Towards comprehensive and collaborative forensics on email evidence

Justin Paglierani, Mike Mabey, Gail-Joon Ahn

Research output: Chapter in Book/Report/Conference proceedingConference contribution

7 Scopus citations

Abstract

The digital forensics community has neglected email forensics as a process, despite the fact that email remains an important tool in the commission of crime. At present, there exists little support for discovering, acquiring, and analyzing web-based email, despite its widespread use. In this paper we present a systematic process for email forensics which we integrate into the normal forensic analysis workflow, and which accommodates the distinct characteristics of email evidence. Our process focuses on detecting the presence of non-obvious artifacts related to email accounts, retrieving the data from the service provider, and representing email in a well-structured format based on existing standards. As a result, developers and organizations can collaboratively create and use analysis tools that can analyze email evidence from any source in the same fashion and the examiner can access additional data relevant to their forensic cases.

Original languageEnglish (US)
Title of host publicationProceedings of the 9th IEEE International Conference on Collaborative Computing: Networking, Applications and Worksharing, COLLABORATECOM 2013
Pages11-20
Number of pages10
DOIs
Publication statusPublished - 2013
Event9th IEEE International Conference on Collaborative Computing: Networking, Applications and Worksharing, COLLABORATECOM 2013 - Austin, TX, United States
Duration: Oct 20 2013Oct 23 2013

Other

Other9th IEEE International Conference on Collaborative Computing: Networking, Applications and Worksharing, COLLABORATECOM 2013
CountryUnited States
CityAustin, TX
Period10/20/1310/23/13

    Fingerprint

Keywords

  • collaboration
  • Email
  • forensics

ASJC Scopus subject areas

  • Computer Networks and Communications
  • Computer Science Applications

Cite this

Paglierani, J., Mabey, M., & Ahn, G-J. (2013). Towards comprehensive and collaborative forensics on email evidence. In Proceedings of the 9th IEEE International Conference on Collaborative Computing: Networking, Applications and Worksharing, COLLABORATECOM 2013 (pp. 11-20). [6679965] https://doi.org/10.4108/icst.collaboratecom.2013.254125