摘要 :
This article proposes the development of open-source client forensic artefacts' knowledgebase that uses Neo4j as the graph database which allows for the prompt location of evidential artefacts. The authors ran experiments to ident...
展开
This article proposes the development of open-source client forensic artefacts' knowledgebase that uses Neo4j as the graph database which allows for the prompt location of evidential artefacts. The authors ran experiments to identify artefacts created when the commonly used devices are used to access some cloud storage services. For each artefact, the knowledgebase contains the cloud storage service accessed, the device and the platform used, the activity that generated it, a description of the created artefacts, and the event/activity making the object. The authors conclude that the developed prototype can enhance the investigation process by timely identifying artefacts that may be used to prove usage of a cloud storage service.
收起