WO2007075813A3 - Enterprise-wide data identification, sharing and management, and searching forensic data - Google Patents

Enterprise-wide data identification, sharing and management, and searching forensic data Download PDF

Info

Publication number
WO2007075813A3
WO2007075813A3 PCT/US2006/048651 US2006048651W WO2007075813A3 WO 2007075813 A3 WO2007075813 A3 WO 2007075813A3 US 2006048651 W US2006048651 W US 2006048651W WO 2007075813 A3 WO2007075813 A3 WO 2007075813A3
Authority
WO
Grant status
Application
Patent type
Prior art keywords
data
suspect
extracted
raw data
enterprise
Prior art date
Application number
PCT/US2006/048651
Other languages
French (fr)
Other versions
WO2007075813A2 (en )
Inventor
Raphael Bousquet
J J Wallia
Original Assignee
Advanced Digital Forensic Solu
Raphael Bousquet
J J Wallia
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date

Links

Classifications

    • GPHYSICS
    • G06COMPUTING; CALCULATING; COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F17/00Digital computing or data processing equipment or methods, specially adapted for specific functions
    • G06F17/30Information retrieval; Database structures therefor ; File system structures therefor
    • G06F17/30943Information retrieval; Database structures therefor ; File system structures therefor details of database functions independent of the retrieved data type
    • G06F17/30964Querying
    • GPHYSICS
    • G06COMPUTING; CALCULATING; COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F17/00Digital computing or data processing equipment or methods, specially adapted for specific functions
    • G06F17/30Information retrieval; Database structures therefor ; File system structures therefor
    • G06F17/30286Information retrieval; Database structures therefor ; File system structures therefor in structured data stores
    • G06F17/30386Retrieval requests
    • G06F17/30389Query formulation
    • G06F17/30404Query languages
    • G06F17/30421Query languages for particular applications; for extensibility, e.g. user defined types
    • GPHYSICS
    • G06COMPUTING; CALCULATING; COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F17/00Digital computing or data processing equipment or methods, specially adapted for specific functions
    • G06F17/30Information retrieval; Database structures therefor ; File system structures therefor
    • G06F17/30943Information retrieval; Database structures therefor ; File system structures therefor details of database functions independent of the retrieved data type
    • G06F17/30997Retrieval based on associated metadata

Abstract

A system and method of automatically identifying relevant or suspect data during a digital forensic investigation. Input raw data are extracted from various digital data sources. The system determines to which one or more identification modules the unknown raw data should be delivered to for processing. This determination is based on the type of data in the extracted raw data coming into the application. Suspect or relevant data that are identified includes that data that are identical to or similar to the extracted unknown raw data. If there are suspect data, the system transmits a message or alert to interested parties or stores the findings/report on a storage device. In this manner, the suspect data are identified automatically, without intervention by a human being.
PCT/US2006/048651 2005-10-19 2006-12-21 Enterprise-wide data identification, sharing and management, and searching forensic data WO2007075813A3 (en)

Priority Applications (4)

Application Number Priority Date Filing Date Title
US11/318,340 2005-12-23
US11318084 US7603344B2 (en) 2005-10-19 2005-12-23 Methods for searching forensic data
US11/318,084 2005-12-23
US11318340 US7941386B2 (en) 2005-10-19 2005-12-23 Forensic systems and methods using search packs that can be edited for enterprise-wide data identification, data sharing, and management

Publications (2)

Publication Number Publication Date
WO2007075813A2 true WO2007075813A2 (en) 2007-07-05
WO2007075813A3 true true WO2007075813A3 (en) 2009-01-15

Family

ID=38218576

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/US2006/048651 WO2007075813A3 (en) 2005-10-19 2006-12-21 Enterprise-wide data identification, sharing and management, and searching forensic data

Country Status (1)

Country Link
WO (1) WO2007075813A3 (en)

Families Citing this family (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US8312023B2 (en) 2007-12-21 2012-11-13 Georgetown University Automated forensic document signatures
US8280905B2 (en) 2007-12-21 2012-10-02 Georgetown University Automated forensic document signatures
GB0908146D0 (en) * 2009-05-13 2009-06-24 Evidence Talks Ltd System and method for digital forensic triage
FR2954547B1 (en) * 2009-12-21 2012-10-12 Alcatel Lucent Method for detection of? A computer resource diversion
US9071924B2 (en) 2011-06-20 2015-06-30 Aces & Eights Corporation Systems and methods for digital forensic triage

Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US6538623B1 (en) * 1999-05-13 2003-03-25 Pirooz Parnian Multi-media data collection tool kit having an electronic multi-media “case” file and method of use
US20030084279A1 (en) * 2001-10-29 2003-05-01 Pitney Bowes Inc. Monitoring system for a corporate network
US20050022014A1 (en) * 2001-11-21 2005-01-27 Shipman Robert A Computer security system
US6973449B2 (en) * 2003-05-27 2005-12-06 National Association For Child Abduction Prevention System, method of portable USB key interfaced to computer system for facilitating the recovery and/or identification of a missing person having person's unique identification, biological information

Patent Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US6538623B1 (en) * 1999-05-13 2003-03-25 Pirooz Parnian Multi-media data collection tool kit having an electronic multi-media “case” file and method of use
US20030084279A1 (en) * 2001-10-29 2003-05-01 Pitney Bowes Inc. Monitoring system for a corporate network
US20050022014A1 (en) * 2001-11-21 2005-01-27 Shipman Robert A Computer security system
US6973449B2 (en) * 2003-05-27 2005-12-06 National Association For Child Abduction Prevention System, method of portable USB key interfaced to computer system for facilitating the recovery and/or identification of a missing person having person's unique identification, biological information

Also Published As

Publication number Publication date Type
WO2007075813A2 (en) 2007-07-05 application

Similar Documents

Publication Publication Date Title
Cohen et al. Auditory recognition memory is inferior to visual recognition memory
WO2009051132A1 (en) Signal processing system, device and method used in the system, and program thereof
WO2007062429A3 (en) Systems and methods for classifying and transferring information in a storage network
Jimenez et al. E-government interoperability: Linking open and smart government
Wielhouwer Religion and American political participation
Templeton et al. Female happy wrens select songs to cooperate with their mates rather than confront intruders
Ferguson et al. A multicentre cohort study assessing day of week effect and outcome from emergency appendicectomy
Menjívar et al. Introduction–Immigrant “illegality”: Constructions and critiques
Layton Lobbying Juggernaut: the broadcast industry has become one of Washington's most feared economic special interests, creating more and more ethical conflicts for news outlets. And too many journalists are playing right along
WO2007130502A3 (en) Enhanced title processing arrangement
WO2008093788A1 (en) Information processor, advertisement transmitting method, program, and system
GB2470330A (en) Scanning systems
WO2008048948A3 (en) A method of distributing information via mobile devices and enabling its use at a point of transaction
Fruh et al. Initial taxonomy and classification scheme for artificial space objects based on ancestral relation and clustering
WO2004070558A3 (en) Method and apparatus to identify a work received by a processing system
WO2005008393A3 (en) A system for processing documents and associated ancillary information
Sulaiman et al. A new security model using multilayer approach for E-health services
Agarwal et al. Estimating the number of differences between remote sets
Stringer et al. Science in brief: R eport on the first H avemeyer workshop on infectious diseases in working equids, A ddis A baba, E thiopia, N ovember 2013
CA2726037A1 (en) System and method for similarity search of images
WO2007086926A3 (en) Human detection and tracking for security applications
Güsgen et al. Schwarzbergschanze Klingenthal–Neubau des Anlaufbauwerks und des Sprungrichterturms
Matthews et al. Effective risk communication? A content analysis of four Canadian newspapers
Kim et al. Selecting among extraordinary informants
Shin et al. Implementation of Plagiarism Analysis System through Digital Conversion Processing of Sound Source

Legal Events

Date Code Title Description
121 Ep: the epo has been informed by wipo that ep was designated in this application
NENP Non-entry into the national phase in:

Ref country code: DE

32PN Ep: public notification in the ep bulletin as address of the adressee cannot be established

Free format text: NOTING OF LOSS OF RIGHTS PURSUANT TO RULE 112(1) EPC, EPO FORM 1205A SENT ON 10/11/08

122 Ep: pct application non-entry in european phase

Ref document number: 06847849

Country of ref document: EP

Kind code of ref document: A2