Digital ForensicS

1. Xinwen Fu Associate Professor Department of Computer Science University of Massachusetts Lowell Digital ForensicS Center for Cyber Forensics, UMass Lowell

2. Outline • Introduction • Our Network Forensic Toolkits • Conclusion Xinwen Fu

3. Introduction Based on Symantec Internet Security Threat Report 2011 Trends • Symantec blocked more than 5.5 billion attacks in 2011 • Over 154 attacks took place per day in Dec. 2011 • Attacks skyrocketed by more than 81% compared with 2010 • More than 232.4 million identities were exposed Xinwen Fu

4. Digital Forensics • Recovery and investigation of material found in digital devices, often in relation to computer crime • Encompassment of the seizure, forensic imaging (acquisition) and analysis of digital media and the production of a report into collected evidence for the benefit of courts or employers (incrimination or exoneration) Computer Forensics Digital Forensics Network Forensics Xinwen Fu

5. Example Computer Forensic Toolkit® (FTK®) Xinwen Fu

6. Our Research on Network Forensics HAWK Evil 3DLoc2 HaLo Sr Robot Legend: Mini Helicopter-based Wireless Kit (HAWK) Search and rescue robot (Sr Robot) Hand-held Locator (HaLo) Xinwen Fu 3D localization and locking toolkit on vehicle (3DLoc2)

7. Outline • Introduction • Our Network Forensic Toolkits • Conclusion Xinwen Fu

8. Demo – HAWK: mini-Helicopter-based Aerial Localization Wireless Kit youtu.be/watch?v=ju86xnHbEq0 Xinwen Fu

9. Demo - HaLo: Hand-held Locator youtu.be/QGhBrt26Q8Y Xinwen Fu

10. Outline • Introduction • Our Network Forensic Toolkits • Conclusion Xinwen Fu

11. Conclusion • Digital forensics is the science fighting against cyber crime • We researched and implemented novel network forensic toolkits and demonstrated • HAWK – mini-Helcipter-based Aerial Wireless Kit • HaLo – Hand-held Locator • We study related laws in Network Forensics • We refine the framework of Network Forensics Xinwen Fu

12. Thank you! Xinwen Fu Xinwen Fu Xinwen Fu 12/15