基于Web浏览器活动的犯罪分析和证据采集Criminal analysis and evidence collection based on Web browser activity
徐伟
摘要(Abstract):
随着互联网用户日益增长,与互联网相关的犯罪也在逐步增加。越来越多的刑事和民事案件可能基于从用户互联网活动收集证据,因此Web浏览器取证成为了计算机取证的主要部分。犯罪分子使用网络浏览器收集或查询新的犯罪手段信息,以掩盖其犯罪行为。但每当使用网络浏览器时,犯罪分子均会留下痕迹,浏览器历史记录、临时文件、index.dat、Cookies、下载文件、未分配的空间和缓存等,均成为了证据存在的可能线索。文中系统研究了用于Web浏览器分析的主要工具,并通过对比这些工具的性能,分析各自优点与局限性,提出一种犯罪数据收集算法,为提高证据采集效率提供了参考。
关键词(KeyWords): 数字犯罪;浏览器取证;证据采集;隐私浏览;犯罪手段;犯罪数据收集算法
基金项目(Foundation): 国家自然科学基金(61372071)~~
作者(Author): 徐伟
DOI: 10.16652/j.issn.1004-373x.2018.08.023
参考文献(References):
- [1]GEDDES M,ZADEH P B.Forensic analysis of private browsing[C]//Proceedings of International Conference on Cyber Security and Protection of Digital Services.[S.l.:s.n.],2016:1-2.
- [2]JANG Y,JIN K.Digital forensics investigation methodology applicable for social network services[J].Multimedia tools and applications,2015,74(14):5029-5040.
- [3]RAJ R,MALHOTRA D K.Forensic investigation for Web forgery through Java script obfuscation[J].International journal of computer security&source code analysis,2015,1(1):5-8.
- [4]颜菲.折叠式内容可关联的浏览器设计与实现[J].现代电子技术,2016,39(10):69-72.YAN Fei.Design and implementation of folding content-associated browser[J].Modern electronics technique,2016,39(10):69-72.
- [5]Joseph N,SUNNY S,DIJA S,et al.Volatile Internet evidence extraction from Windows systems[C]//Proceedings of IEEE International Conference on Computational Intelligence and Computing Research.Coimbatore:IEEE,2015:1-5.
- [6]AKBAL E,GüNES F,AKBAL A.Digital forensic analyses of Web browser records[J].Journal of software,2016,11(7):631-637.
- [7]MARTINI B,CHOO K K R.Cloud forensic technical challenges and solutions:a snapshot[J].IEEE cloud computing,2015,1(4):20-25.
- [8]FLOWERS C,MANSOUR A,AL-KHATEEB H M.Web browser artefacts in private and portable modes:a forensic investigation[J].International Journal of electronic security and digital forensics,2016,8(2):99-117.
- [9]牛连强,宋强,张胜男.基于Java3D的X-VRML虚拟场景解析器模型[J].沈阳工业大学学报,2009,31(4):445-449.NIU Lianqiang,SONG Qiang,ZHANG Shengnan.Model of XVRML virtual scene parser based on Java3D[J].Journal of Shenyang University of Technology,2009,31(4):445-449.