Forensic investigation and analysis of user input information in business application

Olajide, F. ORCID: 0000-0003-1627-6637 and Misra, S., 2016. Forensic investigation and analysis of user input information in business application. Indian Journal of Science and Technology, 9 (25), pp. 1-7. ISSN 0974-6846

[img]
Preview
Text
1597814_Olajide_.pdf - Published version

Download (218kB) | Preview

Abstract

Objectives: This paper investigates the amount of user input that can be recovered from the volatile memory of Windows computer systems while an application is still running. Additionally, an investigation into temporal, functional analysis and event reconstruction of user input activities in business application is discussed and reported upon.

Methods/Analysis: Forensically, relevant user information is suitable for an evidentiary purpose. Therefore, the qualitative assessment of user input on commonly used windows-based applications is presented.

Findings: In this research, detailed emphasis has been laid on the quality of evidence recovered from the allocated line numbers of the application memory. This approach describes the process of securing digital evidence for investigators. The research uncovers the process of analysing the forensically relevant data recovered from Windows applications. The investigation comprises of the following; dumping of memory, data extraction, strings evidence strings conversion, result finding of the evidence and also, reconstructing the extracted evidence of user information.

Applications/Improvement: This research focuses on digital forensic investigation of digital images captured and the memory analysis of user information on using some very popular windows-based applications. It is aimed that this may become part of forensic analysis in digital investigations.

Item Type: Journal article
Publication Title: Indian Journal of Science and Technology
Creators: Olajide, F. and Misra, S.
Publisher: Indian Society for Education and Environment
Date: 2016
Volume: 9
Number: 25
ISSN: 0974-6846
Identifiers:
NumberType
10.17485/ijst/2016/v9i25/95211DOI
1597814Other
Rights: This work is licensed under a Creative Commons Attribution 4.0 International License.
Divisions: Schools > School of Science and Technology
Record created by: Linda Sullivan
Date Added: 20 Sep 2022 14:21
Last Modified: 20 Sep 2022 14:21
URI: https://irep.ntu.ac.uk/id/eprint/47055

Actions (login required)

Edit View Edit View

Views

Views per month over past year

Downloads

Downloads per month over past year