A Software Response to Hard Drive Encryption

Author

Justin John McCarty III, West Virginia University

Semester

Fall

Date of Graduation

2009

Document Type

Thesis

Degree Type

MS

College

Statler College of Engineering and Mineral Resources

Department

Lane Department of Computer Science and Electrical Engineering

Committee Chair

Roy Nutter.

Abstract

Current computer forensic practices primarily advise analysts to review and search all digital evidence within designated labs. This practice does not take into account the possibility of encryption software being present on the suspect machine. As a result, possible evidence may become unrecoverable to the investigator. This paper will review the current standard operating procedures used by law enforcement, complications with current procedures with regard to encryption, and the design of a free to use utility for law enforcement to facilitate live analysis.

Recommended Citation

McCarty, Justin John III, "A Software Response to Hard Drive Encryption" (2009). Graduate Theses, Dissertations, and Problem Reports. 2829.
https://researchrepository.wvu.edu/etd/2829