Database forensic analysis through internal structure carving

TL;DR: This paper builds on the existing literature to present a harmonized DBFI process using design science research methodology, designed to avoid confusion or ambiguity, as well as providing practitioners with a systematic method of performing DBFI with a higher degree of certainty.

TL;DR: This work has analysed 60 models of DBF in an attempt to uncover how numerous DBF activities are really public even when the actions vary, and generates a unified abstract view ofDBF in the form of a metamodel.

TL;DR: This paper has proposed suitable steps of constructing and Integrated Incident Response Model (IIRM) that can be relied upon in the database forensic investigation field.

TL;DR: In this article, the authors proposed a high-level abstract metamodel, which combines the common investigation processes, activities, techniques, and tasks for digital forensics subdomains.

TL;DR: A simple way to adjoin physical copies of dimension columns to the fact table, dicing data to effectively cluster query retrieval, and how such dicing can be achieved on database products other than DB2 is shown.

TL;DR: The file carving problem is analyzed, arguing that rapid, accurate carving is best performed by a multi-tier decision problem that seeks to quickly validate or discard candidate byte strings from the media to be carved.

TL;DR: The contributions of this research include the release of the first open-source Android enterprise monitoring solution of its kind, a comprehensive guide of data sets available for collection without elevated privileges, and the introduction of a novel design strategy implementing various Android application components useful for monitoring on the Android platform.

TL;DR: The paper proposes an algorithm to recover deleted SQLite entries based on known internal record structures and can recover deleted history records and can be used with other applications that also employ SQLite databases.