Protecting Digital Evidence Integrity by Using Smart Cards
نویسندگان
چکیده
RFC 3227 provides general guidelines for digital evidence collection and archiving, while the International Organization on Computer Evidence offers guidelines for best practice in the digital forensic examination. In the light of these guidelines we will analyze integrity protection mechanism provided by EnCase and FTK which is mainly based on Message Digest Codes (MDCs). MDCs for integrity protection are not tamper proof, hence they can be forged. With the proposed model for protecting digital evidence integrity by using smart cards (PIDESC) that establishes a secure platform for digitally signing the MDC (in general for a whole range of cryptographic services) in combination with Public Key Cryptography (PKC), one can show that this weakness might be
منابع مشابه
Designing a Secure Smart Card Operating System
The ever-increasing computational power of smart cards has made them feasible for applications like electronic passports and military id cards. However, these applications require a secure smart card operating system. In this paper we argue that smart card platforms pose additional security challenges than traditional computer platforms. We discuss our design for a secure smart card operating s...
متن کاملSecuring the Network Client∗
We enumerate and compare a number of security-enabling architectures for network clients. These architectures, either proposed as methodologies or currently implemented in software and/or hardware, are capable of protecting the client’s software integrity and its environment. The most important methodologies include the reference monitor model, firewalls and virtual machines. Software implement...
متن کاملMonetary Transactions in E-commerce Using Smart Cards
For years now, there has been a lot of excitement about using digital cash for purchases of goods and services. In fact, studies in Briton indicate that two out of every three individuals would rather carry one card for every purchase as opposed to carrying cash (9). Additionally, there is tremendous interest in using digital cash for purchases via the World Wide Web instead of other common tra...
متن کاملSmartPro: A Smart Card Based Digital Content Protection for Professional Workflow
This paper introduces SmartPRO, a smart card based technology aiming at protecting content in professional workflows. It gives an overview on how SmartPRO works. It also explains the design constrains that led to the use of smart cards and some of the extra difficulties implied by this choice in order to get to an implementation that may be industrially deployed.
متن کاملDigital Signature Generation using Fingerprint, Password and Smart Card
In a digital signature scheme, the security of the private key is of vital importance. If the private key is ever compromised, it can be used to sign forge documents. The conventional method of secure private key storage is through password-based encryption. However, user-chosen passwords have very low entropy, which may be exploited by an attacker to launch password-guessing attacks. In order ...
متن کاملذخیره در منابع من
با ذخیره ی این منبع در منابع من، دسترسی به آن را برای استفاده های بعدی آسان تر کنید
عنوان ژورنال:
دوره شماره
صفحات -
تاریخ انتشار 2010