scholarly journals RPAS Forensic Validation Analysis Towards a Technical Investigation Process: A Case Study of Yuneec Typhoon H

Sensors ◽  
2019 ◽  
Vol 19 (15) ◽  
pp. 3246
Author(s):  
Fahad E. Salamh ◽  
Umit Karabiyik ◽  
Marcus K. Rogers
Keyword(s):  
Digital Evidence ◽  
Digital Forensic ◽  
Forensic Validation ◽  
Aerial Vehicle ◽  
Rapid Pace ◽  
Forensic Artifacts ◽  
Aerial Systems ◽  
Admissible Evidence ◽  
Investigation Process

The rapid pace of invention in technology and the evolution of network communication has produced a new lifestyle with variety of opportunities and challenges. Remotely Piloted Aerial Systems (RPAS) technology, which includes drones, is one example of a recently invented technology that requires the collection of a solid body of defensible and admissible evidence to help eliminate potential real-world threats posed by their use. With the advent of smartphones, there has been an increase in digital forensic investigation processes developed to assist specialized digital forensic investigators in presenting forensically sound evidence in the courts of law. Therefore, it is necessary to apply digital forensic techniques and procedures to different types of RPASs in order to create a line of defense against new challenges, such as aerial-related incidents, introduced by the use of these technologies. Drone operations by bad actors are rapidly increasing and these actors are constantly developing new approaches. These criminal operations include invasion of privacy, drug smuggling, and terrorist activities. Additionally, drone crashes and incidents raise significant concerns. In this paper, we propose a technical forensic process consisting of ten technical phases for the analysis of RPAS forensic artifacts, which can reduce the complexity of the identification and investigation of drones. Using the proposed technical process, we analyze drone images using the Computer Forensics Reference Datasets (CFReDS) and present results for the Typhoon H aerial vehicle manufactured by Yuneec, Inc. Furthermore, this paper explores the availability and value of digital evidence that would allow a more practical digital investigation to be able to build an evidence-based experience. Therefore, we particularly focus on developing a technical drone investigation process that can be applied to various types of drones.

Digital Chain of Custody

2017 ◽  
Vol 7 (7) ◽  
pp. 117
Author(s):  
Matthew N.O. Sadiku ◽  
Adebowale E. Shadare ◽  
Sarhan M. Musa
Keyword(s):  
Digital Evidence ◽  
Chain Of Custody ◽  
Digital Investigation ◽  
A Chain ◽  
Admissible Evidence ◽  
Investigation Process

Digital chain of custody is the record of preservation of digital evidence from collection to presentation in the court of law. This is an essential part of digital investigation process.  Its key objective is to ensure that the digital evidence presented to the court remains as originally collected, without tampering. The chain of custody is important for admissible evidence in court. Without a chain of custody, the opposing attorney can challenge or dismiss the evidence presented. The aim of this paper is to provide a brief introduction to the concept of digital chain custody.

Forensic Data Extraction and Analysis of Left Artifacts on emulated Android Phones: A Case Study of Instant Messaging Applications

2017 ◽  
Vol 2 (11) ◽  
pp. 8-16
Author(s):  
Moses Ashawa ◽  
Innocent Ogwuche
Keyword(s):  
Mobile Phones ◽  
Instant Messaging ◽  
Data Extraction ◽  
Digital Evidence ◽  
Cyber Attack ◽  
Forensic Evidence ◽  
Digital Forensic ◽  
Proportional Increase ◽  
Forensic Tools

The fast-growing nature of instant messaging applications usage on Android mobile devices brought about a proportional increase on the number of cyber-attack vectors that could be perpetrated on them. Android mobile phones store significant amount of information in the various memory partitions when Instant Messaging (IM) applications (WhatsApp, Skype, and Facebook) are executed on them. As a result of the enormous crimes committed using instant messaging applications, and the amount of electronic based traces of evidence that can be retrieved from the suspect’s device where an investigation could convict or refute a person in the court of law and as such, mobile phones have become a vulnerable ground for digital evidence mining. This paper aims at using forensic tools to extract and analyse left artefacts digital evidence from IM applications on Android phones using android studio as the virtual machine. Digital forensic investigation methodology by Bill Nelson was applied during this research. Some of the key results obtained showed how digital forensic evidence such as call logs, contacts numbers, sent/retrieved messages, and images can be mined from simulated android phones when running these applications. These artefacts can be used in the court of law as evidence during cybercrime investigation.

scholarly journals Shallow snow depth mapping with unmanned aerial systems lidar observations: A case study in Durham, New Hampshire, United States

2020 ◽  
Author(s):  
Jennifer M. Jacobs ◽  
Adam G. Hunsaker ◽  
Franklin B. Sullivan ◽  
Michael Palace ◽  
Elizabeth A. Burakowski ◽  
...  
Keyword(s):  
Snow Depth ◽  
Laser Scanning ◽  
Coniferous Forest ◽  
Potential Method ◽  
Unmanned Aerial Systems ◽  
Lidar System ◽  
Aerial Vehicle ◽  
Aerial Systems ◽  
Lidar Observations

Abstract. Shallow snowpack conditions, which occur throughout the year in many regions as well as during accumulation and ablation periods in all regions, are important in water resources, agriculture, ecosystems, and winter recreation. Terrestrial and airborne (manned and unmanned) laser scanning and structure from motion (SfM) techniques have emerged as viable methods to map snow depths. Lidar on an unmanned aerial vehicle is also a potential method to observe field and slope scale variations of shallow snowpacks. This paper describes an unmanned aerial lidar system, which uses commercially available components, for snow depth mapping on the landscape scale. The system was assessed in a mixed deciduous and coniferous forest and open field for a shallow snowpack (

Digital Forensic Investigation of Social Media, Acquisition and Analysis of Digital Evidence

2019 ◽  
Vol 2 (1) ◽  
pp. 52-60 ◽  
Author(s):  
Reza Montasari ◽  
Richard Hill ◽  
Victoria Carpenter ◽  
Farshad Montaseri
Keyword(s):  
Social Media ◽  
Social Interaction ◽  
Social Networking ◽  
Social Networking Sites ◽  
Instant Messaging ◽  
Digital Evidence ◽  
Forensic Investigation ◽  
Digital Forensic ◽  
Photo Sharing ◽  
Investigation Process

Various social networking sites (SNSs), widely referred to as social media, provide services such as email, blogging, instant messaging and photo sharing for social and commercial interactions. SNSs are facilitating new forms of social interaction, dialogue, exchange and collaboration. They allow millions of users and organisations worldwide to exchange ideas, post updates and comments or participate in activities and events, while sharing their wider interests. At the same time, such a phenomenon has led to an upsurge in significant criminal activities by perpetrators who are becoming increasingly sophisticated in their attempts to deploy technology to circumvent detection. Digital forensic Examiners (DFEs) often face serious challenges in relation to data acquisition. Therefore, this article aims to analyse the significance of SNSs in DFIs and challenges that DFEs often encounter when acquiring evidence from SNSs. Furthermore, this article describes the steps of the digital forensic investigation process that must be taken to acquire digital evidence that is both authentic and forensically sound.

scholarly journals Unmanned Aerial Vehicle Forensic Investigation Process : Dji Phantom 4 Drone as A Case Study

2021 ◽  
pp. 593-599
Author(s):  
A. Pathania ◽  
D. P. Gangwar ◽  
Shivanshu ◽  
Poonam ◽  
Arpita
Keyword(s):  
Unmanned Aerial Vehicle ◽  
Flash Memory ◽  
Image Capture ◽  
Terrorist Groups ◽  
Aerial Vehicle ◽  
Sd Card ◽  
Frequency Controller ◽  
Flying Robot ◽  
Investigation Process

A drone, technological term Unmanned aerial vehicle (UAV), means any aircraft operating or designed to operate autonomously or to be piloted remotely without a pilot on board. Essentially, a drone is a flying robot that can be remotely controlled or fly autonomously through software-controlled flight plans in their embedded systems, working in conjunction with onboard sensors and GPS. The easy accessibility to everyone led to an increase in drone crime. Criminals are using drones in many malicious activities worldwide due to the drones’ ability to offer live-stream, real-time video, and image capture, along with the ability to fly and transport goods. Terrorist groups are using aerial drones to conduct and coordinate attacks. Forensic laboratories have been receiving Drone cases throughout India. The drone has been built that can be operated by a radio frequency controller and send live audio-visual feedback. This paper aims to provide a case study of Drone, DJI Phantom 4 and presents the acquisition, examination, analysis of important artifacts recorded flight data and discuss some possible data extractions from its flash memory, GPS (navigator) & SD card.

scholarly journals Identifying Digital Forensic Frameworks Based on Processes Models

2021 ◽  
pp. 249-258
Author(s):  
Talib M. Jawad Abbas ◽  
Ahmed Salem Abdulmajeed
Keyword(s):  
Forensic Science ◽  
Digital Forensics ◽  
Digital Evidence ◽  
Digital Devices ◽  
Digital Forensic ◽  
Reliable Evidence ◽  
Basic Concepts ◽  
Investigation Process

Digital forensic is part of forensic science that implicitly covers crime related to computer and other digital devices. It‟s being for a while that academic studies are interested in digital forensics. The researchers aim to find out a discipline based on scientific structures that defines a model reflecting their observations. This paper suggests a model to improve the whole investigation process and obtaining an accurate and complete evidence and adopts securing the digital evidence by cryptography algorithms presenting a reliable evidence in a court of law. This paper presents the main and basic concepts of the frameworks and models used in digital forensics investigation.

scholarly journals A Survey on Digital Forensic Investigation Practitioners Approach and Challenges

2021 ◽  
Vol 9 (VI) ◽  
pp. 2733-2736
Author(s):  
Prof. Sachin Babulal Jadhav
Keyword(s):  
Data Collection ◽  
Digital Forensics ◽  
Electronic Devices ◽  
Digital Evidence ◽  
Cyber Crime ◽  
Forensic Investigation ◽  
Digital Forensic ◽  
Digital Crime ◽  
Entire World ◽  
Investigation Process

Digital crimes are taking place over the entire world. For any digital crime which commit at any part of world, computer or any electronic devices are used. The devices which are used to commit the crime are useful evidences which must be identified and protected for further use. The crimes involving electronic devices are called as cyber-crime. To investigate such crimes, a scientific procedures needs to be followed. The data collection, analysis, preservation and presentation of digital evidence is must in order investigate the cybercrime. This paper highlights the practices that are used worldwide in the investigation process of cyber-crime. Keywords: Digital Forensics, Analysis, Investigation, models of investigation.

Adoption of Chain of Custody Improves Digital Forensic Investigation Process

2018 ◽  
Vol 1 (2) ◽  
pp. 13-23
Author(s):  
Talib Mohammed Jawad
Keyword(s):  
Practical Method ◽  
Digital Evidence ◽  
Successful Implementation ◽  
Forensic Investigation ◽  
Digital Forensic ◽  
Experimental Environment ◽  
Wide Range ◽  
Chain Of Custody ◽  
Acceptable Method ◽  
Investigation Process

Chain of custody plays an important role in determine integrity of digital evidence, because the chain of custody works on a proof that evidence has not been altered or changed through all phases, and must include documentation on how evidence is gathered, transported, analyzed and presented. The aims of this work is first to find out how the chain of custody has been applied to a wide range of models of the digital forensic investigation process for more than ten years. Second, a review of the methods on digitally signing an evidence that achieves the successful implementation of chain of custody through answering a few questions "who, when, where, why, what and how", and thus providing digital evidence to be accepted by the court. Based on the defined aims an experimental environment is being setup to outline practically an acceptable method in chain of custody procedure. Therefore, we have adopted SHA512 for hashing and regarding encryption RSA and GnuGP is applied where according to the defined requirement a combination of this algorithms could be adopted as a practical method.

Integrity and Fidelity Evaluation of Digital Evidence in Live Forensics

2014 ◽  
Vol 571-572 ◽  
pp. 90-99
Author(s):  
Lian Hai Wang ◽  
Qiu Liang Xu
Keyword(s):  
Experimental Error ◽  
Good Accuracy ◽  
Digital Evidence ◽  
System Error ◽  
Accuracy And Precision ◽  
Novel Method ◽  
Memory Acquisition ◽  
Measure Error ◽  
Live Forensics

The integrity and fidelity of digital evidence are very important in live forensics. Previous research has studied the uncertainty of live forensics based on different memory snapshots. However, this kind of method is not effective in practice. In fact, memory images are usually acquired by using forensics tools instead of using snapshots. Therefore, the integrity and fidelity of live evidence should be evaluated during the acquisition process. In this paper, we give a new viewpoint that memory acquisition can be regarded as a measurement of memory data. From this viewpoint, we evaluate the integrity and fidelity of live evidence in the process of physical memory acquisition. Firstly, several definitions about memory acquisition measure error are introduced to describe the trusty. Then, we analyze the experimental error and propose some suggestions on how to reduce it. A novel method is also developed to calculate the system error in detail. The results of a case study on Windows 7 and VMware virtual machine show that the experimental error has good accuracy and precision, which demonstrate the efficacy of the proposed reducing methods. The system error is also evaluated, that is, it accounts for the whole error from 30% to 50%. Last, a method is proposed to calculate changes or error of system process.

Sign in / Sign up

Export Citation Format

Share Document