17 12 2015
Presentazione “Life on Clouds, a forensics overview” al DFRWS 2016 EU
La nostra short presentation “Life on Clouds, a forensics overview” è stata accettata per il DFRWS 2016 EU che si terrà a Losanna dal 29 Marzo al 1 Aprile 2016.
Abstract della presentazione
Nowadays most part of our life is “on the cloud”: each personal device (PC, smartphone, tablet, digital camera, etc.) is constantly connected with cloud services, like Dropbox, Google Drive, iCloud and others.
In the last few years al lot of commercial tools were released to acquire data from cloud services in a forensically sound manner, but most of them are properly focused on data acquisition and do not include extraction of metadata added by cloud service providers.
In our research we tried to retrieve as much as possible information from service providers using official APIS released by vendors.
In this presentation, we will show the result of our research, focusing in particular on Dropbox and Google services, presenting some python scripts, analyzing actual functions and future development.
We will analyze connection details and metadata than can be accessed using APIS, discovering, for example, that using Google APIS it is possible to retrieve various information like Google Photo metadata (even if such files are not visible on Google Drive clients) or Comments on shared files.
Moreover we will present some interesting findings about the possibility to retrieve files and metadata also on public files that were accessed by a user though Google drive.