Title :
Forensic Analysis of E-mail Date and Time Spoofing
Author :
Mishra, P. ; Pilli, Emmanuel S. ; Joshi, R.C.
Author_Institution :
Dept. of Comput. Sci. & Eng., Graphic Era Univ., Dehradun, India
Abstract :
There are no adequate and proactive mechanisms for securing E-mail systems. E-mail date and time spoofing is one of the major problems of E-mail security. The effects of E-mail spoofing can be limited by the appropriate configuration of E-mail servers and improved user awareness of the problem. The only real countermeasure is the use of digitally signed messages that allow a recipient to authenticate the identity of the sender. This paper presents E-mail forensics to detect E-mail Date and Time spoofing. We have created data set of spoofed and legitimate E-mails. We propose an algorithm to perform the forensic analysis of E-mail time and date spoofing, by reading the header information and analyzing the fields related to date and time. We have given a policy to check sent-date and received-date fields of every E-mail. If the sent-date and sent-time differs from the received date and received-time by some predefined margin, the E-mail has been spoofed. The algorithm is validated on the data set created in our lab.
Keywords :
digital forensics; digital signatures; electronic mail; digitally signed messages; e-mail date; e-mail security; e-mail servers; forensic analysis; received-date fields; sent-date fields; time spoofing; Electronic mail; Forensics; IP networks; Java; Postal services; Security; Servers; Date; E-mail Forensics; E-mail Spoofing; Recieved; SMTP;
Conference_Titel :
Computer and Communication Technology (ICCCT), 2012 Third International Conference on
Conference_Location :
Allahabad
Print_ISBN :
978-1-4673-3149-4
DOI :
10.1109/ICCCT.2012.69
