Title :
Secure Digital Chains of Evidence
Author :
Kuntze, Nicolai ; Rudolph, Carsten
Author_Institution :
Fraunhofer Inst. for Secure Inf. Technol. (SIT), Darmstadt, Germany
Abstract :
Computers, mobile phones, embedded devices and other components of IT systems can often be easily manipulated. Therefore, in forensic use of digital evidence it is necessary to carefully check that the probative force of the evidence is sufficient. For applications where critical processes can lead to disputes and resolving disputed relies on digital evidence one open question is how to build the system in a way that secure digital evidence is available. This paper introduces the notion of secure digital chains of evidence and proposes a high-level architecture for systems that can provide such chains of evidence. Finally, possible building blocks are explored for the realisation of a distributed and heterogeneous system with support for secure digital chains of evidence.
Keywords :
computer forensics; distributed processing; digital evidence; distributed system; evidence digital chain security; forensic use; heterogeneous system; system high-level architecture; Correlation; Forensics; Generators; Radiation detectors; Security; Software; Synchronization; Secure digital evidence; digital chains of evidence; event correlation; trusted computing;
Conference_Titel :
Systematic Approaches to Digital Forensic Engineering (SADFE), 2011 IEEE Sixth International Workshop on
Conference_Location :
Oakland, CA
Print_ISBN :
978-1-4673-1242-4
DOI :
10.1109/SADFE.2011.16
