Abstract
Types of logs, such as cache, history, cookie and downloads list, are created by a web browser. Digital forensic investigators analyze these logs and obtain useful information related to cases. In fact, most of the existing tools simply parse log files. As a result, investigators have to classify and analyze log data at firsthand in the process of digital forensic investigation. In particular, in the case of massive data, they should spend enormous time analyzing the data. Therefore, in this paper, with parsed information on cache, history, cookie and download list, we propose data classification and timeline visualization method to improve analysis in efficient way for reducing investigation time and work. Also, ”WEFA”, a developed tool based on the research work, is to be introduced.
This work was supported by the IT R&D program of MKE/KEIT 10035157, Development of Digital Forensic Technologies for Real-Time Analysis.
This is a preview of subscription content, log in via an institution.
Buying options
Tax calculation will be finalised at checkout
Purchases are for personal use only
Learn about institutional subscriptionsPreview
Unable to display preview. Download preview PDF.
References
Jones, K.J.: Forensic Analysis of Internet Explorer Activity Files. Foundstone (2003), http://www.foundstone.com/us/pdf/wp_index_dat.pdf
Pereira, M.T.: Forensic analysis of the Firefox3 Internet history and recovery of deleted SQLite records. Digital Investigation 5, 93–103 (2009)
Browser Forensics, Forensic Analysis of Microsoft Internet Explorer Disk Cache, http://www.browserforensics.com/?p=32
Facebook Graph API, https://developers.facebook.com/docs/reference/api/
Berners-Lee, T., Masinter, L.: RFC 1738: Uniform Resource Locator, http://tools.ietf.org/html/rfc1738
Nelson, J.S.: Google Analytics Cookies and the Forensic Implications, http://www.dfinews.com/article/google-analytics-cookies-and-forensic-implications?page=0,6
Oh, J.: Advanced Evidence Collection and Analysis of Web Browser Activity. In: DFRWS (2011), http://www.dfrws.org/2011/proceedings/12-344.pdf
Author information
Authors and Affiliations
Editor information
Editors and Affiliations
Rights and permissions
Copyright information
© 2012 Springer-Verlag Berlin Heidelberg
About this paper
Cite this paper
Oh, J., Son, N., Lee, S., Lee, K. (2012). A Study for Classification of Web Browser Log and Timeline Visualization. In: Lee, D.H., Yung, M. (eds) Information Security Applications. WISA 2012. Lecture Notes in Computer Science, vol 7690. Springer, Berlin, Heidelberg. https://doi.org/10.1007/978-3-642-35416-8_14
Download citation
DOI: https://doi.org/10.1007/978-3-642-35416-8_14
Publisher Name: Springer, Berlin, Heidelberg
Print ISBN: 978-3-642-35415-1
Online ISBN: 978-3-642-35416-8
eBook Packages: Computer ScienceComputer Science (R0)