Edinburgh Napier University

A Bibliometric Analysis and Systematic Review of a Blockchain-Based Chain of Custody for Digital Evidence

Conference Proceeding

Onyeashie, B. I., Leimich, P., McKeown, S., & Russell, G. (2024)

A Bibliometric Analysis and Systematic Review of a Blockchain-Based Chain of Custody for Digital Evidence. In Big Data Technologies and Applications. BDTA 2023. https://doi.org/10.1007/978-3-031-52265-9_8

The effective management of digital evidence is critical to modern forensic investigations. However, traditional evidence management approaches are often prone to security and...

An Auditable Framework for Evidence Sharing and Management using Smart Lockers and Distributed Technologies: Law Enforcement Use Case

Conference Proceeding

Onyeashie, B., Leimich, P., McKeown, S., & Russell, G. (2024)

An Auditable Framework for Evidence Sharing and Management using Smart Lockers and Distributed Technologies: Law Enforcement Use Case. In Big Data Technologies and Applications (156-167). https://doi.org/10.1007/978-3-031-52265-9_11

This paper presents a decentralised framework for sharing and managing evidence that uses smart lockers, blockchain technology, and the InterPlanetary File System (IPFS). The ...

Fast Forensic Triage Using Centralised Thumbnail Caches on Windows Operating Systems

Journal Article

Mckeown, S., Russell, G., & Leimich, P. (2020)

Fast Forensic Triage Using Centralised Thumbnail Caches on Windows Operating Systems. Journal of Digital Forensics, Security and Law, 14(3),

A common investigative task is to identify known contraband images on a device, which typically involves calculating cryptographic hashes for all the files on a disk and check...

A Forensic Audit of the Tor Browser Bundle

Journal Article

Muir, M., Leimich, P., & Buchanan, W. J. (2019)

A Forensic Audit of the Tor Browser Bundle. Digital Investigation, 29, 118-128. https://doi.org/10.1016/j.diin.2019.03.009

The increasing use of encrypted data within file storage and in network communications leaves investigators with many challenges. One of the most challenging is the Tor protoc...

Reducing the Impact of Network Bottlenecks on Remote Contraband Detection

Conference Proceeding

McKeown, S., Russell, G., & Leimich, P. (2018)

Reducing the Impact of Network Bottlenecks on Remote Contraband Detection. In 2018 International Conference on Cyber Security and Protection of Digital Services (Cyber Security)https://doi.org/10.1109/CyberSecPODS.2018.8560671

Cloud based storage is increasing in popularity, with large volumes of data being stored remotely. Digital forensics investigators examining such systems remotely are limited ...

Sub-file Hashing Strategies for Fast Contraband Detection

Conference Proceeding

McKeown, S., Russell, G., & Leimich, P. (2018)

Sub-file Hashing Strategies for Fast Contraband Detection. In 2018 International Conference on Cyber Security and Protection of Digital Services (Cyber Security)https://doi.org/10.1109/CyberSecPODS.2018.8560680

Traditional digital forensics processes do not scale well with the huge quantities of data present in a modern investigation, resulting in large investigative backlogs for man...

Fingerprinting JPEGs With Optimised Huffman Tables

Journal Article

McKeown, S., Russell, G., & Leimich, P. (2018)

Fingerprinting JPEGs With Optimised Huffman Tables. Journal of Digital Forensics, Security and Law, 13(2), https://doi.org/10.15394/jdfsl.2018.1451

A common task in digital forensics investigations is to identify known contraband images. This is typically achieved by calculating a cryptographic digest, using hashing algor...

Fast Filtering of Known PNG Files Using Early File Features

Conference Proceeding

McKeown, S., Russell, G., & Leimich, P. (2017)

Fast Filtering of Known PNG Files Using Early File Features. In Proceedings of the Conference on Digital Forensics, Security and Law

A common task in digital forensics investigations is to identify known contraband images. This is typically achieved by calculating a cryptographic digest, using hashing algor...

A RAM triage methodology for Hadoop HDFS forensics

Journal Article

Leimich, P., Harrison, J., & Buchanan, W. J. (2016)

A RAM triage methodology for Hadoop HDFS forensics. Digital Investigation, 18, 96-109. https://doi.org/10.1016/j.diin.2016.07.003

This paper discusses the challenges of performing a forensic investigation against a multi-node Hadoop cluster and proposes a methodology for examiners to use in such situatio...

Editorial: TLAD 2015

Conference Proceeding

Leimich, P., & Bhogal, J. (2015)

Editorial: TLAD 2015. In Proceedings TLAD 2015. 13th International Workshop on the Teaching, Learning and Assessment of Databases

No abstract available.

Mitigating the Threat of Digital Media Produced or Modified by Artificial Intelligence (AI): A Digital Forensics Perspective

2023 - date

Director of Studies: Dr Sean McKeown | Second Supervisor: Rich Macfarlane

Trusted Evidence Gathering and Timeline For Law Enforcement

2022 - date

Director of Studies: Dr Petra Leimich | Second Supervisor: Dr Sean McKeown

Utilising reduced file representations to facilitate fast contraband detection

2015 - 2019

The field of Digital Forensics has been facing scalability issues for the last 10 years, resulting in huge backlogs for la...

Dr Sean McKeown | Director of Studies: Dr Gordon Russell | Second Supervisor: Dr Petra Leimich

Researchers Find New Ways To Investigate Big Data Infrastructures With Minimal Disruption

4 August 2016

Researchers, including Dr Petra Leimich, Prof Bill Buchanan and Josh Harrison, in The Cyber Academy at Edinburgh Napier, have created a new way of analysing the traces of evidence left in the memory o...

FBI to present on Big Data in Cyber Security at International Conference

31 March 2016

FBI to present on Big Data in Cyber Security at International Conference

Sub-file Hashing Strategies for Fast Contraband Detection and Reducing the Impact of Network Bottlenecks on Remote Contraband Detection - School of Computing Seminar Series

14:00 in CoRe44, room C44, Merchiston Campus

5 June 2018