2020
DOI: 10.3390/sym12010104
|View full text |Cite
|
Sign up to set email alerts
|

An Abstraction Based Approach for Reconstruction of TimeLine in Digital Forensics

Abstract: Acquiring a clear perspective of events and artefacts that occur over time is a challenging objective to accomplish in digital forensics. Reconstruction of the timeline of events and artefacts, which enables digital investigators to understand the timeline of digital crime and interpret the conclusion in the form of digital evidence, is one of the most paramount and challenging tasks in digital forensics. This challenging task requires the analysis of immense amounts of events because of the explosive growth o… Show more

Help me understand this report

Search citation statements

Order By: Relevance

Paper Sections

Select...
1
1
1

Citation Types

0
2
0

Year Published

2020
2020
2024
2024

Publication Types

Select...
4
3
1

Relationship

1
7

Authors

Journals

citations
Cited by 14 publications
(3 citation statements)
references
References 17 publications
(16 reference statements)
0
2
0
Order By: Relevance
“…In this section, the first methodology for reconstruction of the timeline in digital forensics [26] is discussed. This approach is based on the outcome of the digital forensics command based tools, i.e., Log2timeline and Psort.…”
Section: Proposed Methodologymentioning
confidence: 99%
“…In this section, the first methodology for reconstruction of the timeline in digital forensics [26] is discussed. This approach is based on the outcome of the digital forensics command based tools, i.e., Log2timeline and Psort.…”
Section: Proposed Methodologymentioning
confidence: 99%
“…Lack of standardisation of hardware, software, techniques, and policies surrounding cloud forensics [32] across industries and several countries brought in the challenge of evidence dependability and soundness, which are acquired using those tools and policies. Several unsuccessful attempts have been made to create new formats and abstractions [33][34] when representing an individual's whole life's data in a few bytes of information informing signature pen tester metrics, user profiles, and filesystem metadata. It may be difficult and practically impossible to standardise all the digital forensic tools, models, and processes due to some form of diversity in the procedures.…”
Section: Lack Of Standardisationmentioning
confidence: 99%
“…Timeline2GUI was developed to analyse * .csv log files created by log2timeline [26]. An abstraction based approach for timeline reconstruction was proposed in 2020, which is based on the timeline data provided by log2timeline [27].…”
Section: B File System Metadata and Timeline Analysismentioning
confidence: 99%