Electronic evidence fixation and network forensics method and system based on memory forensics and blockchain

A technology of electronic evidence and memory forensics, applied in the direction of electronic digital data processing, data processing application, digital data protection, etc., can solve the problems of delaying the timing of evidence collection, untimely evidence collection, waste of time and money, etc., to avoid delays in the timing of evidence collection Effect

Active Publication Date: 2021-09-21
SHANDONG COMP SCI CENTNAT SUPERCOMP CENT IN JINAN
View PDF0 Cites 0 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

In the above process, the process from step 1 to step 3 generally takes at least a few days. Since the data on the network or various network APPs are changing all the time, when the judicial appraisal agency fixes the electronic evidence, the data often has a large amount of time. changes, delaying the timing of evidence collection
In addition, when entrusting a judicial authentication agency to fix the evidence, because there was no communication with the lawyer or the court at that time, the evidence requirements were not very clear. When entrusting a judicial authentication agency to perform judicial authentication, there is often a certain degree of blindness, which will waste a certain amount of time and money. money
[0008] To sum up, due to the untimely forensics process of the conventional network electronic evidence collection process, the data you want to obtain is often deleted and other practical problems. A more credible method is needed to solve the current forensics problem.

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Electronic evidence fixation and network forensics method and system based on memory forensics and blockchain
  • Electronic evidence fixation and network forensics method and system based on memory forensics and blockchain
  • Electronic evidence fixation and network forensics method and system based on memory forensics and blockchain

Examples

Experimental program
Comparison scheme
Effect test

Embodiment 1

[0072] According to an aspect of one or more embodiments of the present disclosure, an electronic evidence fixation and network forensics method based on memory forensics and blockchain is provided.

[0073] like figure 2 As shown, according to one aspect of one or more embodiments of the present disclosure, an electronic evidence fixing method based on memory forensics and blockchain is provided.

[0074] A method for securing electronic evidence based on memory forensics and blockchain, the method comprising:

[0075] S101: Download a credible evidence collection tool through the block chain network;

[0076] S102: Interact with the blockchain network to verify the legality of code execution by the forensics tool;

[0077] S103: Run the forensics tool, obtain the electronic data, and generate an operation log, and at the same time use the memory forensics technology to obtain the computer memory information, and fix the evidence;

[0078] S104: generate hash values ​​for...

Embodiment 2

[0097] According to an aspect of one or more embodiments of the present disclosure, there is provided a computer-readable storage medium.

[0098] A computer-readable storage medium stores a plurality of instructions, and the instructions are suitable for being loaded by a processor of an electronic device and executing the electronic evidence fixing method based on memory forensics and blockchain.

Embodiment 3

[0100] According to an aspect of one or more embodiments of the present disclosure, there is provided an electronic device.

[0101] An electronic device, which includes a processor and a computer-readable storage medium, the processor is used to implement instructions; the computer-readable storage medium is used to store a plurality of instructions, and the instructions are suitable for being loaded by the processor and executing the described one An electronic evidence immobilization method based on memory forensics and blockchain.

[0102] These computer-executable instructions, when executed in a device, cause the device to perform the methods or processes described in accordance with various embodiments in the present disclosure.

[0103] In this embodiment, a computer program product may include a computer-readable storage medium carrying computer-readable program instructions for performing various aspects of the present disclosure. A computer readable storage medium ...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

PUM

No PUM Login to view more

Abstract

The invention discloses a method and system for fixing electronic evidence and network forensics based on memory forensics and block chain. The electronic evidence fixing terminal downloads a credible forensic tool through the block chain network; verifies the legality of the execution code of the forensic tool; runs the forensic tools to obtain electronic data, generate operation logs, and use memory forensics technology to obtain computer memory information and fix evidence; generate hash values, upload them to the blockchain network, and receive the returned corresponding blockchain addresses; send them to the judiciary Appraisal institution terminal; Judicial appraisal institution terminal receives the blockchain address sent by the electronic evidence fixed terminal; queries the information on the blockchain to verify the legitimacy; uses memory forensics technology to analyze the memory information, extracts the system status when the electronic evidence is acquired, and verifies Conformance; use memory analysis to verify whether the forensics tool is hooked or injected during operation, and verify the reliability of its operating environment; generate a forensic report.

Description

technical field [0001] The disclosure belongs to the technical field of electronic forensics, and relates to a method and system for fixing electronic evidence and network forensics based on memory forensics and blockchain. Background technique [0002] The statements in this section merely provide background information related to the present disclosure and do not necessarily constitute prior art. [0003] While modern information technology has brought convenience to people's work and life, it has also inevitably caused various negative problems, especially various crimes caused by the use of the Internet and information are showing a trend of increasing year by year, such as stealing state secrets Incidents such as disclosure of personal privacy, theft of online banking passwords, network fraud, and hacker attacks have emerged in an endless stream, and the criminal, civil, and administrative cases or disputes associated with them have also increased significantly. In ord...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

Application Information

Patent Timeline
no application Login to view more
Patent Type & Authority Patents(China)
IPC IPC(8): G06Q50/18G06F21/62
CPCG06Q50/18G06F21/6218
Inventor 王连海张淑慧
Owner SHANDONG COMP SCI CENTNAT SUPERCOMP CENT IN JINAN
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Try Eureka
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap