U.S. flag

An official website of the United States government

Official websites use .gov
A .gov website belongs to an official government organization in the United States.

Secure .gov websites use HTTPS
A lock ( ) or https:// means you’ve safely connected to the .gov website. Share sensitive information only on official, secure websites.

PUBLICATIONS

An Abstract Model for Digital Forensic Tools - A Foundation for Systematic Error Mitigation Analysis

Published

Author(s)

Chris Hargreaves, Alexander Nelson, Eoghan Casey

Abstract

As automation within digital forensic tools becomes more advanced there is a need for a systematic approach to ensure the validity, reliability, and standardization of digital forensic results. This paper argues for intermediate output in a standardized format within digital forensic tools to allow a methodical approach to tool validation that targets errors at each stage of processing. To achieve this, a detailed process model of digital forensic analysis tools is created, extrapolating the details of the internal processes performed by monolithic forensic tools. The research deconstructs the process flow within tools and presents an 'abstract digital forensic tool', revisiting earlier abstraction layer ideas. This not only identifies the interconnected processes within tools but allows discussion of the potential error that could be introduced at each stage, and how it could potentially propagate within a tool. A demonstration, with a dataset, is also included, structurally annotated using Cyber-investigation Analysis Standard Expression (CASE).
Proceedings Title
Forensic Science International: Digital Investigation
Volume
48 (Supplement)
Conference Dates
March 19-22, 2024
Conference Location
Zaragoza, ES
Conference Title
Digital Forensic Workshop EU 2024 (DFRWS EU 2024)
Pub Type
Conferences

Download Paper

https://doi.org/10.1016/j.fsidi.2023.301679
Local Download

Keywords

digital forensics tools, digital forensics process, abstraction layers, validation, error, Tool testing, CASE
Software testing, Risk management, Interoperability testing, Digital evidence, Cybersecurity measurement, Cybersecurity education and workforce development and Conformance testing

Citation

Hargreaves, C. , Nelson, A. and Casey, E. (2024), An Abstract Model for Digital Forensic Tools - A Foundation for Systematic Error Mitigation Analysis, Forensic Science International: Digital Investigation , Zaragoza, ES, [online], https://doi.org/10.1016/j.fsidi.2023.301679, https://tsapps.nist.gov/publication/get_pdf.cfm?pub_id=956646 (Accessed September 26, 2024)

Issues

If you have any questions about this publication or are having problems accessing it, please contact reflib@nist.gov.

Created March 15, 2024, Updated August 22, 2024