|
Title:
|
AN EFFECTIVENESS ASSESSMENT OF A KNOWLEDGE-BASED SYSTEM FOR SUPPORTING THE SOUNDNESS OF DIGITAL FORENSIC INVESTIGATIONS |
|
Author(s):
|
Milica Matijevic Gostojic, Jelena Slivka, Zeljko Vukovic and Stevan Gostojic |
|
ISBN:
|
978-989-8704-62 |
|
Editors:
|
Paula Miranda and Pedro IsaĆas |
|
Year:
|
2024 |
|
Edition:
|
Single |
|
Keywords:
|
Digital Forensics, Evidence Admissibility, Knowledge Representation, Evaluation |
|
Type:
|
Short |
|
First Page:
|
372 |
|
Last Page:
|
376 |
|
Language:
|
English |
|
Cover:
|
|
|
Full Contents:
|
click to dowload 
|
|
Paper Abstract:
|
This paper presents the results of evaluating a knowledge-based system designed to support the soundness of digital
forensic investigations. The system's knowledge base formally specifies information about investigative procedures in
accordance with standards and guidelines such as ISO/IEC 27037, ISO/IEC 27041, ISO/IEC 27042, ISO/IEC 27043,
NIST's Guide to Integrating Forensic Techniques into Incident Response, and Interpol's Guidelines for Digital Forensics
First Responders. The study assesses the effectiveness of the knowledge-based system in supporting digital forensic
investigators, focusing specifically on various phases of the investigation. The evaluation was conducted through a
randomized controlled trial involving 60 students from an Introduction to Digital Forensics course. Students were divided
into experimental and control groups, with both groups performing identical tasks. The experimental group utilized the
proposed system to complete these tasks. Our findings indicate that the application effectively supports the identification,
collection, and examination phases but is less effective during the analysis phase. The novelty of our study lies in its
empirical approach, which evaluates the forensic knowledge base tool by measuring its usefulness across specific
investigative phases. |
|
|
|
|
|
|
