A Forensic Audit of the Tor Browser Bundle

Research Output

The increasing use of encrypted data within file storage and in network communications leaves investigators with many challenges. One of the most challenging is the Tor protocol, as its main focus is to protect the privacy of the user, in both its local footprint within a host and over a network connection. The Tor browser, though, can leave behind digital artefacts which can be used by an investigator. This paper outlines an experimental methodology and provides results for evidence trails which can be used within real-life investigations.

Type:

Article
Date:

30 March 2019
Publication Status:

Published
Publisher

Elsevier BV
DOI:

10.1016/j.diin.2019.03.009
Cross Ref:

S1742287619300829
ISSN:

1742-2876
Library of Congress:

QA75 Electronic computers. Computer science
Dewey Decimal Classification:

005.8 Data security
Funders:

Edinburgh Napier Funded

http://researchrepository.napier.ac.uk/output/1715664 Muir, M., Leimich, P., & Buchanan, W. J. (2019). A Forensic Audit of the Tor Browser Bundle. Digital Investigation, 29, 118-128. https://doi.org/10.1016/j.diin.2019.03.009

Citation

Muir, M., Leimich, P., & Buchanan, W. J. (2019). A Forensic Audit of the Tor Browser Bundle. Digital Investigation, 29, 118-128. https://doi.org/10.1016/j.diin.2019.03.009