University of Surrey

Test tubes in the lab Research in the ATI Dance Research

Architecture and design of process based framework for mobile forensics (PBFMF).

Al Tawqi, Masoud (2018) Architecture and design of process based framework for mobile forensics (PBFMF). Doctoral thesis, University of Surrey.

[img]
Preview
Text
ThesisFinal.pdf - Version of Record
Available under License Creative Commons Attribution Non-commercial Share Alike.

Download (6MB) | Preview

Abstract

Over the last two decades, the world has witnessed a vast increase in smart phones devices usage, where mobile phone devices have become an integral part of our daily routine. As a result, this has created security issues and lead to an increased dependency on smartphone usage, criminal activities and/or illegal practices. This increase in crimes committed by or via smartphones has made it a necessity for digital forensics experts to come up with reliable tools that can be used to help in extracting data from those smart phones. Currently mobile forensics work is fragmented and although attempts have been made to develop conceptual frameworks for mobile devices in the past few years, there is however, no common framework adopted to date that meets the needs of the ever changing and expanding world of mobile devices. A comprehensive survey of mobile forensics frameworks in this research revealed that current frameworks tend to focus on targeting specific operating systems, responding to specific issues, or use complicated steps that make it difficult for users to follow. Some are also based on desktop and non-mobile device models. Also, tools analysis was carried out benefitting from NIST guidelines, where areas in which each tool should be tested and how the test should be conducted are specified. The results of the Tools Analysis were not encouraging, and quite surprising that many challenges that existed at the advent of the mobile devices have not been solved. Without the existence of a generalized Process Based Framework for Mobile Forensics (PBFMF) to provide the appropriate guidelines, steps and procedures to be followed during the digital forensic phases, it will not be as simple as it might appear to extract data in an appropriate way from smart-phones even with the utilisation of the most popular tools. Based on the research and analysis in this thesis, it was clear that there is a need for a set of effective methods to ensure that extracted and examined information from mobile phones devices are not tampered with, accepted by a court of law, or can be relied upon as an undisputed means of proving that something has or has not taken place. A new PBFMF that is platform independent, open architecture, extensible and capable of integrating newer mobile device technologies is presented in this thesis. It formulates a better understanding of the barriers to using forensics tools effectively and appropriately. Key words: Processed Base Framework, Mobile Forensics Tools, Digital Forensics, Operating Systems, Smart Phones.

Item Type: Thesis (Doctoral)
Divisions : Theses
Authors :
NameEmailORCID
Al Tawqi, Masoud
Date : 28 February 2018
Funders : None
Contributors :
ContributionNameEmailORCID
http://www.loc.gov/loc.terms/relators/THSCruickshank, HaithamH.Cruickshank@surrey.ac.uk
http://www.loc.gov/loc.terms/relators/THSSun, ZhiliZ.Sun@surrey.ac.uk
Depositing User : Masoud Al Tawqi
Date Deposited : 05 Mar 2018 10:04
Last Modified : 05 Mar 2018 10:04
URI: http://epubs.surrey.ac.uk/id/eprint/845660

Actions (login required)

View Item View Item

Downloads

Downloads per month over past year


Information about this web site

© The University of Surrey, Guildford, Surrey, GU2 7XH, United Kingdom.
+44 (0)1483 300800