TY - GEN
T1 - A Unified Knowledge Graph to Permit Interoperability of Heterogenous Digital Evidence
AU - Alshumrani, Ali
AU - Clarke, Nathan
AU - Ghita, Bogdan
N1 - Publisher Copyright:
© The Author(s), under exclusive license to Springer Nature Singapore Pte Ltd. 2024.
PY - 2024
Y1 - 2024
N2 - The modern digital world is highly heterogeneous, encompassing a wide variety of communications, devices, and services. This interconnectedness generates, synchronises, stores, and presents digital information in multidimensional, complex formats, often fragmented across multiple sources. When linked to misuse, this digital information becomes vital digital evidence. Integrating and harmonising these diverse formats into a unified system is crucial for comprehensively understanding evidence and its relationships. However, existing approaches to date have faced challenges limiting investigators’ ability to query heterogeneous evidence across large datasets. This paper presents a novel approach in the form of a modern unified data graph. The proposed approach aims to seamlessly integrate, harmonise, and unify evidence data, enabling cross-platform interoperability, efficient data queries, and improved digital investigation performance. To demonstrate its efficacy, a case study is conducted, highlighting the benefits of the proposed approach and showcasing its effectiveness in enabling the interoperability required for advanced analytics in digital investigations.
AB - The modern digital world is highly heterogeneous, encompassing a wide variety of communications, devices, and services. This interconnectedness generates, synchronises, stores, and presents digital information in multidimensional, complex formats, often fragmented across multiple sources. When linked to misuse, this digital information becomes vital digital evidence. Integrating and harmonising these diverse formats into a unified system is crucial for comprehensively understanding evidence and its relationships. However, existing approaches to date have faced challenges limiting investigators’ ability to query heterogeneous evidence across large datasets. This paper presents a novel approach in the form of a modern unified data graph. The proposed approach aims to seamlessly integrate, harmonise, and unify evidence data, enabling cross-platform interoperability, efficient data queries, and improved digital investigation performance. To demonstrate its efficacy, a case study is conducted, highlighting the benefits of the proposed approach and showcasing its effectiveness in enabling the interoperability required for advanced analytics in digital investigations.
KW - Cybercrime
KW - Digital Forensics
KW - Evidence Harmonisation
KW - Interoperability
KW - Investigation
KW - Knowledge Graph
KW - Ontology
UR - http://www.scopus.com/inward/record.url?scp=85189627825&partnerID=8YFLogxK
U2 - 10.1007/978-981-97-1274-8_27
DO - 10.1007/978-981-97-1274-8_27
M3 - Conference proceedings published in a book
AN - SCOPUS:85189627825
SN - 9789819712731
T3 - Communications in Computer and Information Science
SP - 420
EP - 435
BT - Ubiquitous Security - 3rd International Conference, UbiSec 2023, Revised Selected Papers
A2 - Wang, Guojun
A2 - Wang, Haozhe
A2 - Min, Geyong
A2 - Georgalas, Nektarios
A2 - Meng, Weizhi
PB - Springer Science and Business Media Deutschland GmbH
T2 - 3rd International Conference on Ubiquitous Security, UbiSec 2023
Y2 - 1 November 2023 through 3 November 2023
ER -