With the participation of the President of Al-Nahrain University, Prof. Dr.Muhammad Saheb Mahdi as Chairman of the Committee, an MSc discussion took place today, Monday 10/8/2020, master’s student in the Department of Information and Communication Engineering, “Sherine Maksd Abed,” defended her thesis entitled:
“DIGITAL FORENSIC INVESTIGATION USING CHAIN OF CUSTODY AND ORDER OF VOLATILITY”
The discussion committee included:
Prof.Dr. Muhammad Sahib Mahdi / Nahrain University / University Presidency / Chairman.
Assistant Prof.Dr. Imad Shahab Ahmed / University of Technology / College of Engineering / Member.
Assistant Prof.Dr. Abdul-Karim Merhej Radi / Al-Nahrain University / College of Science / member.
Prof. Bayan Mahdi Sabbar / College of Information Engineering / Member and Supervisor.
At the end of the session, the thesis was accepted with minor corrections within a period of one month.
Abstract :
The environment of the Information and Communications Technology (ICT) is a rapidly growing field and become an integral part of our daily basis. So, the offenders start to use computer systems and digital channels to commit crimes. This transformation of crime requires criminal justice actors to investigate, produce, and present digital evidence throughout a process that is scientifically proven and legally admissible, as well as capable of securing successful prosecutions.
Digital forensics has expanded significantly towards prosecuting such criminals. The vast of information (data) and fast technological growth have contributed to making simple investigations rather cumbersome. A number of digital forensic process models in the digital forensics community have been proposed involving a complete methodology for an investigation. So, a software developer has also greatly contributed to the development of digital forensics tools and methodology. These developments have resulted in divergent views on digital forensic investigations. This thesis presents the Digital Forensic Investigation Process Model Framework for the Republic of Iraq (DFIPMFRI). The model is presented after examining digital forensic process models within the current academic and law enforcement literature. An adapted sequential logic notation is used to represent the forensic models. The terminology used in the various models is examined and standardized (ISO) to suit the DFIPMFRI. Also, this thesis has designed and built a software application for the proposed framework to keep the integrity and admissibility of the digital evidence in the court and justiciaries. The proposed software uses different methods to keep digital evidence integrity by using a hash method, watermarking, extracting metadata in addition to use the barcode. Furthermore, two users (officer and investigator) with different authorizations are responsible for manage the application. The application can work on single-mode and network mode. Finally, this thesis proposed a new method “Fast Rotation and Scaling Invariant Forgery Objects Detection Algorithm (FR-SIFODA) in image forgery detection, in which it can detect the forgery in digital images in low computation time with more quality, that is considered as a most important step in forensics investigation.
The experimental results illustrate that the proposed algorithm can detect a forgery in images containing copy-move objects with different types of transformation (rotation, scaling, and combined transformation). In addition, calculate F-score and quality for each detected image. This proposed method can detect CMF in low computational time better than other methods for all the tested images, also reduces the false positive for different images in the dataset. Furthermore, this method makes a valuable contribution to the field of multimedia forensics because it presents a new method for detecting the forgery in digital evidence.