Enhancing Digital Forensic Model Using Desktop Virtualization

Thumbnail Image
MAY 2016
Journal Title
Journal ISSN
Volume Title
The internet and advanced technologies have been used as tools by criminals these days to perpetrate diverse forms of crime and the digital world is exploited to facilitate crimes which are mostly technology driven. The evidence of such crimes which are technologically driven are in digital form hence the need to employ techniques, procedures, and methodologies that are technology inclined to reconstruct events and uncover evidence that are admissible in court. Digital forensics therefore provides the investigative techniques, scientifically derived and proven methods for preserving, collecting, validating, identifying, analyzing, interpreting and presenting admissible digital evidence derived from digital source(s). The development of several forensics investigation models by digital forensic researchers are designed to provide a well-tailored, accurate and efficient means of acquiring, authenticating and analyzing digital evidence while ensuring the integrity and sanctity of the evidence to make it admissible in court of law. However, these models are not without some inherent shortfalls whilst majority of them seems not to cater for investigation processes or activities done on the virtual environment. Virtualization is a proven software technology that is rapidly transforming the hosting landscape and fundamentally changing the way that businesses compute. In this research, some digital forensic process models were reviewed, digital forensic investigative platform setup up on a virtual desktop environment to allow digital forensics investigations to be conducted on the virtual environment. The results of this implementations were recorded, analyzed and used to improve a digital forensic investigation process model.
A thesis submitted to the Department of Computer Science,Kwame Nkrumah University of Science and Technology in partial fulfillment of the requirement for the Degree of Master of Philosophy in Computer Science,