Matching Items (5)
Filtering by
- Member of: Theses and Dissertations
Description
The digital forensics community has neglected email forensics as a process, despite the fact that email remains an important tool in the commission of crime. Current forensic practices focus mostly on that of disk forensics, while email forensics is left as an analysis task stemming from that practice. As there is no well-defined process to be used for email forensics the comprehensiveness, extensibility of tools, uniformity of evidence, usefulness in collaborative/distributed environments, and consistency of investigations are hindered. At present, there exists little support for discovering, acquiring, and representing web-based email, despite its widespread use. To remedy this, a systematic process which includes discovering, acquiring, and representing web-based email for email forensics which is integrated into the normal forensic analysis workflow, and which accommodates the distinct characteristics of email evidence will be presented. This process focuses on detecting the presence of non-obvious artifacts related to email accounts, retrieving the data from the service provider, and representing email in a well-structured format based on existing standards. As a result, developers and organizations can collaboratively create and use analysis tools that can analyze email evidence from any source in the same fashion and the examiner can access additional data relevant to their forensic cases. Following, an extensible framework implementing this novel process-driven approach has been implemented in an attempt to address the problems of comprehensiveness, extensibility, uniformity, collaboration/distribution, and consistency within forensic investigations involving email evidence.
ContributorsPaglierani, Justin W (Author) / Ahn, Gail-Joon (Thesis advisor) / Yau, Stephen S. (Committee member) / Santanam, Raghu T (Committee member) / Arizona State University (Publisher)
Created2013
Description
In order to catch the smartest criminals in the world, digital forensics examiners need a means of collaborating and sharing information with each other and outside experts that is not prohibitively difficult. However, standard operating procedures and the rules of evidence generally disallow the use of the collaboration software and techniques that are currently available because they do not fully adhere to the dictated procedures for the handling, analysis, and disclosure of items relating to cases. The aim of this work is to conceive and design a framework that provides a completely new architecture that 1) can perform fundamental functions that are common and necessary to forensic analyses, and 2) is structured such that it is possible to include collaboration-facilitating components without changing the way users interact with the system sans collaboration. This framework is called the Collaborative Forensic Framework (CUFF). CUFF is constructed from four main components: Cuff Link, Storage, Web Interface, and Analysis Block. With the Cuff Link acting as a mediator between components, CUFF is flexible in both the method of deployment and the technologies used in implementation. The details of a realization of CUFF are given, which uses a combination of Java, the Google Web Toolkit, Django with Apache for a RESTful web service, and an Ubuntu Enterprise Cloud using Eucalyptus. The functionality of CUFF's components is demonstrated by the integration of an acquisition script designed for Android OS-based mobile devices that use the YAFFS2 file system. While this work has obvious application to examination labs which work under the mandate of judicial or investigative bodies, security officers at any organization would benefit from the improved ability to cooperate in electronic discovery efforts and internal investigations.
ContributorsMabey, Michael Kent (Author) / Ahn, Gail-Joon (Thesis advisor) / Yau, Stephen S. (Committee member) / Huang, Dijiang (Committee member) / Arizona State University (Publisher)
Created2011
Description
Four Souvenirs for Violin and Piano was composed by Paul Schoenfeld (b.1947) in 1990 as a showpiece, spotlighting the virtuosity of both the violin and piano in equal measure. Each movement is a modern interpretation of a folk or popular genre, re- envisioned over intricate jazz harmonies and rhythms. The work was commissioned by violinist Lev Polyakin, who specifically requested some short pieces that could be performed in a local jazz establishment named Night Town in Cleveland, Ohio. The result is a work that is approximately fifteen minutes in length. Schoenfeld is a respected composer in the contemporary classical music community, whose Café Music (1986) for piano trio has recently become a staple of the standard chamber music repertoire. Many of his other works, however, remain in relative obscurity. It is the focus of this document to shed light on at least one other notable composition; Four Souvenirs for Violin and Piano. Among the topics to be discussed regarding this piece are a brief history behind the genesis of this composition, a structural summary of the entire work and each of its movements, and an appended practice guide based on interview and coaching sessions with the composer himself. With this project, I hope to provide a better understanding and appreciation of this work.
ContributorsJanczyk, Kristie Annette (Author) / Ryan, Russell (Thesis advisor) / Campbell, Andrew (Committee member) / Norton, Kay (Committee member) / Arizona State University (Publisher)
Created2015
Description
The Web is one of the most exciting and dynamic areas of development in today’s technology. However, with such activity, innovation, and ubiquity have come a set of new challenges for digital forensic examiners, making their jobs even more difficult. For examiners to become as effective with evidence from the Web as they currently are with more traditional evidence, they need (1) methods that guide them to know how to approach this new type of evidence and (2) tools that accommodate web environments’ unique characteristics.
In this dissertation, I present my research to alleviate the difficulties forensic examiners currently face with respect to evidence originating from web environments. First, I introduce a framework for web environment forensics, which elaborates on and addresses the key challenges examiners face and outlines a method for how to approach web-based evidence. Next, I describe my work to identify extensions installed on encrypted web thin clients using only a sound understanding of these systems’ inner workings and the metadata of the encrypted files. Finally, I discuss my approach to reconstructing the timeline of events on encrypted web thin clients by using service provider APIs as a proxy for directly analyzing the device. In each of these research areas, I also introduce structured formats that I customized to accommodate the unique features of the evidence sources while also facilitating tool interoperability and information sharing.
In this dissertation, I present my research to alleviate the difficulties forensic examiners currently face with respect to evidence originating from web environments. First, I introduce a framework for web environment forensics, which elaborates on and addresses the key challenges examiners face and outlines a method for how to approach web-based evidence. Next, I describe my work to identify extensions installed on encrypted web thin clients using only a sound understanding of these systems’ inner workings and the metadata of the encrypted files. Finally, I discuss my approach to reconstructing the timeline of events on encrypted web thin clients by using service provider APIs as a proxy for directly analyzing the device. In each of these research areas, I also introduce structured formats that I customized to accommodate the unique features of the evidence sources while also facilitating tool interoperability and information sharing.
ContributorsMabey, Michael Kent (Author) / Ahn, Gail-Joon (Thesis advisor) / Doupe, Adam (Thesis advisor) / Yau, Stephen S. (Committee member) / Lee, Joohyung (Committee member) / Zhao, Ziming (Committee member) / Arizona State University (Publisher)
Created2017
Description
Samuel Máynez Prince (1886-1966), was a prolific and important Mexican musician. Prince’s musical style followed the trends of the nineteenth-century salon music genre. His compositions include lullabies, songs, dances, marches, mazurkas, waltzes, and revolutionary anthems. Prince’s social status and performances in the famed Café Colón in Mexico City increased his popularity among high-ranking political figures during the time of the Mexican Revolution as well as his status in the Mexican music scene.
Unfortunately there is virtually no existing scholarship on Prince and even basic information regarding his life and works is not readily available. The lack of organization of the manuscript scores and the absence of dates of his works has further pushed the composer into obscurity. An investigation therefore was necessary in order to explore the neglected aspects of the life and works of Prince as a violinist and composer. This document is the result of such an investigation by including extensive new biographical information, as well as the first musical analysis and edition of the complete recovered works for violin and piano.
In order to fill the gaps present in the limited biographical information regarding Prince’s life, investigative research was conducted in Mexico City. Information was drawn from archives of the composer’s grandchildren, the Palacio de Bellas Artes, the Conservatorio Nacional de Música de México, and the Orquesta Sinfónica Nacional. The surviving relatives provided first-hand details on events in the composer’s life; one also offered the researcher access to their personal archive including, important life documents, photographs, programs from concert performances, and manuscript scores of the compositions. Establishing connections with the relatives also led the researcher to examining the violins owned and used by the late violinist/composer.
This oral history approach led to new and updated information, including the revival of previously unpublished music for violin and piano. These works are here compiled in an edition that will give students, teachers, and music-lovers access to this unknown repertoire. Finally, this research seeks to promote the beauty and nuances of Mexican salon music, and the complete works for violin and piano of Samuel Máynez Prince in particular.
Unfortunately there is virtually no existing scholarship on Prince and even basic information regarding his life and works is not readily available. The lack of organization of the manuscript scores and the absence of dates of his works has further pushed the composer into obscurity. An investigation therefore was necessary in order to explore the neglected aspects of the life and works of Prince as a violinist and composer. This document is the result of such an investigation by including extensive new biographical information, as well as the first musical analysis and edition of the complete recovered works for violin and piano.
In order to fill the gaps present in the limited biographical information regarding Prince’s life, investigative research was conducted in Mexico City. Information was drawn from archives of the composer’s grandchildren, the Palacio de Bellas Artes, the Conservatorio Nacional de Música de México, and the Orquesta Sinfónica Nacional. The surviving relatives provided first-hand details on events in the composer’s life; one also offered the researcher access to their personal archive including, important life documents, photographs, programs from concert performances, and manuscript scores of the compositions. Establishing connections with the relatives also led the researcher to examining the violins owned and used by the late violinist/composer.
This oral history approach led to new and updated information, including the revival of previously unpublished music for violin and piano. These works are here compiled in an edition that will give students, teachers, and music-lovers access to this unknown repertoire. Finally, this research seeks to promote the beauty and nuances of Mexican salon music, and the complete works for violin and piano of Samuel Máynez Prince in particular.
ContributorsEkenes, Spencer Arvin (Author) / McLin, Katherine (Thesis advisor) / Feisst, Sabine (Committee member) / Jiang, Danwen (Committee member) / Arizona State University (Publisher)
Created2016