ZDNet UK


Skip to Main Content

ZDNet.co.uk - Winner of Best Business Website 2007
  1. Home
  2. News
  3. Blogs
  4. Reviews
  5. Prices
  6. Resources
  7. Community
  8. My ZDNet

 

ZDNet UK RSS Feeds


IT Jobs

Security threats Toolkit

Linux tool speeds up police computer forensics

Liam Tung ZDNet Australia

Published: 06 Mar 2008 12:36 GMT

  • Email
  • Trackback
  • Clip Link
  • Print friendly
  • Post Comment

Australian university students have developed a Linux-based data-forensics tool to help police churn through a growing backlog of computer-related criminal investigations.

The tool, developed by students at the School of Computing and Information Sciences at Edith Cowan University (ECU), will help the Western Australian Police Computer Crime Squad process their forensic investigations.

Called Simple (Simple Image Preview Live Environment), the software allows investigators to view and acquire forensic data at the scene of the crime without compromising the integrity of data as it is collected.

"It's a Linux Live CD that we have built from the ground up. We customised the kernel and the underlying operating system so that, when it runs, it's incapable of writing to the hard disk or any other storage," Peter Hannay, the software developer behind the forensic acquisition tool, told ZDNet.com.au.

The operating system has had some features removed so that investigators can view data without affecting the host machine.

"We stripped out a large amount of functionality because we want to maintain the integrity of data collected, so we removed all network support and the ability to write to disk. Also, if for some reason a disk is writeable, the system will halt automatically," Hannay said.

"Our software will launch on top of the operating system, and will interrogate the hard disk, locate all the images on system and then present those to the operator," Hannay added.

Read this

PSCS3
Photos: The Linux car that drives itself

At CeBIT 2008, Darpa Grand Challenge finalist Caroline was on show — a car that doesn't need a driver...

Read more +

Simple searches the system for specific file types, such as MPEG or JPEG files, saving time on the often lengthy search process.

Hoping to achieve even greater automation during the collection of evidence, Simple will soon be equipped with skin-tone analysis capabilities to help detect relevant files.

The idea for the tool first originated when the Western Australia Police approached the university in 2006 because its investigators could not handle the amount of computer forensic data requests, which relate mostly to child pornography and bestiality.

Normally police need to take PCs back to the station to begin acquiring forensic data but, with this tool, according to Hannay, police will be able to collect the data on the spot.

Credit: Linux speeds up computer forensics for cops from ZDNet Australia

  • Email
  • Trackback
  • Clip Link
  • Print friendly Print with HP

Did you find this article useful?
4 out of 4 people found this useful


Talkback

Post a comment


Full Talkback thread

0 comments

Related Links

More In Security threats


Company/Topic Alerts

Create a new alert from the list below:





Related Jobs

C++ SOFTWARE DEVELOPMENT - Western Tyneside

Computer Futures Solutions are currently seeking an additional Software Engineer to join our client's team based in the North East. This is your ...

Data Integrity Support Administrator S28990

Purpose of Job - Provide a central support function to the client's shops and Foreign Exchange bureau by means of carrying out detailed ...

S38188: Data Support Analyst

This will involve monitoring system interfaces; re-cycling of errors; clearance of suspense accounts; carrying out investigations; making adjustments ...

Featured Oracle Resources

businessfirst: Ideas to help small companies retain their successful entrepreneurial spirit

Oracle ONE Magazine: Technology solutions for midsized businesses February 2008 edition

Choosing a Reliable and Powerful IT Infrastructure at a Price You Can Afford

Database Consolidation: Reducing Cost and Complexity

Ensuring Data Protection for Growing Business

Oracle for medium and emerging businesses: protect, strengthen and enhance your organisation

Oracle partner network solutions catalogue

See All White Papers

Sentry Posts Blog

Mobile Linux Better For Mobile Busines...

Mobile Linux Better For Mobile Business Apps? Author: Eric Everson, MyMobiSafe.com As mobile Linux is carving it’s footprint on the future of mobile application development, the... More

Post a comment

DWP downplays security breach

The Department for Work and Pensions (DWP) has admitted that some of its staff have been forwarding passwords with password protected material. An email that was leaked on the 'Dizzy... More

Post a comment

How many headshots does one chairperso...

We got a strange request last week from the head of PR from Russian security experts Kaspersky. It seems although the company was very happy with the interview we recently carried with... More

Post a comment

Featured Talkback

On the contrary, if vendors were forced to stand behind their products it should increase innovation. It would force more, and better , testing before hitting the sales floor, resulting in fewer updates and less downtime for the consumer. At present the EULA removes responsibility from the vendor, and moves it to the user, which is a step backward. Make the vendor responsibility for their code.

By: ator1940

Read full story:
RSA: Vendor liability may stifle innovation