Abstract
The nascent field of digital forensics is heavily influenced by practice. Much digital forensics research involves the use, evaluation, and categorization of the multitude of tools available to researchers and practitioners. As technology evolves at an increasingly rapid pace, the digital forensics field must constantly adapt by creating and evaluating new tools and techniques to perform forensic analysis on many disparate systems such as desktops, notebook computers, mobile devices, cloud, and personal wearable sensor devices, among many others. While researchers have attempted to use ontologies to classify the digital forensics domain on various dimensions, no ontology of digital forensic tools has been developed that defines the capabilities and relationships among the various digital forensic tools. To address this gap, this work develops an ontology using Resource Description Framework (RDF) and Ontology Web Language (OWL) which is searchable via SP ARQL ( an RDF query language) and catalogues common digital forensic tools. Following the concept of ontology design patterns, our ontology has a modular design to promote integration with existing ontologies. Furthermore, we progress to a semantic web application that employs reasoning in order to aid digital investigators with selecting an appropriate tool. This work serves as an important step towards building the knowledge of digital forensics tools. Additionally, this research sets the preliminary stage to bringing semantic web technology to the digital forensics domain as well as facilitates expanding the developed ontology to other tools and features, relationships, and forensic techniques.
References
2013. "BioPortal."
Alzaabi, Mohammed. 2013. "Ontology-based forensic analysis of mobile devices." Electronics, Circuits, and Systems (ICECS), 2013 IEEE 20th International Conference on.
Alzaabi, Mohammed, Andy Jones, and Thomas Anthony Martin. 2013. "An ontology-based forensic analysis tool." Proceedings of the Conference on Digital Forensics, Security and Law.
Berners-Lee, T , J Hendler, and O Lassila. 2001. "The Semantic Web - A new form of Web content that is meaningful to computers will unleash a revolution of new possibilities." Scientific A merican:34-+.
Brinson, Ashley, Abigail Robinson, and Marcus Rogers. 2006. "A cyber forensics ontology: Creating a new approach to studying cyber forensics." digital investigation 3:37-43.
Carrier, Brian. 2003. "Defining digital forensic examination and analysis tools using abstraction layers." International Journal of digital evidence 1 (4):1-12.
Casey, Eoghan, Greg Back, and Sean Barnum. 2015. "Leveraging CybOX™ to standardize representation and exchange of digital forensic information." Digital Investigation 12: S102-Sl10.
Chan, E. 2011. "A Framework for live forensics." Philosophy in Computer Science 19 (4):110-119.
Cosic, Jasmin, and Zoran Cosic. 2012. "The necessity of developing a digital evidence ontology." the proceedings of the Central European Conference on Information and Intelligent Systems.
Giova, Giuliano. 2011. "Improving chain of custody m forensic investigation ofelectronic digital systems." International Journal of Computer Science and Network Security 11 (1):1-9.
Gruber, T.R. 1993. "A Translation Approach to Portable Ontology Specification." Knowledge Acquisition 5 (2):199-220.
Harrill, David Christopher, and Richard P Mislan. 2007. "A small scale digital device forensics ontology." Small Scale Digital Device Forensics Journal 1 (1):242.
Hoss, Allyson M, and Doris L Carver. 2009. "Weaving ontologies to support digital forensic analysis." Proceedings of the 2009 IEEE international conference on Intelligence and security informatics.
Kahvedzic, Damir, and Tahar Kechadi. 2009. "DIALOG: A framework for modeling, analysis and reuse of digital forensic knowledge." digital investigation 6: S23- S33.
Karie, Nickson M, and Hein S Venter. 2014. "Toward a general ontology for digital forensic disciplines." Journal of forensic sciences 59 (5):1231-1241.
Narock, Tom, and Peter Fox. 2015. The Semantic Web in Earth and Space Science. Current Status and Future Directions. Vol. 20: IOS Press.
Park, Heum, SunHo Cho, and Hyuk-Chul Kwon. 2009. "Cyber forensics ontology for cyber criminal investigation." In Forensics in Telecommunications, Information and Multimedia, 160-165. Springer.
Reith, Mark, Clint Carr, and Gregg Gunsch. 2002. "An examination of digital forensic models." International Journal of Digital Evidence 1 (3):1-12.
Schatz, Bradley, George Mohay, and Andrew Clark. 2004. "Rich event representation for
computer forensics'." Proceedings of the Fifth Asia-Pacific Industrial Engineering and Management Systems Conference (APIEMS 2004).
Simon, T. 2012. "Discussion on the Challenges and Opportunities of Cloud Forensics." Multidisciplinary Research and Practice for Information Systems 9 (1):116-223.
Slay, Jill, and Fiona Schulz. 2014. "Development of an ontology based forensic search mechanism: Proof of concept." arXiv preprint arXiv:1407.8258.
Recommended Citation
Wimmer, Hayden; Chen, Lei; and Narock, Thomas
(2018)
"Ontologies and the Semantic Web for Digital Investigation Tool Selection,"
Journal of Digital Forensics, Security and Law: Vol. 13
, Article 6.
DOI: https://doi.org/10.15394/jdfsl.2018.1569
Available at:
https://commons.erau.edu/jdfsl/vol13/iss3/6
