Top

Published in:

2018 | OriginalPaper | Chapter

10. The Conceptual Representation of the “Electronic Evidence” Domain

Authors : Sveva Avveduto, Sara Conti, Daniela Luzi, Lucio Pisacane

Published in: Handling and Exchanging Electronic Evidence Across Europe

Publisher: Springer International Publishing

Activate our intelligent search to find suitable subject content or patents.

search-config

AI-assisted search

Off

Abstract

The conceptual representation of the “Electronic Evidence” domain presented in this chapter aims at building a common language to identifying, connecting and aligning all relevant concepts for the systematic and uniform application of new technologies in the collection, use and exchange of evidence. For setting the domain boundaries, a literature review is presented along with the current standards used to define and handle Electronic Evidence. These sources of information allowed to identify a first set of terms and definitions used in the top-down extraction of relevant concepts to be considered the basis for the development of the full categorization exercise. In parallel, the gathered documentation was used to apply a bottom-up strategy that foresees a semi-automatic extraction of lemmas and syntagms, using a natural language processing technique. The results of this activity allowed the identification of further terms and concepts to enrich the top-down extraction. The research team identified eight classes to represent the Electronic Evidence domain: Crime, Source of Evidence, Process, Electronic Evidence, Requirement, Stakeholder, Rule, and Digital Forensics. These main classes have been hierarchically structured in sub-classes that may be easily updated and maintained. A SKOS structure, Simple Knowledge Organization System, was chosen to represent the domain. Finally considering that one of the main focuses of the EVIDENCE Project concerns the development of a framework for data exchange between judicial actors and LEAs, the study has taken into account the exchange of both digital-born evidence and of not digital-born one.

Dont have a licence yet? Then find out more about our products and how to get one now:

Springer Professional "Wirtschaft+Technik"

Online-Abonnement

Mit Springer Professional "Wirtschaft+Technik" erhalten Sie Zugriff auf:

über 102.000 Bücher
über 537 Zeitschriften

aus folgenden Fachgebieten:

Automobil + Motoren
Bauwesen + Immobilien
Business IT + Informatik
Elektrotechnik + Elektronik
Energie + Nachhaltigkeit
Finance + Banking
Management + Führung
Marketing + Vertrieb
Maschinenbau + Werkstoffe
Versicherung + Risiko

Jetzt Wissensvorsprung sichern!

inform now

Springer Professional "Technik"

Online-Abonnement

Mit Springer Professional "Technik" erhalten Sie Zugriff auf:

über 67.000 Bücher
über 390 Zeitschriften

aus folgenden Fachgebieten:

Automobil + Motoren
Bauwesen + Immobilien
Business IT + Informatik
Elektrotechnik + Elektronik
Energie + Nachhaltigkeit
Maschinenbau + Werkstoffe

Jetzt Wissensvorsprung sichern!

inform now

Springer Professional "Wirtschaft"

Online-Abonnement

Mit Springer Professional "Wirtschaft" erhalten Sie Zugriff auf:

über 67.000 Bücher
über 340 Zeitschriften

aus folgenden Fachgebieten:

Bauwesen + Immobilien
Business IT + Informatik
Finance + Banking
Management + Führung
Marketing + Vertrieb
Versicherung + Risiko

Jetzt Wissensvorsprung sichern!

inform now

previous chapter Electronic Evidence in Criminal Trials: The Use of PowerPoint Presentations by Prosecutors and Attorneys in the Courtroom

next chapter The European Legal Framework on Electronic Evidence: Complex and in Need of Reform

See Council of Europe (2013), p. 6.

Credits: illustrations by Gaia Soldatini. www.gaiasoldatini.com

Convention on Cybercrime, Budapest 23 Nov 2011, see http://www.coe.int/en/web/conventions/full-list/-/conventions/treaty/185.

Explanatory Report to the Convention on Cybercrime, https://www.coe.int/en/web/conventions/full-list/-/conventions/treaty/185.

Council Act of 29 May 2000, establishing in accordance with Article 34 of the Treaty on European Union the Convention on Mutual Assistance in Criminal Matters between the Member States of the European Union.

Council Framework Decision 2008/978/of 18 December 2008 on the European evidence warrant for obtaining objects, documents and data for use in proceedings in criminal matters.

Directive 2013/40/EU of the European Parliament and of the Council of 12 August 2013 on attacks against information systems and replacing Council Framework Decision 2005/222/JH.

Directive 2014/41/EU of the European Parliament and of the Council of 3 April 2014 regarding the European Investigation Order in criminal matters.

The International Organization of Computer Evidence is no longer active. The definition was adopted by IOCE in 2000 as a working definition.

See the deliverable D2.1—EVIDENCE Semantic Structure at http://s.evidenceproject.eu/p/e/v/evidence-ga-608185-d2-1-410.pdf.

Alzaabi M, Martin T, Taha K, Jones (2015) The use of ontologies in forensic analysis of smartphone content. J Digit Forensic Secur Law 10(4). https://doi.org/10.15394/jdfsl.2015.1215

Association of Chief Police Officers (UK) (2012) Good practice guide for computer-based electronic evidence. http://library.college.police.uk/docs/acpo/digital-evidence-2012.pdf

Brinson A, Robinson A, Rogers M (2006) A cyber forensics ontology: creating a new approach to studying cyber forensics. Digit Investig J 3S:S37–S43

Carrier B (2006) Hypothesis-based approach to digital forensic investigations. Center for Education and Research in Information Assurance and Security, Purdue University

Casey E (2011) Digital evidence and computer crime. forensic science, computers, and the internet, 3rd edn. Elsevier, Amsterdam

Ciurea A (2010) Legal implications of accessing and using information technology. Legislation in Romania and in the EU. In: ICCOMP’10 Proceedings of the 14th WSEAS lmputers: part of the 14th WSEAS CSCC multiconference, vol I, p 258

Clough J (2014) A world of difference: the Budapest convention on cybercrime and the challenges of harmonization. Monash University Law Rev 40(3):698–736

Ćosić J, Ćosić Z (2011) An ontological approach to study and manage digital chain of custody of digital evidence. J Inf Organ Sci 35(1):1–13

Ćosić J, Ćosić Z (2012) The necessity of developing a digital evidence ontology. In: Proceedings of the 23rd central European conference on information and intelligent systems, University of Zagreb, pp 325–230

Council of Europe (2013) Electronic evidence guide. A basic guide for police officers, prosecutors and judges

Daniel L, Daniel L (2011) Digital forensics for legal professionals. Understanding digital evidence from the warrant to the courtroom. Syngress, Boston, p 368

Duranti L (1995) Reliability and authenticity: the concepts and their implications. Archivaria 39:5–10

Duranti L (2009) From digital diplomatics to digital records forensics. Archivaria J Assoc Can Arch

Gatt GG (2002) The misuse of computers in Maltese criminal legislation, University of Malta, p 9

Harril DC, Mislan RP (2007) A small scale digital device forensics ontology. Small Scale Digit Device Forensics J 1(1):1–7

Hoss A, Carver D (2009) Weaving ontologies to support digital forensic analysis. In: Intelligence and security informatics, ISI’09, pp 203–205

Huang J, Yasinsac A, Hayes PJ (2010) Knowledge sharing and reuse in digital forensics. In: Digital investigation, pp 1–6

ISO/IEC 27037 (2012) Guidelines for identification, collection, acquisition, and preservation of digital evidence

Karie NM, Venter HS (2014) Toward a general ontology for digital forensic disciplines. J Forensic Sci 59(5):1231–1241CrossRef

Koops B-J, Robinson T (2011) Cybercrime: a European perspective. In: Casey E (ed) Digital evidence and computer crime, 3rd edn. Elsevier, Amsterdam, pp 123–183

Kota VK (2012) An ontological approach for digital evidence search. Int J Sci Res Publ 2(12):1–5

Marion NE (2010) The Council of Europe’s cyber crime treaty: an exercise in symbolic legislation. Int J Cyber Criminol 4(1–2):699–712

Murphy CC (2011) The European evidence warrant: mutual recognition. In: Konstadinides E (ed.) Crime within the area of freedom security and justice. A European public order. Cambridge University Press, Cambridge

Park H, Cho S, Kwon HC (2009) Cyber forensics ontology for cyber criminal investigation. In: Forensics in telecommunications, information and multimedia. Springer, Berlin, pp 160–165CrossRef

Raskin V, Hempelmann CF, Triezenberg KE, Nirenburg S (2001) Ontology in information security: a useful theoretical foundation and methodological tool. In: Proceedings of the 2001 workshop on new security paradigms. ACM, New York, pp 53–59CrossRef

Schafer B, Mason S (2012) The characteristics of digital evidence. In: Mason S (ed.) Electronic evidence. LexisNexis Butterworths, London, p 25

SWGDE (2000) Digital evidence: standards and principles. Forensic Sci Commun 2(2):2

Talib AM, Alomary FO (2015) Toward a comprehensive ontology based-investigation for digital forensics cybercrime. Int J Commun Antenna Propag 5(5):263–268

Weber AM (2003) The council of Europe’s convention on cybercrime. Berkeley Technol Law J 18(1):425–446

Whitcomb CM (2002) An historical perspective of digital evidence: a forensic scientist’s view. Int J Digital Evid 1(1):1–9

Title: The Conceptual Representation of the “Electronic Evidence” Domain
Authors: Sveva Avveduto
Sara Conti
Daniela Luzi
Lucio Pisacane
Publisher: Springer International Publishing
Book: Handling and Exchanging Electronic Evidence Across Europe
Print ISBN: 978-3-319-74871-9

Electronic ISBN: 978-3-319-74872-6

Copyright Year: 2018
DOI: https://doi.org/10.1007/978-3-319-74872-6_10

Springer Professional

Abstract

Please log in to get access to your license.

Dont have a licence yet? Then find out more about our products and how to get one now:

Springer Professional "Wirtschaft+Technik"

Springer Professional "Technik"

Springer Professional "Wirtschaft"