The purpose of this work is to design and implement a plugin-based environment that allows to integrate forensic tools working together to support programming tasks and addition of new tools. Integration is done through GUI components. The end-system environment must have user friendly GUI, configuration capabilities, plug-in capabilities to insert/inject new tools, case management, and chain of custody capabilities, along with evidence gathering capabilities, evidence preservation capabilities, and, finally report generation capabilities. A subset of these requirements has been implemented in Ftklipse, an open-source project, which is detailed throughout the rest of this document.
@article{arxiv.0906.2447,
title = {Ftklipse - Design and Implementation of an Extendable Computer Forensics Environment: Specification Design Document},
author = {Marc-André Laverdière and Serguei A. Mokhov and Suhasini Tsapa and Djamel Benredjem},
journal= {arXiv preprint arXiv:0906.2447},
year = {2009}
}
Comments
37 pages, 11 figures, 3 tables, index; April 24, 2006 project. This SDD document follows the SRS specification of the same project found at arXiv:0906.2446 ; v2 adds the missing .ind file for the index