Prior Publisher

The Association of Digital Forensics, Security and Law (ADFSL)


Because of Facebook’s popularity, law enforcement agents often use it as a key source of evidence. But like many user digital trails, there can be a large amount of data to extract for analysis. In this paper, we explore the basics of extracting data programmatically from a user’s Facebook via a Web app. A data extraction app requests data using the Facebook Graph API, and Facebook returns a JSON object containing the data. Before an app can access a user’s Facebook data, the user must log into Facebook and give permission. Thus, this approach is limited to situations where users give consent to the data extraction.


Carioli, C. (2012, April 6). When the Cops Subpoena your Facebook Information, Here's what Facebook Sends the Cops. Retrieved June 30, 2012, from The Boston Phoenix: http://blog.thephoenix.com/blogs/phlog/archive/2012/04/06/when-policesubpoena-your-facebook-information-heres-what-facebook-sends-cops.aspx

Crockford, D. (2006, July). The Application/JSON Media Type for JavaScript Object Notation (JSON). Retrieved June 30, 2012, from The Internet Engineering Task Force (IETF): http://www.ietf.org/rfc/rfc4627.txt

Facebook. (2012, March). Key Stats. Retrieved June 30, 2012, from Facebook: http://newsroom.fb.com/content/default.aspx?NewsAreaId=22

Facebook. (2012a). Download Your Information. Retrieved June 30, 2012, from Facebook: https://www.facebook.com/help/?page=116481065103985

Facebook. (2012b). Information for Law Enforcement Authorities. Retrieved June 30, 2012, from Facebook: https://www.facebook.com/safety/groups/law/guidelines/

Facebook. (2012c). Graph API. Retrieved June 2012, 30, from Facebook: https://developers.facebook.com/docs/reference/api/

Fielding, R. T., & Taylor, R. N. (2002). Principled Design of the Modern Web Architecture. ACM Transactions on Internet Technology, 2, 115-150.

Recordon, D., & Hardt, D. (2012, June 8). The OAuth 2.0 Authorization Framework. Retrieved June 30, 2012, from The Internet Engineering Task Force (IETF): http://tools.ietf.org/html/draft-ietf-oauth-v2-28



To view the content in your browser, please download Adobe Reader or, alternately,
you may Download the file to your hard drive.

NOTE: The latest versions of Adobe Reader do not support viewing PDF files within Firefox on Mac OS and if you are using a modern (Intel) Mac, there is no official plugin for viewing PDF files within the browser window.