Scenario-based Data Set Generation for Use in Digital Forensics: A Case Study
| dc.contributor.author | Göbel, Thomas | |
| dc.contributor.author | Baier, Harald | |
| dc.contributor.author | Wolf, Dennis | |
| dc.contributor.editor | Klein, Maike | |
| dc.contributor.editor | Krupka, Daniel | |
| dc.contributor.editor | Winter, Cornelia | |
| dc.contributor.editor | Gergeleit, Martin | |
| dc.contributor.editor | Martin, Ludger | |
| dc.date.accessioned | 2024-10-21T18:24:24Z | |
| dc.date.available | 2024-10-21T18:24:24Z | |
| dc.date.issued | 2024 | |
| dc.description.abstract | Digital forensics is a rapidly growing and highly relevant field of cybersecurity. In case of an incident, the subsequent digital forensic investigation and analysis shall reveal the respective digital evidence. However, although electronic devices and their data play a central role in each crime investigation, data sets to train experts or to validate tools are sparse. While manual data set generation is a time-consuming, elaborate and error-prone task, tool-based data synthesis is an excellent candidate for simplifying data generation and solving the data set gap problem. Synthetic data sets can be used, for example, to test and refine forensic tools and methods under controlled conditions. In addition, entirely new approaches can be explored. Several promising data synthesis frameworks for digital forensic data set creation have been published lately, the most recent of which is ForTrace, a freely available, community-driven data synthesis framework written in Python for generating digital forensic data sets. This paper shows how to apply ForTrace in a large-scale manner without human interaction. Our main goal is to show the usability of ForTrace and demonstrate its practicality and benefits for the digital forensic domain. We therefore provide a sample usage of ForTrace in two scenarios, namely a VeraCrypt and a malware use case, and present the definition of the corresponding configurations. | en |
| dc.identifier.doi | 10.18420/inf2024_25 | |
| dc.identifier.isbn | 978-3-88579-746-3 | |
| dc.identifier.pissn | 1617-5468 | |
| dc.identifier.uri | https://dl.gi.de/handle/20.500.12116/45183 | |
| dc.language.iso | en | |
| dc.publisher | Gesellschaft für Informatik e.V. | |
| dc.relation.ispartof | INFORMATIK 2024 | |
| dc.relation.ispartofseries | Lecture Notes in Informatics (LNI) - Proceedings, Volume P-352 | |
| dc.subject | Digital forensic data set | |
| dc.subject | Digital corpora | |
| dc.subject | Synthetic data | |
| dc.subject | Ground truth data | |
| dc.subject | Labeled data set | |
| dc.subject | Data set generation | |
| dc.subject | Data set creation | |
| dc.subject | Data synthesis framework | |
| dc.subject | ForTrace | |
| dc.title | Scenario-based Data Set Generation for Use in Digital Forensics: A Case Study | en |
| dc.type | Text/Conference Paper | |
| gi.citation.endPage | 370 | |
| gi.citation.publisherPlace | Bonn | |
| gi.citation.startPage | 355 | |
| gi.conference.date | 24.-26. September 2024 | |
| gi.conference.location | Wiesbaden | |
| gi.conference.sessiontitle | 4. International Workshop on Digital Forensics (IWDF4) |
Dateien
Originalbündel
1 - 1 von 1
Vorschaubild nicht verfügbar
- Name:
- Goebel_et_al_Scenario_based_Data_Set_Generation.pdf
- Größe:
- 3.7 MB
- Format:
- Adobe Portable Document Format