A Conceptual Framework on Digital Forensics Readiness for Criminals Tracking: Data Reduction Modalities

The ever-growing threats of fraud and security incidents present many challenges to law enforcement and organizations across the globe. The volume of digital forensic evidence is rapidly increasing, leading to large backlogs. However, Digital Forensic Data Reduction and Data Mining Framework is proposed. The framework outlined is not suggested to replace full analysis, but serves to provide a rapid triage, collection, intelligence analysis, and review and storage methodology to support the various stages of digital forensic examinations. This study contributes to the greater body of knowledge on the design and implementation of a digital forensic readiness programme, aimed at maximizing the use of digital evidence in an organization DOI: 10.17762/ijritcc2321-8169.15082

A Hybrid Methodology Approach for Fraud Detection Using Event Correlation Approach

To effectively investigate mass of events oriented data, automated methods for extracting event records and then classifying events and patterns of events into higher level terminology and vocabulary are necessary. Semantically rich representation model and automated methods of correlating event information expressed in such models are becoming a necessity. The Event Correlation for Forensics (ECF) framework was developed with the strategic objective “to develop a means by which a consolidated repository of event information can be constituted and then queried in order to provide an investigator with post hoc event correlation. Key words: Semantics, Correlation, Digital Forensic DOI: 10.17762/ijritcc2321-8169.15083

AN EVENT ORIENTED APPROACH TO DIGITAL FORENSICS FOR TRACKING CRIMINALS

In this paper, we present a framework for digital forensics that includes an investigation process model  based on physical crime scene procedures. In this model, each digital device is considered a digital crime scene, which is included in the physical crime scene where it is located. The investigation includes the preservation of the system, the search for digital evidence, and the reconstruction of digital events. The focus of the investigation is on the reconstruction of events using evidence so that hypotheses can be developed and tested. This paper also includes definitions and descriptions of the basic and core concepts that the framework uses