摘要
随着互联网用户日益增长,与互联网相关的犯罪也在逐步增加。越来越多的刑事和民事案件可能基于从用户互联网活动收集证据,因此Web浏览器取证成为了计算机取证的主要部分。犯罪分子使用网络浏览器收集或查询新的犯罪手段信息,以掩盖其犯罪行为。但每当使用网络浏览器时,犯罪分子均会留下痕迹,浏览器历史记录、临时文件、index.dat、Cookies、下载文件、未分配的空间和缓存等,均成为了证据存在的可能线索。文中系统研究了用于Web浏览器分析的主要工具,并通过对比这些工具的性能,分析各自优点与局限性,提出一种犯罪数据收集算法,为提高证据采集效率提供了参考。
As the number of Internet users grows,Internet related crimes also increase.More and more criminal and civil cases may be based on evidence collected from users'Internet activities,so Web browser forensics has become a major part of computer forensics.Criminals use web browsers to collect or search information about new criminal means to cover up their crimi-nal behavior.Every time a web browser is used,the offender leaves trails such as browser history,temporary files,index.dat,Cookies,download files,unallocated spaces,and caches which can all become possible clues to the existence of evidence.Therefore,in this paper the main tools used for Web browser analysis are systematically studied and the advantages and limita-tions of these tools are analyzed by means of comparing the performance of these tools,so as to propose a criminal data acquisi-tion algorithm,which can provide a reference for improving the efficiency of evidence collection.
作者
徐伟
XU Wei(Department of Information Technology,Hubei University of Police,Wuhan 430034,China)
出处
《现代电子技术》
北大核心
2018年第8期96-99,共4页
Modern Electronics Technique
基金
国家自然科学基金(61372071)~~
关键词
数字犯罪
浏览器取证
证据采集
隐私浏览
犯罪手段
犯罪数据收集算法
digital crime
browser forensics
evidence acquisition
privacy browning
criminal means
criminal data acquisition algorithm
