Ftklipse - Design and Implementation of an Extendable Computer Forensics Environment: Software Requirements Specification Document
Marc-Andr\'e Laverdi\`ere, Serguei A. Mokhov, Suhasini Tsapa, and, Djamel Benredjem
TL;DR
This paper details the specifications of Ftklipse, an extendable, Eclipse-based platform for computer forensics that supports evidence management, analysis, reporting, and customizable investigation tools.
Contribution
It introduces a detailed software requirements specification for an extendable forensics environment with features for evidence handling and analysis.
Findings
Supports chain of custody management
Enables configurable and batch operations
Facilitates evidence collection and reporting
Abstract
The purpose behind this article is to describe the features of Ftklipse, an extendable platform for computer forensics. This document designed to provide a detailed specification for the developers of Ftklipse. Ftklipse is a thick-client solution for forensics investigation. It is designed to collect and preserve evidence, to analyze it and to report on it. It supports chain of custody management, access control policies, and batch operation of its included tools in order to facilitate and accelerate the investigation. The environment itself and its tools are configurable as well and is based on Eclipse.
Peer Reviews
No public reviews on file for this paper yet. If you reviewed it on a platform where reviews are public (OpenReview, ICLR, NeurIPS, ICML), you can paste yours below so the community can read it here.
Videos
No videos yet. Explain this paper in a talk, walkthrough, or lecture? Add one.
Taxonomy
TopicsDigital and Cyber Forensics · Advanced Malware Detection Techniques · Privacy, Security, and Data Protection