In 2014, we launched our open-access repository which offers full text access to conference proceedings from many of our events including the INC and HAISA series. These papers are free to access and distribute (subject to citing the source).
7th International Workshop on Digital Forensics and Incident Analysis (WDFIA 2012)
Title: Pypette: A Framework for the Evaluation of Live Digital Forensic Acquisition Techniques
Author(s): Brett Lempereur, Madjid Merabti, Qi Shi
Keywords: Digital forensics, live digital forensics, experimental computer science
Abstract: With the increasing scale of digital forensic investigations, there is a need for approaches that are capable of reducing the quantities of data forensic examiners are required to search. As this trend continues, traditional quiescent digital forensic analysis is in some cases becoming impractical; examiners must often rely on an in-situ investigation of the live computing environment. Numerous approaches to live digital forensic evidence acquisition have been proposed in the literature, but relatively little attention has been paid to the problem of identifying how the effects of these approaches, and their improvements over other techniques, can be evaluated and quantified. In this paper, we present Pypette, a novel framework enabling the automated, repeatable analysis of live digital forensic acquisition techniques.
Download count: 1826
How to get this paper:
PDF copy of this paper is free to download. You may distribute this copy providing you cite this page as the source.