Icofcs 2011.Indd

2011 ICoFCSPROCEEDING OF THE SIXTH INTERNATIONAL 2011 CONFERENCE ON FORENSIC COMPUTER SCIENCE PROCEEDING OF THE SIXTH INTERNATIONAL CONFERENCE ON FORENSIC COMPUTER SCIENCE Print ISBN 978-85-65069-07-6 By ASSOCIAÇÃO BRASILEIRA DE ESPECIALISTAS EM ALTA TECNOLOGIA - ABEAT ICoFCSPROCEEDING OF THE SIXTH INTERNATIONAL 2011 CONFERENCE ON FORENSIC COMPUTER SCIENCE 1st Edition Brasília, DF Abeat 2011 Proceeding of the Sixth International Conference on Forensic Computer Science – ICoFCS 2011 ABEAT (ed.) – Brasília, Brazil, 2011, 210 pp. – Print ISBN 978-85-65069-07-6 - Online ISBN 978-85-65069-05-2 © Copyright 2011 by Associação Brasileira De Especialistas Em Alta Tecnologia (ABEAT) Address: CLN 309, Bloco D, Sala 103 CEP: 70.755-540 – Brasília/DF - Brazil Phone: +55 (61) 3202-3006 Email: [email protected] – www.abeat.org.br Print ISBN 978-85-65069-07-6 - Online ISBN 978-85-65069-05-2 COMMITTEE GENERAL CHAIR Dr. PAULO QUINTILIANO DA SILVA, Brazilian Federal Police, and University of Brasília, Brazil SESSION CHAIRS Dr. ALEXANDRE RICARDO SOARES ROMARIZ, University of Brasilia, Brazil Dr. ANTÔNIO NUNO DE CASTRO SANTA ROSA, University of Brasilia, Brazil Dr. FRANCISCO DE OLIVEIRA ASSIS NASCIMENTO, University of Brasilia, Brazil Dr. PEDRO DE AZEVEDO BERGER, University of Brasilia, Brazil REVIEWERS Dr. Adriano Mauro Cansian, São Paulo State University, Brazil Dr. Alexandre Ricardo Soares Romariz, University of Brasilia, Brazil Dr. Anderson Clayton Alves Nascimento, University of Brasilia, Brazil Dr. Antonio Montes, Renato Archer Research Center, Brazil Dr. Antonio Nuno de Castro Santa Rosa, University of Brasilia, Brazil Dr. Ayyaswamy Kathirvel, Anna University, India Dr. Avinash Pokhriyal, Uttar Pradesh Technical University, Lucknow, India Dr. “candidate” Bruno Werneck Pinto Hoelz, Brazilian Federal Police and University of Brasília, Brazil Dr. Carlos Henrique Quartucci Forster, Air Force Institute of Technology, Brazil Dr. Célia Ghedini Ralha, University of Brasilia, Brazil Dr. Clovis Torres Fernandes, Air Force Institute of Technology, Brazil Dr. Deepak Laxmi Narasimha, University of Malaya, Malaysia Dr. Dibio Leandro Borges, University of Brasilia, Brazil Dr. Dinei Florêncio, Microsoft Research, USA Dr. Francisco de Oliveira Assis Nascimento, University of Brasilia, Brazil Dr. Ganesan Ramachandrarao, Bharathiar University, India Dr. Geovany Araujo Borges, University of Brasilia, Brazil Dr. Gerhard Ritter, University of Florida, USA Dr. Hélvio Pereira Peixoto, Brazilian Federal Police, Brazil Dr. Igor B. Gourevitch, Russian Academy of Science, Russia Dr. Jaisankar Natarajan, Vit University, India Dr. Jeimy J. Cano, University of Los Andes, Colombia Dr. Juliana Fernandes Camapum, University of Brasilia, Brazil Dr. Luciano Silva, Federal University of Parana, Brazil Dr. Luiz Pereira Calôba, Federal University of Rio de Janeiro, Brazil Dr. Marcos Cordeiro d’Ornellas, Federal University of Santa Maria, Brazil Dr. Mohd Nazri Ismail, University of Kuala Lumpur, Malasya Dr. Nei Yoshihiro Soma, Air Force Institute of Technology, Brazil Dr. Nikolay G. Zagoruiko, Novosibirsk State University, Russia Dr. Nilton Correa da Silva, Evangelic University of Anapolis, Brazil Dr. Norbert Pohlmann, Fachhochschule Gelsenkirchen, Germany Dr. Olga Regina Pereira Bellon, Federal University of Parana, Brazil Dr. Ovidio Salvetti, Italian National Research Council, Italy Dr. Paulo Licio de Geus, University of Campinas, Brazil Dr. Paulo Sergio Motta Pires, Federal University of Rio Grande do Norte, Brazil Dr. Paulo Quintiliano da Silva, Brazilian Federal Police, and University of Brasília, Brazil Dr. Pedro de Azevedo Berger, University of Brasilia, Brazil Dr. Pedro Luis Prospero Sanches, University of São Paulo, Brazil Dr. Renato da Veiga Guadagnin, Catholic University of Brasilia, Brazil Dr. Ricardo L. de Queiroz, University of Brasilia, Brazil Dr. Roberto Ventura Santos, University of Brasilia, Brazil Dr. Vladimir Cobarrubias, University of Chile, Chile Dr. Volnys Borges Bernal, University of São Paulo, Brazil Dr. William A. Sauck, Western Michigan University, USA ABEAT – Associação Brasileira de Especialistas em Alta Tecnologia SCLN 309, Bloco D, Sala 103 Brassília-DF - CEP: 70.755-540 - Fone: + 55 (61) 3202-3006 CONFERENCE SCOPE Artificial Intelligence Artificial Neural Network Biometrics Computer Crimes Computer Forensics Computer Forensics in Education Computer Law Computer Vision Criminology Cryptology Digital Investigation Image Analysis Image Processing Information Security International Police Cooperation Intrusion Prevention and Detection Machine Learning Management Issues Network Security Pattern Recognition Secure Software Development Semantic Web Signal Processing Simulation Software Engineering BEST PAPER AWARD On this year, the “Best Paper Award” big winner is the paper “Raciocínio Baseado em Casos Aplicado em Análise Live”, written by Frederico Imbroisi Mesquita, Bruno Werneck Pinto Hoels, and Celia Ghedini Ralha. The paper “Computer Forensic Document Clustering with ART1 Neural Networks”, written by Georger Rommel Ferreira de Araújo, and Célia Ghedini Ralha, is the runner-up paper of the conference The choice was made by vote of this Conference Review Committee members. CONTENTS Uma Análise do Reconhecimento Textual de Nomes de Pessoas e Organizações na Computação Forense By Osvaldo Dalben Junior, and Daniela Barreiro Claro ................................................................................................................................................................07 Uma Proposta de Método para o Processo Investigatório de Análise da Informação Digital By Levi Roberto Costa, and Helvio Pereira Peixoto .......................................................................................................................................................................16 Ferramentas e Metodologia para Simplificar Investigações Criminais Utilizando Interceptação Telemática By André Peron, Flávio Elias de Deus, and Rafael Timóteo de Souza Júnior ........................................................................................................................30 Identificação de Artefatos Periciais do eMule By Rodrigo Lange, and Celia Ghedini Ralha ....................................................................................................................................................................................43 Identificação e Análise de Vestígios Deixados pelo Skype 5.X By Galileu Batista de Sousa ....................................................................................................................................................................................................................54 Evaluating the Security of the Brazilian e-Passport By Ivo de Carvalho Peixinho, , and Auto Tavares da Camara Júnior ........................................................................................................................................62 Raciocínio Baseado em Casos Aplicado em Análise Live By Frederico Imbroisi Mesquita, Bruno Werneck Pinto Hoels, and Celia Ghedini Ralha ..................................................................................................68 Utilização da Computação Distribuída para o Armazenamento e Indexação de Dados Forenses By Marcelo Antônio da Silva, and Romualdo Alves Pereira Júnior ..........................................................................................................................................78 Aquisição de Evidências Digitais em Smartphones Android By André Morum Simão, Fábio Caus Sícoli, Laerte Peotta de Melo, Flávio Elias de Deus, and Rafael Timóteo de Souza Júnior .....................92 Ensino da Forense Digital Baseado em Ferramentas Open Source By Leonardo L. Fagundes, Paulo A. Neukamp, and Pamela C. da Silva ................................................................................................................................100 Computer Forensic Document Clustering with ART1 Neural Networks By Georger Rommel Ferreira de Araújo, and Célia Ghedini Ralha .........................................................................................................................................106 OCR Errors and their Effects on Computer Forensics By Mateus de Castro Polastro, and Nalvo Franco de Almeida Júnior ...................................................................................................................................115 Uma Arquitetura de Software para Extração de Vestígios de Programas de Mensagens Instantâneas By Vicente de Paula Melo Filho, Galileu Batista de Sousa, and Gibeon Soares Aquino Jr .............................................................................................122 Using XSLT Filters to Improve Productivity and Quality on Cell Phone Forensics By Alexandre Vrubel ...............................................................................................................................................................................................................................132 Creation and Maintenance of MD5 Hash Libraries, and their Application in Cases of Child Pornography By Alexandre Vrubel ...............................................................................................................................................................................................................................137 Blind Automatic Malicious Activity Detection in Honeypot Data By Bernardo Machado David, João Paulo C. L. da Costa, Anderson C. A. Nascimento,

Load more