Links
- Filters:
.:: Research Projects ::.
| Name: | The Center for Education and Research in Information Assurance and security (CERIAS): Digital Forensics Resources |
| Country: | USA |
| URL: | http://www.cerias.purdue.edu/research/forensics/resources |
| Description: | The Center for Education and Research in Information Assurance and Security (CERIAS) is a center for research and education in areas of information security that are crucial to the protection of critical computing and communication infrastructure. CERIAS takes a multidisciplinary approach to digital forensics problems, ranging from purely technical issues (e.g., intrusion detection, network security, etc) to ethical, legal, educational, communicational, linguistic, and economic issues, and the subtle interactions and dependencies among them. The site offers links, research, news, tools and resources in digital forensics. CERIAS also holds an annual symposium on information security topics, and the site contains downloadable presentations and papers from the conferences. |
| Name: | Digital Forensics Research Workshop (DFRWS) |
| URL: | http://www.dfrws.org/ |
| Description: | DFRWS is dedicated to the sharing of knowledge and ideas about digital forensics research. Ever since it organized the first open workshop devoted to digital forensics in 2001, DFRWS continues to bring academics and practitioners together in an informal environment. As a non-profit, volunteer organization, DFRWS sponsors annual conferences, technical working groups, and challenges to help drive the direction of research and development. Papers presented at the annual conference are reviewed in a double blind process and the accepted papers can be freely downloaded from this site. |
| Name: | National Center for Forensic Science (NCFS) |
| Country: | USA |
| URL: | http://ncfs.ucf.edu/ |
| Description: | NCFS assists the criminal justice system with computer crime challenges by conducting research on digital evidence, university courses on digital evidence and digital forensics, and training in digital forensics for local and state law enforcement agencies. Of particular interest to DRF is their current research, funded by the National Institute of Justice, regarding the Virtual Digital Evidence Lab. The following are portions from the summary of the research on the website: Currently, the collection, storage, analysis, and presentation of digital evidence occurs in a single geographic location, typically in a small digital evidence lab within the jurisdiction where the electronic crime occurred. This is an inefficient model in that local and state law enforcement agencies typically and unnecessarily duplicate resources that may be available elsewhere. A further problem is that each law enforcement agency must verify and validate examination tools, a process duplicated by all law enforcement agencies for all tools used in digital forensic examinations. Digital evidence labs of the future will not be constrained to a specific geographic location. Instead we propose the concept of the virtual lab. A virtual lab consists of the tools and resources required for digital forensic examinations, but these resources may be located in various geographic locations, and administered and maintained by different entities. These geographic locations are connected via a high-speed network. Examiners access the virtual lab through a single portal, over the Internet. Examiners can upload evidence for secure storage to one location and analyze the evidence using tools from a second location. Reports could be located at a third location. Prosecutors and attorneys would access the results through the same portal. The advantages of this new model over the traditional digital evidence lab include: 1. Reducing or eliminating unnecessary duplication of resources (examination machines, digital forensic tools, terabyte storage, secure storage, etc.) 2. Reducing or eliminating unnecessary duplication of tasks (verification and validation of all tools in a single location, etc.). 3. Provide expert assistance through certified digital evidence examiner specialists (e.g., Mac OS X, Solaris, network forensics, etc.). The largest benefit of virtual labs would be for smaller law enforcement agencies, even more so in rural areas, which often have to decide whether to buy ammunition or computers.” |
| Name: | Computer Professionals for Social Diversity (CPSR): Computer Crime and Legal Resource Directory |
| Country: | Based in the USA, with chapters in Peru, Spain, Canada, Africa, Uganda, and Japan |
| Duration: | 1983 - Unknown |
| URL: | http://www.cpsr.org/prevsite/cpsr/privacy/crime/crime.html/view?searchterm=computer%20crime%20directory |
| Description: | Mission statement: “CPSR is a public-interest alliance of people concerned about the impact of information and communications technology on society. We work to influence decisions regarding the development and use of computers because those decisions have far-reaching consequences and reflect our basic values and priorities. As experts on ICT issues, CPSR members provide realistic assessments of the power, promise, and limitations of computer technology. As concerned citizens, we direct public attention to critical choices concerning the applications of computing and how those choices affect society.” Their site includes links to legal references, papers, and other resources for exploring computer crime. |
| Name: | Forensic Exams |
| Country: | USA |
| Duration: | 2004 |
| URL: | http://www.forensicexams.org/ |
| Description: | This is a comprehensive website on digital forensics that includes downloadable research papers, The Journal of Applied Digital Forensics and E-Discovery, a glossary of terms, topically sorted recent news articles related to digital forensics, facts about digital forensics, a directory of forensics providers, links to forensic software, links to pertinent legal websites and documents (including examples of cases where digital evidence played an essential role), and much more to explore. |
| Name: | The Sedona Conference |
| Country: | Based in the United States, but International in scope |
| Duration: | 2002 |
| URL: | http://www.thesedonaconference.org/ |
| Description: | "The Sedona Conference exists to allow leading jurists, lawyers, experts, academics and others, at the cutting edge of issues in the area of antitrust law, complex litigation, and intellectual property rights, to come together - in conferences and mini-think tanks (Working Groups) - and engage in true dialogue, not debate, all in an effort to move the law forward in a reasoned and just way." Of particular interest to the DRF project are the Sedona Canada Working Group, the International Electronic Information Management, Discovery and Disclosure Working Group, and the Electronic Document Retention and Production Working Group. Sedona Canada first met in May of 2006. In January 2008 they released the Sedona Canada Principles, which are recommendations for lawyers, courts, businesses and others who regularly confront e-discovery issues in Canada. The International Electronic Information Management, Discovery and Disclosure Working Group first met in July of 2005 in Cambridge, England. It serves as a global forum and think tank for sharing information, developing best practices, and advising and educating on matters of national and international law and policy regarding the disclosure/discovery, management, and protection of electronically stored information. Several sub-teams have been formed, and the group is working to finalize a Global Survey and guidelines and best practices recommendations for dealing with cross-border conflicts. A second annual meeting was held in Madrid in September 2006. The group is currently completing the global survey and the report on cross-border conflicts, to be published later this year. The Electronic Document Retention and Production Working Group first met in October of 2002, and works toward development of principles and best practices recommendations for electronic document retention and production. During 2007, The Sedona Principles and The Sedona Guidelines were updated in light of the new United States Federal Rules of Civil Procedure and case law developments, culminating in the publication of The Sedona Principles, Second Edition. This Working Group also released commentaries on Legal Holds, Email Management and Archiving, and Search and Retrieval Methods. During 2008, they have released commentaries on Discovery of Electronically Stored Information Held by Non-Parties and Authentication and Admissibility of Electronic Evidence. Drafting groups are currently working on commentaries on Legacy Data, Preservation of "Not Reasonably Accessible" Electronically Stored Information, Protecting Privilege and Work Product, and E-Discovery Process and Quality Control. The Sedona Conference Collaboration Project is underway to bring together judges, trial lawyers, corporate and government counsel, technical experts, and academics to develop practical tools to reduce adversarial tension, cost, and delay in the pre-trial discovery process. |
| Name: | Code of Practices for Digital Forensics |
| Country: | International |
| URL: | http://sourceforge.net/projects/cp4df |
| Description: | A criteria selection for guiding and assuring activities concerned with the analysis of digital evidence, It covers legal, police and operational aspects. It is not a technical manual for computer forensic analysis, it is a criteria-based manual. |
| Name: | EDRM - the Electronic Discovery Reference Model |
| Duration: | 2005-unknown |
| URL: | http://www.edrm.net/ |
| Description: | EDRM was created to develop guidelines and standards for e-discovery consumers and providers. Through the group’s creation of the original model, which outlines the key processes and steps involved with e-discovery, to its development of an XML standard so that e-discovery products can interoperate, EDRM has helped e-discovery consumers and providers reduce the cost, time and manual work associated with e-discovery. In its on-going effort to provide guidelines and standards, EDRM continues to update and expand the original model with six projects for the 2008-2009 year. The site includes a comprehensive e-discovery glossary, the downloadable reference model, links to the meetings of the EDRM working groups that include downloadable documents from the meetings, webcasts about the projects, and news. |
| Name: | The Integrity Project |
| URL: | http://ftimes.sourceforge.net/ |
| Name: | Canadian E-Discovery Case Law Digest, by the Ontario Bar Association |
| Country: | Canada |
| URL: | http://www.oba.org/en/main/ediscovery_en/digest.aspx |
| Description: | Maintained by the Sedona Canada Working Group, this site contains downloadable case law documents pertaining to examination of electronic evidence and digital forensic collection and preservation, among other topics. |
| Name: | Kroll Ontrack Case Summaries |
| Country: | USA |
| URL: | http://www.krollontrack.com/case-summaries/ |
| Description: | This site offers multi-jurisdictional case summaries for preservation and spoliation cases, computer forensics protocols, experts, admissibility, and other topics, in downloadable pdf format or html. |
| Name: | Brian Carrier's website--Digital Evidence |
| Country: | USA |
| Duration: | 2006-Unknown |
| URL: | http://www.digital-evidence.org/ |
| Description: | This site contains research information about digital investigations (a.k.a. Digital forensics and computer forensics) and digital evidence. It contains both general research and information about his research. |
| Name: | Disk Forensics Project: Center for Research on Computation and Society @ Harvard University |
| Country: | USA |
| Duration: | 2005-2007 |
| URL: | http://www.eecs.harvard.edu/forensics/ |
| Description: | Simson L. Garfinkel is conducting postdoctoral computer forensics research in association with the Center for Research On Compuation and Society at Harvard University. In the fall of 2005, Garfinkel enlisted the help of three Harvard College Undergraduates: Matt Gline ('06), Alex Dubec ('09), and Chris Stevens ('09). Dubec and Stevens aided Garfinkel in imaging used hard drives acquired from E-bay. Gline conducted research on the preservation and restoration of data in "destroyed" hard drives. |
| Name: | Computer Forensics & Born Digital Content in Cultural Heritage Collections |
| Country: | USA |
| URL: | http://mith.info/forensics/ |
| Description: | This site is in support of a meeting and report entitled Computer Forensics and Born-Digital Content in Cultural Heritage Collections. Both are funded by the Andrew W. Mellon Foundation. |
