Towards an integrated e-mail forensic analysis framework

详细信息    查看全文

• 作者：Rachid Hadjidj ; Mourad Debbabi ; Hakim Lounis ; Farkhund Iqbal ; Adam Szporer ; Djamel Benredjem
• 关键词：Cyber crimes ; E-mail forensics ; E-mail social networks ; Classification ; Clustering ; Statistical analysis
• 刊名：Digital Investigation
• 出版年：2009
• 出版时间：March 2009
• 年：2009
• 卷：5
• 期：3-4
• 页码：124-137
• 全文大小：1179 K

文摘

Due to its simple and inherently vulnerable nature, e-mail communication is abused for numerous illegitimate purposes. E-mail spamming, phishing, drug trafficking, cyber bullying, racial vilification, child pornography, and sexual harassment are some common e-mail mediated cyber crimes. Presently, there is no adequate proactive mechanism for securing e-mail systems. In this context, forensic analysis plays a major role by examining suspected e-mail accounts to gather evidence to prosecute criminals in a court of law. To accomplish this task, a forensic investigator needs efficient automated tools and techniques to perform a multi-staged analysis of e-mail ensembles with a high degree of accuracy, and in a timely fashion. In this article, we present our e-mail forensic analysis software tool, developed by integrating existing state-of-the-art statistical and machine-learning techniques complemented with social networking techniques. In this framework we incorporate our two proposed authorship attribution approaches; one is presented for the first time in this article.