DEX: Digital evidence provenance supporting reproducibility and comparison

Alinka W, Bhoedjanga R, Bonczb P, de Vriesb A. XIRAF –XML-based indexing and querying for digital forensics. In: Proc. DFRWS; 2006. Avižeienis, 1985, The N-version approach to fault-tolerant software, IEEE Trans Software Eng, SE-11, 1491, 10.1109/TSE.1985.231893 Avižeienis, 2004, Basic concepts and taxonomy of dependable and secure computing, IEEE Trans Dependable Secure Computing, 1, 11, 10.1109/TDSC.2004.2 Battistoni, 2004 Carrier B. Open source digital forensics tools: the legal argument. Technical report, @stake Research Report, Oct 2002. Carrier, 2003, Defining digital forensic examination and analysis tools using abstraction layers, Int J Digital Evidence, 1 Carrier, 2005 Cohen M., Garfinkel S, Schatz B. Extending the advanced forensic format to accommodate multiple data sources, logical evidence, Arbitrary Information and Forensic Workflow. In: Proc. Annual DFRWS Conference; August 2009. Foster I, Vöckler J, Wilde M, and Zhao Y. Chimera: A virtual data system for representing, querying, and automating data derivation. In: Proc. Int. Conf. on scientific and statistical database management, July 2002. Foster I, Vöckler J, Wilde M, Zhao Y. The virtual data grid: a new model and architecture for data-intensive collaboration. In: Proc. Conf. on Innovative Data Systems Research (CIDR); Jan 2003. Garfinkel S. Automating disk forensic processing with SleuthKit, XML and Python. In: IEEE workshop on systematic approaches to digital forensic engineering, May 2009. Garfinkel S, Malan D, Dubec K, Stevens C, Pham C. Disk imaging with the advanced forensics format, library and tools. In: Proc. IFIP Intl Conf on Digital Forensics; Jan 2006. Gerber, 2002, Shrinking the ocean: formalizing I/O methods in modern operating systems, Int J Digital Evidence, 1 Kenneally, 2001, Gatekeeping out of the box: open source software as a mechanism to assess reliability for digital evidence, Va J Law Tech, 6 Knight, 1986, An experimental evaluation of the assumption of independence in multi-version programming, IEEE Trans Software Eng, 12, 96, 10.1109/TSE.1986.6312924 Komvoteas Osterweil L, Clarke A, Ellison, Podorozhny R, Wise A, Boose E, Hadley J. Experience in using a process language to define scientific workflow and generate dataset provenance. In: Proc. Intl Symp. on Foundations of Software Engineering, 2008. p. 319–29. Pan L, Batten L. Reproducibility of digital evidence in forensic investigations. In: Proc. DFRWS, 2005. Peters L. Change detection in XML trees: a survey. In: third Twente Student Conference on IT; June 2005. Simmhan, 2005, A survey of data provenance in E-Science, ACM SIGMOD Record, 34, 31, 10.1145/1084805.1084812 Turner P. Unification of evidence from disparate sources (digital evidence bags). In: Proc. DFRWS, 2005. Wang Y, DeWitt D, Cai J.-Y.. X-Diff: an effective change detection algorithm for XML documents. Intl Conf. on Data Engineering; 2003. Zhang, 1992, On the editing distance between unordered labeled trees, Inform Process Lett, 133, 10.1016/0020-0190(92)90136-J