Difference between revisions of "Blackberry Forensics"

From Forensics Wiki
Jump to: navigation, search
Line 1: Line 1:
 
'''Working Title:'''
 
'''Working Title:'''
Forensics of a RIM Blackberry Device
+
Forensics of a RIM Blackberry Device<br>
John B. Powers and Richard P. Mislan
+
John B. Powers and Richard P. Mislan<br>
 
+
<br><br>
 
'''Date:'''  
 
'''Date:'''  
March 2006
+
March 2006<br>
 
+
<br><br>
 
'''Outline:'''
 
'''Outline:'''
RIM Devices (OS, Specs, etc.)
+
RIM Devices (OS, Specs, etc.)<br>
Hardware and Software Tools
+
Hardware and Software Tools<br>
Acquisition Process
+
Acquisition Process<br>
Preservation of Evidence
+
Preservation of Evidence<br>
Analysis of Evidence
+
Analysis of Evidence<br>
Presentation of Evidence
+
Presentation of Evidence<br>
Blackberry Simulator, Microsoft Outlook, others…
+
Blackberry Simulator, Microsoft Outlook, others…<br>
Conclusions
+
Conclusions<br>
 
+
<br><br>
 
+
 
+
 
+
 
+
 
+
 
'''''Notes:'''''
 
'''''Notes:'''''
 
Ideally, I’d like to get as many newer devices, but we’ll have to start with what we have…If anyone wants to donate one...let us know!!!
 
Ideally, I’d like to get as many newer devices, but we’ll have to start with what we have…If anyone wants to donate one...let us know!!!
 
[mailto:rmislan@purdue.edu]
 
[mailto:rmislan@purdue.edu]

Revision as of 13:46, 27 February 2006

Working Title: Forensics of a RIM Blackberry Device
John B. Powers and Richard P. Mislan


Date: March 2006


Outline: RIM Devices (OS, Specs, etc.)
Hardware and Software Tools
Acquisition Process
Preservation of Evidence
Analysis of Evidence
Presentation of Evidence
Blackberry Simulator, Microsoft Outlook, others…
Conclusions


Notes: Ideally, I’d like to get as many newer devices, but we’ll have to start with what we have…If anyone wants to donate one...let us know!!! [1]