An analysis of anti-forensic techniques, with a consideration of the future of digital forensics

  • This piece was written over a year ago. It may no longer accurately reflect my views now, or may be factually outdated.

This essay was written for the Information System Forensic Investigation module (SCC.443) of my MSc. It achieved a grade of Pass.

Abstract

In this essay, the various types of anti-forensic techniques are categorised and example tools of each given. Then, the three that are considered to pose the greatest threat to the forensic analyst and their work are further analysed, along with the responses to each from the digital forensics community. Finally, possible futures for forensics and anti-forensics are suggested. Whilst the use of anti-forensic tools is examined from the point-of-view of a criminal user attempting to evade law enforcement, it is worth noting that such tools can also be used to protect activists from prosecution by authoritarian regimes where such a regime is still nonetheless bound by a need to present evidence to back their charges, and to protect their connections and allies where such a regime is not.

Read