THE SIXTH INTERNATIONAL CONFERENCE ON FORENSIC COMPUTER SCIENCE
Print ISBN 978-85-65069-07-6 - Online ISBN 978-85-65069-05-2, pp 122-131
DOI: 10.5769/C2011013 and http://dx.doi.org/10.5769/C2011013
Uma arquitetura de software para extração de vestígios de programas de mensagens instantâneas
By Vicente de Paula Melo Filho, Galileu Batista de Sousa, and Gibeon Soares Aquino Jr
To download this paper, click here.
Nowadays it is popular to use Internet instant messengers for personal communications. Also, they are used for illicit activities, such as pedophilia, leaking confidential corporate information, any other digital crimes. Due to these activities, it is often necessary to make a criminal investigation to capture traces left by these tools. To do that effective, it is important to use software tools that can extract and present these traces. Despite the variety of messengers, they share virtually the same set of features and requirements, so it is possible to devise a methodology for the capture their traces. This work define a reference architecture for building software tools that will capture traces left by communicators for instant messaging. The proposed architecture is extensible, to promote the reuse of part of its modules and can be used to capture traces of more than one instant messaging tool. To validate this architecture, we built a prototype to capture program traces left by Skype 220.127.116.11 and Windows Live Messenger 2009.
Software Architecture; Reference Architecture; Computer Forensics; Instant Messaging Tools.
To return to the "Published Papers" main page, click here.