A Cost-Effective Model for Digital Forensic Investigations

Overill

Advances in Digital Forensics VI

et al. 2010

Self Cite

Internet auction fraud has become prevalent. Methodologies for detecting fraudulent transactions use historical information about Internet auction participants to decide whether or not a user is a potential fraudster. The information includes reputation scores, values of items, time frames of various activities and transaction records. This paper presents a distinctive set of fraudster characteristics based on an analysis of 278 allegations about the sale of counterfeit goods at Internet auction sites. Also, it applies a Bayesian approach to analyze the relevance of evidence in Internet auction fraud cases.

Section: Discussionmentioning

confidence: 99%

Evaluation of Evidence in Internet Auction Fraud Investigations

Overill

Advances in Digital Forensics VI

et al. 2010

Self Cite

“…Bayesian belief networks have been used to determine if investigations are worth undertaking [9]. Overill and Silomon [10] use the term "digital metaforensics" to quantify the investigation of digital crime cases.…”

Section: Forensic Case Assessment and Triagementioning

confidence: 99%

“…They argue that a preliminary filtering or pre-screening phase could help rank the probable order of evidential strength. Overill, et al [9] emphasize that it is the duty of digital forensic practitioners to retrieve digital traces to prove or refute alleged computer acts. They maintain that, given the resource constraints, it is not always feasible or necessary to retrieve all the related digital traces and to conduct a thorough digital forensic analysis.…”

Section: Forensic Case Assessment and Triagementioning

confidence: 99%

“…Overill, et al [9] and Cohen [3] have specified cost-effectiveness metrics for conducting cost-benefit analyses of forensic investigations, including cost-efficiency [9] and return-on-investment studies [3]. In particular, Overill, et al [9] have proposed a two-phase schema for performing digital forensic examinations at minimal cost.…”

Section: Forensic Case Assessment and Triagementioning

confidence: 99%

See 1 more Smart Citation

A Generic Bayesian Belief Model for Similar Cyber Crimes

Tse

Advances in Digital Forensics IX

2013

Self Cite

Bayesian belief network models designed for specific cyber crimes can be used to quickly collect and identify suspicious data that warrants further investigation. While Bayesian belief models tailored to individual cases exist, there has been no consideration of generalized case modeling. This paper examines the generalizability of two case-specific Bayesian belief networks for use in similar cases. Although the results are not conclusive, the changes in the degrees of belief support the hypothesis that generic Bayesian network models can enhance investigations of similar cyber crimes.

“…Research on applying Bayesian networks to criminal investigations is on the rise [7][8][9]12]. The application of Bayes' theorem and graph theory provides a means to characterize the causal relationships among variables [16].…”

Section: Introductionmentioning

confidence: 99%

Sensitivity Analysis of Bayesian Networks Used in Forensic Investigations

Overill

Advances in Digital Forensics VII

et al. 2011

Self Cite

Research on using Bayesian networks to enhance digital forensic investigations has yet to evaluate the quality of the output of a Bayesian network. The evaluation can be performed by assessing the sensitivity of the posterior output of a forensic hypothesis to the input likelihood values of the digital evidence. This paper applies Bayesian sensitivity analysis techniques to a Bayesian network model for the well-known Yahoo! case. The analysis demonstrates that the conclusions drawn from Bayesian network models are statistically reliable and stable for small changes in evidence likelihood values.