Investigating America Online Instant Messaging Application: Data Remnants on Windows 8.1 Client Machine
نویسندگان
چکیده
Instant messaging applications (apps) are one potential source of evidence in a criminal investigation or a civil litigation. To ensure the most effective collection of evidence, it is vital for forensic practitioners to possess an up-to-date knowledge about artefacts of forensic interest from various instant messaging apps. Hence, in this chapter, we study America Online Instant Messenger (version 7.14.5.8) with the aims of contributing to an in-depth understanding of the types of terrestrial artefacts that are likely to remain after the use of instant messaging services and app on Windows 8.1 devices. Potential artefacts identified during the research include data relating to the installation or uninstallation, log-in and log-off information, contact lists, conversations, and transferred files.
منابع مشابه
Windows Instant Messaging App Forensics: Facebook and Skype as Case Studies
Instant messaging (IM) has changed the way people communicate with each other. However, the interactive and instant nature of these applications (apps) made them an attractive choice for malicious cyber activities such as phishing. The forensic examination of IM apps for modern Windows 8.1 (or later) has been largely unexplored, as the platform is relatively new. In this paper, we seek to deter...
متن کاملForensic Analysis of Volatile Instant Messaging
Older instant messaging programs typically require some form of installation on the client machine, enabling forensic investigators to find a wealth of evidentiary artifacts. However, this paradigm is shifting as web-based instant messaging becomes more popular. Many traditional messaging clients (e.g., AOL Messenger, Yahoo! and MSN), can now be accessed using only a web browser. This presents ...
متن کاملAnalysis of Evidence in Cloud Storage Client Applications on the Windows Platform
In the research proposed in this paper, we present an approach to conduct a simple forensic analysis of cloud client storage applications on a Windows 8.1 virtual machine, in order to find possible traces left on the system that indicate the use of the cloud storage client applications even after the application is deleted. Our analysis focuses on the locations where evidence can be gathered an...
متن کاملDesign and Implementation of a Secure Instant Messaging Service based on Elliptic-Curve Cryptography
Instant Messaging (IM) is a useful communication and work collaboration tool between individuals, groups, or enterprises. Unfortunately, most IM systems lack the needed security mechanism capable of ensuring the secure communications of IM client-client and IM client-server. In order to find a solution to secure IM communications, we designed and implemented a Secure Instant Messaging and Prese...
متن کاملA Method for Detecting and Blocking Instant Messaging Software
Instant messaging software, as a convenient network communication tool, is becoming more and more popular. At the same time, it also brings risks in security of local area network (LAN). Through studying in typical instant messaging software and detected by the combination of misuse detection and protocol analysis, an architecture of detecting and blocking mechanism of instant messaging softwar...
متن کاملذخیره در منابع من
با ذخیره ی این منبع در منابع من، دسترسی به آن را برای استفاده های بعدی آسان تر کنید
عنوان ژورنال:
- CoRR
دوره abs/1706.08879 شماره
صفحات -
تاریخ انتشار 2017