Advanced evidence collection and analysis of web browser activity

Junghoon Oh, Seungbong Lee, Sangjin Lee

Research output: Contribution to journalArticle

39 Citations (Scopus)

Abstract

A Web browser is an essential application program for accessing the Internet. If a suspect uses the Internet as a source of information, the evidence related to the crime would be saved in the log file of the Web browser. Therefore, investigating the Web browser's log file can help to collect information relevant to the case. After considering existing research and tools, this paper suggests a new evidence collection and analysis methodology and tool to aid this process.

Original languageEnglish
JournalDigital Investigation
Volume8
Issue numberSUPPL.
DOIs
Publication statusPublished - 2011 Aug 1

Fingerprint

Web Browser
Web browsers
Internet
source of information
evidence
Crime
offense
Application programs
methodology
Research

Keywords

  • Integrated timeline analysis
  • Restoration of deleted web browser information
  • Search word analysis
  • URL decoding
  • Web browser forensics

ASJC Scopus subject areas

  • Law
  • Computer Science Applications
  • Medical Laboratory Technology

Cite this

Advanced evidence collection and analysis of web browser activity. / Oh, Junghoon; Lee, Seungbong; Lee, Sangjin.

In: Digital Investigation, Vol. 8, No. SUPPL., 01.08.2011.

Research output: Contribution to journalArticle

@article{b0d41e8eb25b4dda809cadcc34468889,
title = "Advanced evidence collection and analysis of web browser activity",
abstract = "A Web browser is an essential application program for accessing the Internet. If a suspect uses the Internet as a source of information, the evidence related to the crime would be saved in the log file of the Web browser. Therefore, investigating the Web browser's log file can help to collect information relevant to the case. After considering existing research and tools, this paper suggests a new evidence collection and analysis methodology and tool to aid this process.",
keywords = "Integrated timeline analysis, Restoration of deleted web browser information, Search word analysis, URL decoding, Web browser forensics",
author = "Junghoon Oh and Seungbong Lee and Sangjin Lee",
year = "2011",
month = "8",
day = "1",
doi = "10.1016/j.diin.2011.05.008",
language = "English",
volume = "8",
journal = "Digital Investigation",
issn = "1742-2876",
publisher = "Elsevier Limited",
number = "SUPPL.",

}

TY - JOUR

T1 - Advanced evidence collection and analysis of web browser activity

AU - Oh, Junghoon

AU - Lee, Seungbong

AU - Lee, Sangjin

PY - 2011/8/1

Y1 - 2011/8/1

N2 - A Web browser is an essential application program for accessing the Internet. If a suspect uses the Internet as a source of information, the evidence related to the crime would be saved in the log file of the Web browser. Therefore, investigating the Web browser's log file can help to collect information relevant to the case. After considering existing research and tools, this paper suggests a new evidence collection and analysis methodology and tool to aid this process.

AB - A Web browser is an essential application program for accessing the Internet. If a suspect uses the Internet as a source of information, the evidence related to the crime would be saved in the log file of the Web browser. Therefore, investigating the Web browser's log file can help to collect information relevant to the case. After considering existing research and tools, this paper suggests a new evidence collection and analysis methodology and tool to aid this process.

KW - Integrated timeline analysis

KW - Restoration of deleted web browser information

KW - Search word analysis

KW - URL decoding

KW - Web browser forensics

UR - http://www.scopus.com/inward/record.url?scp=79961092165&partnerID=8YFLogxK

UR - http://www.scopus.com/inward/citedby.url?scp=79961092165&partnerID=8YFLogxK

U2 - 10.1016/j.diin.2011.05.008

DO - 10.1016/j.diin.2011.05.008

M3 - Article

AN - SCOPUS:79961092165

VL - 8

JO - Digital Investigation

JF - Digital Investigation

SN - 1742-2876

IS - SUPPL.

ER -