Abstract
It is an undisputable fact that nowadays many different types of crime are conducted by utilizing some type of electronic device - communication. To address this new situation, modern forensics tools evolved, becoming sophisticated enough to handle almost all kinds of digital content. However, surprisingly enough, collecting and validating the authenticity of online content remains, until now, a problem to resolve. The common practice is to capture (screen-shot) or save a web page, the authenticity of which is usually validated in a judicial process by an expert’s testimony. In this paper, we introduce ProCAVE , a simple software architecture with a set of accompanying procedures, and we argue that their combined use can deliver evidence from online sources in the court, in a sound and privacy-preserving manner.
Access this chapter
Tax calculation will be finalised at checkout
Purchases are for personal use only
Preview
Unable to display preview. Download preview PDF.
References
Berghel, H.: Hiding data, forensics, and anti-forensics. Communications of the ACM 50(4) (April 2007)
CanProve - Capture Online Evidence, http://canprove.com (last visited: March 2013)
Careless, J.: Collecting and authenticating online evidence, CBA Practicelink, http://www.cba.org/cba/practicelink/careerbuilders_technology/web-evidence.aspx (last visited: March 2013)
Commonwealth vs. Michael M. OLaughlin: Burglary, armed assault in a dwelling, assault and battery by means of a dangerous weapon, practice, criminal, required finding, Appellate Court Decision, No. 04-P-48 (2005)
Council of Europe (CoE), Explanatory Report to the Convention on Cybercrime, ETS 185 (2001), http://conventions.coe.int/Treaty/en/Reports/Html/185.htm
DVers - Digital Verification Services, http://www.dvers.gr (last visited: March 2013)
Fenner, M.G.: Evidentiary Problems Associated with the Introduction of Web-Based Evidence, LSN: Evidence (Public Law) (Sub-Topic) (December 2010), Available at SSRN: http://ssrn.com/abstract=1722714
Garfinkel, S.L.: Digital forensics research: The next 10 years. Digital Investigation: The International Journal of Digital Forensics & Incident Response 7, S64-S73 (2010)
Gibson, J.: A Primer on Admitting Web Page into Evidence, Nevada Lawyer Magazine, http://nvbar.org/articles/content/primer-admitting-web-pages-evidence (last visited: March 2013)
Hosmer, C.: Proving the Integrity of Digital Evidence with Time. International Journal of Digital Evidence 1(1) (2002)
Karyda, M., Mitrou, L.: Internet Forensics: Legal and Technical issues. In: 2nd Annual Workshop on Digital Forensics and Incident Analysis (WDFIA 2007), Samos, Greece (August 2007)
Kerzner, M.: Evidence Authentication: Web Site Content, Atkison Baker, http://www.depo.com/E-letters/TheDiscoveryUpdate/2008/October/Articles/website_authentication.html (last visited: March 2013)
Leroux, O.: Legal Admissibility of Electronic Evidence. International Review of Law Computers and Technology 18(2), 193–220 (2004)
Lorraine, J.R., Mack, B.: Plaintiffs v. Markel American Insurance Company, Defendants. Civil Action No. PWG-06-1893, United States District Court for the District of Maryland (2007)
Mylonas, A., Meletiadis, V., Mitrou, L., Gritzalis, D.: Dynamic Evidence Acquisition for Smartphone Forensics. In: Proceedings of the 27th IFIP International Information Security and Privacy Conference. AICT, vol. 267, pp. 245–256. Springer (2012)
Mylonas, A., Meletiadis, V., Mitrou, L., Gritzalis, D.: Smartphone Sensor Data as Digital Evidence. Computers & Security (Special Issue: Cybercrime in the Digital Economy) (to appear 2013)
Nixon, R.: Plug-In PHP: 100 Power Solutions: Simple Solutions to Practical PHP Problems. McGraw-Hill Education (2010)
PHP Scriptable Web Browser, http://www.simpletest.org/en/browser_documentation.html (last visited: March 2013)
Similarity Analyzer, http://tool.motoricerca.info/similarity-analyzer.phtml (last visited: March 2013)
Sommer, P.: Digital Evidence, Digital Investigations and E-Disclosure: A Guide to Forensic Readiness for Organisations, Security Adviders and Lawyers, 3rd edn. Version 3.0, Information Assurance Advisory Council (March 2012)
Tanenbaum, A.S.: Computer Networks, 4th edn. Prentice Hall Professional Technical Reference (2002)
ProCAVE Tool. Access available upon request
The OpenSSL Toolkit, http://www.openssl.org (last visited: March 2013)
U.S.Courts, Federal Rules of Evidence (December 1, 2010), http://www.uscourts.gov/uscourts/RulesAndPolicies/rules/2010%20Rules/Evidence.pdf
Web Statistics - Key data of the Web, http://www.scriptol.com/web/statistics.php (last visited: March 2013)
X1 Social Discovery, http://www.x1discovery.com/social_discovery.html (last visited: March 2013)
Author information
Authors and Affiliations
Editor information
Editors and Affiliations
Rights and permissions
Copyright information
© 2013 Springer-Verlag Berlin Heidelberg
About this paper
Cite this paper
Lalas, E., Mitrou, L., Lambrinoudakis, C. (2013). ProCAVE: Privacy-Preserving Collection and Authenticity Validation of Online Evidence. In: Furnell, S., Lambrinoudakis, C., Lopez, J. (eds) Trust, Privacy, and Security in Digital Business. TrustBus 2013. Lecture Notes in Computer Science, vol 8058. Springer, Berlin, Heidelberg. https://doi.org/10.1007/978-3-642-40343-9_12
Download citation
DOI: https://doi.org/10.1007/978-3-642-40343-9_12
Publisher Name: Springer, Berlin, Heidelberg
Print ISBN: 978-3-642-40342-2
Online ISBN: 978-3-642-40343-9
eBook Packages: Computer ScienceComputer Science (R0)