Digital Forensics Research Conference

Digital Forensics Research Conference

Demonstration of the Evidence project results

Le CETIC made a demonstration of the results of the Evidence project.
CETIC also invited two guests: Erwin van Eijk who is a ‎Forensic Scientist at the Netherlands Forensic Institute and Yves Vandermeer, Detective Chief Inspector at the (Belgian) Federal Computer Crime Unit.

Date: 30 March 2016

Event: CETIC talks 

Innovation theme: Cyber Security 

About project: EVIDENCE 

The scope of the conference is to present the EVIDENCE project, provide a medium to discuss DFAX/CybOX Evidence Application Proof of Concept and technical perspective on Evidence exchange use cases. The conference will include contributions for supporting the standard format, Plaso with DFAX language and Hansken output in DFAX.
This conference brings the community together in a workshop environnement to discuss the strengths and weaknesses, alternatives, issues, and solutions.


13:30 – 13:50 EVIDENCE project short presentation, D.F. Tools Catalogue and Standard proposal for the Evidence Exchange (CNR - Fabrizio Turchi)
13:50 – 14:15 CybOX/DFAX technical perspective, (Eoghan Casey)
14:15 – 14:30 DFAX basic and complex use cases (CNR - Mattia Epifani)
14:30 – 15:00 Proof of Concept for supporting the standard format (1/2 - CETIC - Nikolaos Matskanis)
15:00 – 15:30 Coffee break
15:30 – 15:50 Proof of Concept for supporting the standard format (2/2 CETIC - Nikolaos Matskanis and Ons Dridi)
15:50 – 16:15 PlasoDfax - Plaso with DFAX plug-in (CNR - Francesco Picasso)
16:15 – 16:40 Hansken output in DFAX (NFI - Erwin van Eijk)
16:40 – 17:00 Discussion on strengths and weaknesses, alternatives, issues, solutions (CETIC + CNR)
17:00 – 17:20 The way forward: wrap-up discussion

View online :