Skip to main content
main-content
Top

Hint

Swipe to navigate through the chapters of this book

2013 | OriginalPaper | Chapter

Digital Forensics as a Big Data Challenge

Author: Alessandro Guarino

Published in: ISSE 2013 Securing Electronic Business Processes

Publisher: Springer Fachmedien Wiesbaden

share
SHARE

Abstract

Digital Forensics, as a science and part of the forensic sciences, is facing new challenges that may well render established models and practices obsolete. The dimensions of potential digital evidence supports has grown exponentially, be it hard disks in desktop and laptops or solid state memories in mobile devices like smartphones and tablets, even while latency times lag behind. Cloud services are now sources of potential evidence in a vast range of investigations and network traffic also follows a growing trend and in cyber security the necessity of sifting through vast amount of data quickly is now paramount. On a higher level investigations - and intelligence analysis - can profit from sophisticated analysis of such datasets as social network structures, corpora of text to be analysed for authorship and attribution. All of the above highlights the convergence between so-called data science and digital forensics, to tack the fundamental challenge of analyse vast amount of data ("big data") in actionable time while at the same time preserving forensic principles in order for the results to be presented in a court of law. The paper, after introducing digital forensics and data science, explores the challenges above and proceed to propose how techniques and algorithms used in big data analysis can be adapted to the unique context of digital forensics, ranging from the managing of evidence via Map-Reduce to machine learning techniques for triage and analysis of big forensic disk images and network traffic dumps. In the conclusion the paper proposes a model to integrate this new paradigm into established forensic standards and best practices and tries to foresee future trends.

To get access to this content you need the following product:

Springer Professional "Wirtschaft+Technik"

Online-Abonnement

Mit Springer Professional "Wirtschaft+Technik" erhalten Sie Zugriff auf:

  • über 69.000 Bücher
  • über 500 Zeitschriften

aus folgenden Fachgebieten:

  • Automobil + Motoren
  • Bauwesen + Immobilien
  • Business IT + Informatik
  • Elektrotechnik + Elektronik
  • Energie + Nachhaltigkeit
  • Finance + Banking
  • Management + Führung
  • Marketing + Vertrieb
  • Maschinenbau + Werkstoffe
  • Versicherung + Risiko

Testen Sie jetzt 15 Tage kostenlos.

Springer Professional "Technik"

Online-Abonnement

Mit Springer Professional "Technik" erhalten Sie Zugriff auf:

  • über 50.000 Bücher
  • über 380 Zeitschriften

aus folgenden Fachgebieten:

  • Automobil + Motoren
  • Bauwesen + Immobilien
  • Business IT + Informatik
  • Elektrotechnik + Elektronik
  • Energie + Nachhaltigkeit
  • Maschinenbau + Werkstoffe




Testen Sie jetzt 15 Tage kostenlos.

Springer Professional "Wirtschaft"

Online-Abonnement

Mit Springer Professional "Wirtschaft" erhalten Sie Zugriff auf:

  • über 58.000 Bücher
  • über 300 Zeitschriften

aus folgenden Fachgebieten:

  • Bauwesen + Immobilien
  • Business IT + Informatik
  • Finance + Banking
  • Management + Führung
  • Marketing + Vertrieb
  • Versicherung + Risiko




Testen Sie jetzt 15 Tage kostenlos.

Literature
[BBC+08]
go back to reference Barreno, M. et al.: “Open Problems in the Security of Learning”. In: D. Balfanz and J. Staddon, eds., AISec, ACM, 2008, p.19-26 Barreno, M. et al.: “Open Problems in the Security of Learning”. In: D. Balfanz and J. Staddon, eds., AISec, ACM, 2008, p.19-26
[FBI08]
go back to reference FBI: “RCFL Program Annual Report for Fiscal Year 2008”, FBI 2008. http://​www.​fbi.​gov/​news/​stories/​2009/​august/​rcfls_​081809 FBI: “RCFL Program Annual Report for Fiscal Year 2008”, FBI 2008. http://​www.​fbi.​gov/​news/​stories/​2009/​august/​rcfls_​081809
[FBI10]
go back to reference FBI: “RCFL Program Annual Report for Fiscal Year 2010”, FBI 2010. FBI: “RCFL Program Annual Report for Fiscal Year 2010”, FBI 2010.
[ISAC13]
go back to reference ISACA: “What Is Big Data and What Does It Have to Do with IT Audit?”, ISACA Journal, 2013, p.23-25 ISACA: “What Is Big Data and What Does It Have to Do with IT Audit?”, ISACA Journal, 2013, p.23-25
[ISO12]
[KhCY07]
go back to reference Khan, M. and Chatwin, C. and Young, R.: “A framework for post-event timeline reconstruction using neural networks” Digital Investigation 4, 2007 Khan, M. and Chatwin, C. and Young, R.: “A framework for post-event timeline reconstruction using neural networks” Digital Investigation 4, 2007
[Pear01]
go back to reference Pearson, G.: “A Road Map for Digital Forensic Research”. In: Report from DFRWS 2001, First Digital Forensic Research Workshop, 2001. Pearson, G.: “A Road Map for Digital Forensic Research”. In: Report from DFRWS 2001, First Digital Forensic Research Workshop, 2001.
[Vari09]
go back to reference Varian, Hal in: The McKinsey Quarterly, Jan 2009 Varian, Hal in: The McKinsey Quarterly, Jan 2009
Metadata
Title
Digital Forensics as a Big Data Challenge
Author
Alessandro Guarino
Copyright Year
2013
Publisher
Springer Fachmedien Wiesbaden
DOI
https://doi.org/10.1007/978-3-658-03371-2_17

Premium Partner