Digital forensic analysis methodology for private browsing: Firefox and Chrome on Linux as a case study
| dc.contributor.affiliation | Universidade de Santiago de Compostela. Centro de Investigación en Tecnoloxías da Información | gl |
| dc.contributor.affiliation | Universidade de Santiago de Compostela. Departamento de Electrónica e Computación | gl |
| dc.contributor.area | Área de Enxeñaría e Arquitectura | |
| dc.contributor.author | Fernández Fuentes, Xosé | |
| dc.contributor.author | Fernández Pena, Anselmo Tomás | |
| dc.contributor.author | Cabaleiro Domínguez, José Carlos | |
| dc.date.accessioned | 2022-02-25T12:18:21Z | |
| dc.date.available | 2022-02-25T12:18:21Z | |
| dc.date.issued | 2022 | |
| dc.description.abstract | The web browser has become one of the basic tools of everyday life. A tool that is increasingly used to manage personal information. This has led to the introduction of new privacy options by the browsers, including private mode. In this paper, a methodology to explore the effectiveness of the private mode included in most browsers is proposed. A browsing session was designed and conducted in Mozilla Firefox and Google Chrome running on four different Linux environments. After analyzing the information written to disk and the information available in memory, it can be observed that Firefox and Chrome did not store any browsing-related information on the hard disk. However, memory analysis reveals that a large amount of information could be retrieved in some of the environments tested. For example, for the case where the browsers were executed in a VMware virtual machine, it was possible to retrieve most of the actions performed, from the keywords entered in a search field to the username and password entered to log in to a website, even after restarting the computer. In contrast, when Firefox was run on a slightly hardened non-virtualized Linux, it was not possible to retrieve any browsing-related artifacts after the browser was closed | gl |
| dc.description.peerreviewed | SI | gl |
| dc.identifier.citation | Computers & Security 115 (2022) 102626 | gl |
| dc.identifier.doi | 10.1016/j.cose.2022.102626 | |
| dc.identifier.issn | 0167-4048 | |
| dc.identifier.uri | http://hdl.handle.net/10347/27616 | |
| dc.language.iso | eng | gl |
| dc.publisher | Elsevier | gl |
| dc.relation.publisherversion | https://doi.org/10.1016/j.cose.2022.102626 | gl |
| dc.rights | © 2022 The Authors. Published by Elsevier Ltd. This is an open access article under the CC BY license (http://creativecommons.org/licenses/by/4.0/) | gl |
| dc.rights | Atribución 4.0 Internacional | |
| dc.rights.accessRights | open access | gl |
| dc.rights.uri | http://creativecommons.org/licenses/by/4.0/ | |
| dc.subject | Digital forensics | gl |
| dc.subject | Browsing artefacts | gl |
| dc.subject | Private browsing | gl |
| dc.subject | Internet privacy | gl |
| dc.subject | Virtualization | gl |
| dc.title | Digital forensic analysis methodology for private browsing: Firefox and Chrome on Linux as a case study | gl |
| dc.type | journal article | gl |
| dc.type.hasVersion | VoR | gl |
| dspace.entity.type | Publication | |
| relation.isAuthorOfPublication | decb372f-b9cd-4237-8dda-2c0f5c40acbe | |
| relation.isAuthorOfPublication | 1959c3e1-552e-4a0b-bc17-a5f9f687ad38 | |
| relation.isAuthorOfPublication.latestForDiscovery | decb372f-b9cd-4237-8dda-2c0f5c40acbe |
Files
Original bundle
1 - 1 of 1
Loading...
- Name:
- 2022_computers_fernandez_digital.pdf
- Size:
- 1.52 MB
- Format:
- Adobe Portable Document Format
- Description:
- Artigo de investigación