Current Research

Digital Meta-Forensics: Quantifying Plausibility and Probative Value in Digital Forensic Investigations

To determine quantitatively the relative plausibility of alternative explanations (hypotheses) for the existence of the recovered digital evidence. This enables the prosecution and defence sides to evaluate the strength of their respective cases.

 

To determine quantitatively the probative value of an item of digital evidence – i.e., how much evidential weight it contributes to the hypothesis about a criminal case. This enables cost-effective digital forensic triage schema to be devised in which the most important evidence is sought first.

 

In collaboration with colleagues from the University of Hong Kong, the Hong Kong Police Service and the Metropolitan Police Service.

 

Previous research projects

• US ONR Minerva award, jointly with Thomas Rid & David Betz (War Studies, KCL), Strategy and the Network Society (2011-2013)
• cyber-forensics & cyber-evidence (ICUK Partnership grant & Proof of Concept award 2008-2010)
• DDoS attack mitigation (PhD students: Alan Saied & Matus Vadura)
• malware detection (PhD student: Vida Ghanaei)
• information security management systems (PhD student: Lizzie Coles-Kemp)
• fraud detection using computational immunology (EPSRC/DTI-funded MI project CIFD 2000-2003), jointly with ICSA, KCL
• intrusion detection (DERA-funded MoD project IWAAS 1997-2000) , jointly with ICSA, KCL