Review and Assessment of the Existing Digital Forensic Investigation Process Models

Research output: Contribution to journalArticle

Abstract

This review paper assesses the existing body of knowledge associated with digital forensic investigation process models. To this end, eleven of the existing models are critically reviewed and evaluated against an assessment criteria, namely the Daubert Test, to determine which models have taken the most scientific approach. This review and assessment reveal that the authors of these models have developed their models based on their own personal experience and on an ad-hoc basis. The critical review and assessment also reveal that there does not exist a comprehensive model encompassing the entire digital investigative process that is formal in that it synthesizes, harmonizes and extends the previous models, and that is generic in that it can be applied in the different fields of law enforcement, commerce and incident response.
Original languageEnglish
Pages (from-to)41-49
Number of pages9
JournalInternational Journal of Computer Applications
Volume147
Issue number7
DOIs
Publication statusPublished - 1 Aug 2016
Externally publishedYes

Fingerprint

assessment criteria
law enforcement
commerce
incident
experience

Cite this

@article{fbee1841dd254273a58f57e5a4cbe4b0,
title = "Review and Assessment of the Existing Digital Forensic Investigation Process Models",
abstract = "This review paper assesses the existing body of knowledge associated with digital forensic investigation process models. To this end, eleven of the existing models are critically reviewed and evaluated against an assessment criteria, namely the Daubert Test, to determine which models have taken the most scientific approach. This review and assessment reveal that the authors of these models have developed their models based on their own personal experience and on an ad-hoc basis. The critical review and assessment also reveal that there does not exist a comprehensive model encompassing the entire digital investigative process that is formal in that it synthesizes, harmonizes and extends the previous models, and that is generic in that it can be applied in the different fields of law enforcement, commerce and incident response.",
keywords = "digital investigations, process models, Daubert test, digital forensics",
author = "Reza Montasari",
year = "2016",
month = "8",
day = "1",
doi = "10.5120/ijca2016911194",
language = "English",
volume = "147",
pages = "41--49",
journal = "International Journal of Computer Applications",
number = "7",

}

Review and Assessment of the Existing Digital Forensic Investigation Process Models. / Montasari, Reza.

In: International Journal of Computer Applications, Vol. 147, No. 7, 01.08.2016, p. 41-49.

Research output: Contribution to journalArticle

TY - JOUR

T1 - Review and Assessment of the Existing Digital Forensic Investigation Process Models

AU - Montasari, Reza

PY - 2016/8/1

Y1 - 2016/8/1

N2 - This review paper assesses the existing body of knowledge associated with digital forensic investigation process models. To this end, eleven of the existing models are critically reviewed and evaluated against an assessment criteria, namely the Daubert Test, to determine which models have taken the most scientific approach. This review and assessment reveal that the authors of these models have developed their models based on their own personal experience and on an ad-hoc basis. The critical review and assessment also reveal that there does not exist a comprehensive model encompassing the entire digital investigative process that is formal in that it synthesizes, harmonizes and extends the previous models, and that is generic in that it can be applied in the different fields of law enforcement, commerce and incident response.

AB - This review paper assesses the existing body of knowledge associated with digital forensic investigation process models. To this end, eleven of the existing models are critically reviewed and evaluated against an assessment criteria, namely the Daubert Test, to determine which models have taken the most scientific approach. This review and assessment reveal that the authors of these models have developed their models based on their own personal experience and on an ad-hoc basis. The critical review and assessment also reveal that there does not exist a comprehensive model encompassing the entire digital investigative process that is formal in that it synthesizes, harmonizes and extends the previous models, and that is generic in that it can be applied in the different fields of law enforcement, commerce and incident response.

KW - digital investigations

KW - process models

KW - Daubert test

KW - digital forensics

U2 - 10.5120/ijca2016911194

DO - 10.5120/ijca2016911194

M3 - Article

VL - 147

SP - 41

EP - 49

JO - International Journal of Computer Applications

JF - International Journal of Computer Applications

IS - 7

ER -