| Title |
Methods and tools of digital triage in forensic context: survey and future directions / |
| Authors |
Jusas, Vacius ; Birvinskas, Darius ; Gahramanov, Elvar |
| DOI |
10.3390/sym9040049 |
| Full Text |
|
| Is Part of |
Symmetry.. Basel : MDPI. 2017, vol. 9, iss. 4, art. no. 49, p. 1-19.. ISSN 2073-8994 |
| Keywords [eng] |
digital forensic ; digital triage ; live triage ; post‐mortem triage ; triage tools |
| Abstract [eng] |
Digital triage is the first investigative step of the forensic examination. The digital triage comes in two forms, live triage and post‐mortem triage. The primary goal of the live triage is a rapid extraction of an intelligence from the potential sources. The live triage raises legitimate concerns. The post‐mortem triage is conducted in the laboratory and its main goal is ranking of the seized devices for the possible existence of the relevant evidence. The digital triage has the potential to quickly identify items that are likely to contain the evidential data. Therefore, it is a solution to the problem of case backlogs. However, existing methods and tools of the digital triage have limitations, especially, in the forensic context. Nevertheless, we have no better solution for the time being. In this paper, we critically review published research works and the proposed solutions for digital triage. The review is divided into four sections as follows: live triage, post‐mortem triage, mobile device triage, and triage tools. We conclude that many challenges are awaiting for the developers in creating methods and tools of digital triage in order to keep pace with the development of new technologies. |
| Published |
Basel : MDPI |
| Type |
Journal article |
| Language |
English |
| Publication date |
2017 |
| CC license |
|
