Title: Volatile memory forensics of privacy-aware operating systems
Authors: Nilay R. Mistry; Sampada Kanitkar; S.O. Junare
Addresses: National Forensic Sciences University, Sector 9, 382007 Gandhinagar – Gujarat, India ' National Forensic Sciences University, Sector 9, 382007 Gandhinagar – Gujarat, India ' National Forensic Sciences University, Sector 9, 382007 Gandhinagar – Gujarat, India
Abstract: Along with the use of the internet, awareness regarding the privacy of the user data is also increasing slowly and gradually but at a comparatively slower rate than that of cybercrime. At present in the market, there are many such operating systems available that are secured and leave the minimum number of traces which makes it difficult to retrieve or obtain any kind of data from that system after carrying out the forensics of that machine. In this research, acquisition, and analysis of random access memory (RAM), of such secured operating systems, is performed and potential artefacts related to the activities are identified, that the operating systems leave in the memory of the system which can be further submitted in the court of law as evidence in case of a crime being committed using such security providing technology.
Keywords: privacy-aware operating systems; volatile memory forensics; volatile memory analysis; digital forensics; cybercrime; privacy; anonymity.
DOI: 10.1504/IJESDF.2021.118548
International Journal of Electronic Security and Digital Forensics, 2021 Vol.13 No.6, pp.671 - 684
Received: 03 Aug 2020
Accepted: 18 Sep 2020
Published online: 28 Oct 2021 *