...
متن کامل