TY - GEN
T1 - Towards an Open-Source Based E-Mail Forensic Tool that uses Headers in Digital Investigation
AU - Adeopatoye, Remilekun
AU - Ikuesan, Richard Adeyemi
AU - Sookhak, Mehdi
AU - Hungwe, Taurai
AU - Kebande, Victor
N1 - Publisher Copyright:
© 2023 ACM.
PY - 2023/5/24
Y1 - 2023/5/24
N2 - Email-related incidents/crimes are on the rise owing to the fact that communication by electronic mail (e-mail) has become an important part of our daily lives. The technicality behind e-mail plays an important role when looking for digital evidence that can be used to create a hypothesis that can be used during litigation. During this process, it is needful to have a tool that can help to isolate email incidents as a potential crime scene in the wake of suspected attacks. The problem that this paper is addressing paper, is more centered on realizing an open-source email-forensic tool that used the header analysis approach. One advantage of this approach is that it helps investigators to collect digital evidence from e-mail systems, organize the collected data, analyze and discover any discrepancies in the header fields of an e-mail, and generates an evidence report. The main contribution of this paper focuses on generating a freshly computed hash that is attached to every generated report, to ensure the verifiability, reliability, and integrity of the reports to prove that they have not been modified in any way. Finally, this ensures that the sanctity and forensic soundness of the collected evidence are maintained.
AB - Email-related incidents/crimes are on the rise owing to the fact that communication by electronic mail (e-mail) has become an important part of our daily lives. The technicality behind e-mail plays an important role when looking for digital evidence that can be used to create a hypothesis that can be used during litigation. During this process, it is needful to have a tool that can help to isolate email incidents as a potential crime scene in the wake of suspected attacks. The problem that this paper is addressing paper, is more centered on realizing an open-source email-forensic tool that used the header analysis approach. One advantage of this approach is that it helps investigators to collect digital evidence from e-mail systems, organize the collected data, analyze and discover any discrepancies in the header fields of an e-mail, and generates an evidence report. The main contribution of this paper focuses on generating a freshly computed hash that is attached to every generated report, to ensure the verifiability, reliability, and integrity of the reports to prove that they have not been modified in any way. Finally, this ensures that the sanctity and forensic soundness of the collected evidence are maintained.
KW - Digital
KW - E-mail
KW - Forensics
KW - Investigation
KW - Open-Source
UR - http://www.scopus.com/inward/record.url?scp=85180127340&partnerID=8YFLogxK
U2 - 10.1145/3607720.3607739
DO - 10.1145/3607720.3607739
M3 - Conference contribution
AN - SCOPUS:85180127340
T3 - ACM International Conference Proceeding Series
BT - Proceedings of 2023 6th International Conference on Networking, Intelligent Systems and Security, NISS 2023
PB - Association for Computing Machinery
T2 - 6th International Conference on Networking, Intelligent Systems and Security, NISS 2023
Y2 - 24 May 2023 through 26 May 2023
ER -