© 2006

Advances in Digital Forensics II

IFIP international Conference on Digital Forensics, National Center for Forensic Science, Orlando, Florida, January 29– February 1, 2006

  • Martin S. Olivier
  • Sujeet Shenoi
Conference proceedings DigitalForensics 2006

Part of the IFIP Advances in Information and Communication book series (IFIPAICT, volume 222)

Table of contents

  1. Front Matter
    Pages i-xviii
  2. Themes and Issues

    1. Front Matter
      Pages 1-1
    2. Eugene Spafford
      Pages 3-9
  3. Evidence Collection and Handling

    1. Front Matter
      Pages 11-11
    2. Simson Garfinkel, David Malan, Karl-Alexander Dubec, Christopher Stevens, Cecile Pham
      Pages 13-27
    3. Golden Richard III, Vassil Roussev
      Pages 29-40
    4. Marika Wojcik, Hein Venter, Jan Eloff, Martin Olivier
      Pages 55-65
    5. Mark Pollitt, Anthony Whitledge
      Pages 67-76
  4. Forensic Techniques

    1. Front Matter
      Pages 77-77
    2. Scott Piper, Mark Davis, Sujeet Shenoi
      Pages 79-90
    3. James Okolica, Gilbert Peterson, Robert Mills
      Pages 91-103
    4. Anthony Persaud, Yong Guan
      Pages 105-118
    5. Shelly Seier, David Greer, Gavin Manes
      Pages 131-140
    6. Mark Hartong, Rajni Goel, Duminda Wijesekera
      Pages 141-155
  5. Operating System and File System Forensics

    1. Front Matter
      Pages 157-157
    2. Philip Craiger, Paul Burke
      Pages 159-170
    3. Mark Davis, Richard Kennedy, Kristina Pyles, Amanda Strickler, Sujeet Shenoi
      Pages 171-183
    4. Paul Burke, Philip Craiger
      Pages 185-195

About these proceedings



Edited by: Martin S. Olivier and Sujeet Shenoi

Digital forensics deals with the acquisition, preservation, examination, analysis and presentation of electronic evidence. Networked computing, wireless communications and portable electronic devices have expanded the role of digital forensics beyond traditional computer crime investigations. Practically every crime now involves some aspect of digital evidence; digital forensics provides the techniques and tools to articulate this evidence. Digital forensics also has myriad intelligence applications. Furthermore, it has a vital role in information assurance – investigations of security breaches yield valuable information that can be used to design more secure systems.

Advances in Digital Forensics II describes original research results and innovative applications in the emerging discipline of digital forensics. In addition, it highlights some of the major technical and legal issues related to digital evidence and electronic crime investigations. The areas of coverage include:

  • Themes and Issues in Digital Forensics
  • Evidence Collecting and Handling
  • Forensic Techniques
  • Operating System and File System Forensics
  • Network Forensics
  • Portable Electronic Device Forensics
  • Linux and File System Forensics
  • Training, Governance and Legal Issues 

This book is the second volume in the anual series produced by the International Federation for Information Processing (IFIP) Working Group 11.9 on Digital Forensics, an international community of scientists, engineers and practitioners dedicated to advancing the state of the art of research and practice in digital forensics. The book contains a selection of twenty-five edited papers from the First Annual IFIP WG 11.9 Conference on Digital Forensics, held at the National Center for Forensic Science, Orlando, Florida, USA in the spring of 2006.

Advances in Digital Forensics is an important resource for researchers, faculty members and graduate students, as well as for practitioners and individuals engaged in research and development efforts for the law enforcement and intelligence communities.

Martin S. Olivier is a Professor of Computer Science and co-manager of the Information and Computer Security Architectures Research Group at the University of Pretoria, Pretoria, South Africa.

Sujeet Shenoi is the F.P. Walter Professor of Computer Science and a principal with the Center for Information Security at the University of Tulsa, Tulsa, Oklahoma, USA.

For more information about the 300 other books in the IFIP series, please visit

For more information about IFIP, please visit


BIOS Chips CFA Interpolation Data Concealment Data Mining Disk Imaging Evidence Forensic Management Multimedia Processing Router Security Traffic computer crime knowledge management

Editors and affiliations

  • Martin S. Olivier
    • 1
  • Sujeet Shenoi
    • 2
  1. 1.University of PretoriaPretoriaSouth Africa
  2. 2.University of TulsaTulsaUSA

Bibliographic information

  • Book Title Advances in Digital Forensics II
  • Book Subtitle IFIP international Conference on Digital Forensics, National Center for Forensic Science, Orlando, Florida, January 29– February 1, 2006
  • Editors Martin S. Olivier
    Sujeet Shenoi
  • Series Title IFIP Advances in Information and Communication
  • DOI
  • Copyright Information IFIP International Federation for Information Processing 2006
  • Publisher Name Springer, Boston, MA
  • eBook Packages Computer Science Computer Science (R0)
  • Hardcover ISBN 978-0-387-36890-0
  • Softcover ISBN 978-1-4419-4232-6
  • eBook ISBN 978-0-387-36891-7
  • Series ISSN 1868-4238
  • Series E-ISSN 1868-422X
  • Edition Number 1
  • Number of Pages XVIII, 364
  • Number of Illustrations 0 b/w illustrations, 0 illustrations in colour
  • Topics Systems and Data Security
    Computer Communication Networks
    Database Management
    Information Storage and Retrieval
  • Buy this book on publisher's site
Industry Sectors
Chemical Manufacturing
IT & Software
Consumer Packaged Goods
Finance, Business & Banking
Energy, Utilities & Environment