Professional Documents
Culture Documents
Digital Forensics: Essential Cybersecurity Science by Josiah Dykstra
Digital Forensics: Essential Cybersecurity Science by Josiah Dykstra
by Josiah Dykstra
BAB 8
Digital Forensics
By
Firma Purbantoro
Digital Forensik
• Digital Forensik adalah salah satu cabang ilmu
forensik yang berkaitan dengan bukti legal
yang ditemui pada komputer dan media
penyimpanan digital. Forensik komputer
menjadi bidang ilmu baru yang
menggabungkan dua bidang keilmuan, hukum
dan komputer
Contoh Percobaan Ilmiah dalam Forensik
Digital
• contoh instruktif yang menggambarkan
eksperimen ilmiah dalam pengembangan alat
forensik digital, dpaat dilihat pada abstarak
jurnal “Language translation for file paths”
oleh Rowe, Schwamm, and Garfinkel (2013)
• Makalah ini menyajikan suatu cara baru dan
evaluasi eksperimental terhadap
keakuratannya
Abstract from a digital forensics experiment
Forensic examiners are frequently confronted with content in languages that they do not
understand, and they could benefit from machine translation into their native lan‐ guage. But
automated translation of file paths is a difficult problem because of the min‐ imal context for
translation and the frequent mixing of multiple languages within a path. This work developed a
prototype implementation of a file-path translator that first identifies the language for each
directory segment of a path, and then translates to English those that are not already English nor
artificial words. Brown’s LA-Strings util‐ ity for language identification was tried, but its
performance was found inadequate on short strings and it was supplemented with clues from
dictionary lookup, Unicode character distributions for languages, country of origin, and language-
related key‐ words. To provide better data for language inference, words used in each directory
over a large corpus were aggregated for analysis. The resulting directory-language probabilities
were combined with those for each path segment from dictionary lookup and character-type
distributions to infer the segment’s most likely language. Tests were done on a corpus of 50.1
million file paths looking for 35 different languages. Tests showed 90.4% accuracy on identifying
languages of directories and 93.7% accuracy on identifying languages of directory/file segments of
filepaths, even after excluding 44.4% of the paths as obviously English or untranslatable. Two of
seven proposed language clues were shown to impair directory-language identification.
Experiments also com‐ pared three translation methods: the Systran translation tool, Google
Translate, and word-for-word substitution using dictionaries. Google Translate usually performed
the best, but all still made errors with European languages and a significant number of errors with
Arabic and Chinese.
• Contoh diatas menggambarkan satu jenis
eksperimen ilmiah yang melibatkan alat
forensik digital. Eksperimen semacam itu bisa
dilakukan untuk cara / alat baru lainnya,
termasuk di luar forensik digital.
• Ada juga persyaratan unik untuk alat forensik
digital karena keterlibatannya dalam proses
hukum
Keabsahan Ilmiah dan Hukum
• Bukti digital berperan dalam hampir setiap
kasus hukum saat ini. Bahkan ketika tersangka
tidak menyerang sistem komputer, dia
kemungkinan menggunakan ponsel, kamera,
email, situs web, atau media digital lainnya
yang berisi beberapa informasi yang berkaitan
dengan penyelidikan kejahatan.
The Daubert stkitard
dari Daubert v. Merrell Dow Pharmaceuticals (1993)