Unmanned Aerial Vehicle Digital Forensic Investigation Framework

Yıl 2018, Cilt: 14 Sayı: 1, 32 - 53, 30.04.2018

İbrahim Gülataş Selçuk Baktır

Öz

The Unmanned Aerial Vehicle (UAV) technology is a
rapidly emerging technology and it has found widespread usage. While UAVs are
still in their development phase without any existing commonly accepted
standards for their underlying technologies and their forensic investigation,
they have an increasing record of criminal usage. This urges the research
community to develop techniques to detect and prevent illegal usage of UAVs. With
this work, we present a seven-phase UAV digital forensics investigation
framework to standardize the investigation process for UAVs. We tested our framework
on the DJI Phantom III Professional UAV which is one of the most popular
commercial UAVs in the market. We found three kinds of forensic artifacts on
the sample UAV and these artifacts examined deeply. Two of the artifacts are
log files stored as binary files and the other artifact is the EXIF header of
the images that are captured by UAV's onboard camera. The log files of the UAV
has a proprietary data structure. By reverse engineering this data structure,
we able to derive the flight paths for all the flights taken by the
investigated UAV.

Anahtar Kelimeler

Digital Forensic Investigation, Embedded Devices Forensics, Unmanned Aerial Vehicle Forensics

Kaynakça

• Association of Chief Police Officers (ACPO) (n.d.) The Principles of Digital Evidence. Retrieved from http://www.computerforensicsspecialists.co.uk/blog/the-principles-of-digital-evidence (Access Date: 29.04.2018). (Internet Sources).
• Bart, J. (2015). Small Drone Crashes Near White House Despite Ban Against Flights in D.C. Retrieved from https://www.usatoday.com/story/news/2015/10/09/drone-crash-white-house-ellipse-us-park-police-federal-aviation-administration/73641812/ (Access Date: 29.04.2018). (Internet Sources).
• Bellamy, W. (2017). US Now Has 60,000 Part 107 Drone Pilots. Retrieved from http://www.aviationtoday.com/2017/09/07/us-now-60000-part-107-drone-pilots/ (Access Date: 16.04.2018). (Internet Sources).
• Bristeau, P. J., Callou, F., Vissiere, D., & Petit, N. (2011). The navigation and control technology inside the ar. drone micro uav. IFAC Proceedings Volumes, 44(1), 1477-1484.
• Clarke, R. (2014). Understanding the drone epidemic. Computer Law & Security Review, 30(3), 230-246.
• Clark, D., Meffert, C., Baggili, I., & Breitinger, F. (2017). DROP (DRone Open source Parser) your drone: Forensic analysis of the DJI Phantom III. Digital Investigation, 22S3-S14. doi:10.1016/j.diin.2017.06.013.
• Cracknell, A. P. (2017). UAVs: regulations and law enforcement. International Journal Of Remote Sensing, 38(8-10), 3054-3067.
• Divya, J. (2017). Here Are The World's Largest Drone Companies And Manufacturers To Watch And Invest In. Retrieved from http://www.businessinsider.com/top-drone-manufacturers-companies-invest-stocks-2017-07 (Access Date: 29.04.2018). (Internet Sources).
• DJI Company (2016) DJI Phantom III Professional User Manual
• DJI (company). (n.d.). In Wikipedia. Retrieved April 29, 2018, fromhttps://en.wikipedia.org/wiki/DJI_(company). (Internet Sources).
• FAA Aerospace Forecasts 2018 - 38. pp. 39 - 45.
• Gregg, P. (2018). Drone vs UAV - What is The Difference. Retrieved from https://wiki.ezvid.com/m/drone-vs-uav-what-is-the-difference-_2FJYp_SrUkP- (Access Date: 16.04.2018). (Internet Sources).
• Hartzler, V. (2018, January 30). Terror from the skies: The drones are coming. Hill. p. 20.
• Horsman, G. (2016). Unmanned aerial vehicles: A preliminary analysis of forensic challenges. Digital Investigation, 16, 1-11.
• Jain, U., Rogers, M., & Matson, E. T. (2017, March). Drone forensic framework: Sensor and data identification and verification. In Sensors Applications Symposium (SAS), 2017 IEEE (pp. 1-6). IEEE.
• Kovar, D., Dominguez, G., & Murphy, C. (2016). UAV (aka drone) Forensics. Slides of a talk given at SANS DFIR summit in Austin, TX July, 7.
• Lim, K. S., & Lee, S. (2008, December). A methodology for forensic analysis of embedded systems. In Future Generation Communication and Networking, 2008. FGCN'08. Second International Conference on (Vol. 2, pp. 283-286). IEEE.
• Maarse, M., Sangers, L., van Ginkel, J., & Pouw, M. (2016). Digital forensics on a DJI Phantom 2 Vision+ UAV. MSc System and Network Engineering, University of Amsterdam.
• Maddox, S., & Stuckenberg, D. (2015). Drones In The U.S. National Airspace System: A safety and security assessment. Harvard Law School National Security Journal.
• Ravich, T. M. (2015). Courts In The Drone Age. Northern Kentucky Law Review, 42(2), 161.
• Samland, F., Fruth, J., Hildebrandt, M., Hoppe, T., & Dittmann, J. (2012, January). AR. Drone: security threat analysis and exemplary attack to track persons. In Intelligent Robots and Computer Vision XXIX: Algorithms and Techniques (Vol. 8301, p. 83010G). International Society for Optics and Photonics.
• Scientific Working Group on Digital Evidence (SWGDE) and International Organization on Digital Evidence (IOCE) (2000), Digital Evidence: Standards and Principles. Retrieved from https://archives.fbi.gov/archives/about-us/lab/forensic-science-communications/fsc/april2000/swgde.htm (Access Date: 29.04.2018). (Internet Sources).
• Steve, D. (2017). There are Over 770,000 Registered Drone Owners in The US. Retrieved from https://www.engadget.com/2017/03/28/there-are-over-770-000-registered-drone-owners-in-the-us/(Access Date: 16.04.2018). (Internet Sources).
• U.S. Army (2005) Unmanned Aerial System (UAS) Roadmap 2005-2030.
• Valavanis, K. P., & Vachtsevanos, G. J. (2014). The handbook of Unmanned Aircraft Vehicle.
• Valjarevic, A., & Venter, H. S. (2016). Introduction of concurrent processes into the digital forensic investigation process. Australian Journal Of Forensic Sciences, 48(3), 339-357. doi:10.1080/00450618.2015.1052754
• Yue, W. (2016). As China's Drone Market Takes Off, Leader DJI Still Flies Far Above The Competition. Retrieved from https://www.forbes.com/sites/ywang/2016/05/12/chinas-flood-of-cheap-flying-cameras-is-little-threat-to-dajiang/#694e401b1869 (Access Date: 29.04.2018). (Internet Sources).
• OpenWRT. (n.d.). Retrieved April 29, 2018, fromhttps://wiki.openwrt.org/doc/barrier.breaker . (Internet Sources).
• VoidSec. (n.d.). Hacking The DJI Phantom III. Retrieved from https://voidsec.com/hacking-dji-phantom-3/ (Access Date: 29.04.2018). (Internet Sources).
• Conte, T. M., & Wolfe, A. (2014). Conte, Thomas Martin, and Andrew Wolfe. "Techniques for detecting encrypted data." U.S. Patent No. 8,799,671. Washington, DC: U.S. Patent and Trademark Office.