Difference between pages "Apple iPhone" and "Basic Security Module (BSM) file format"

From ForensicsWiki
(Difference between pages)
Jump to: navigation, search
(Publications)
 
(Created page with "{{expand}} The Basic Security Module (BSM) file format originates from the Sun Solaris operating system and has been adopted in various forms by BSD Unix, Mac O...")
 
Line 1: Line 1:
The '''iPhone''' is a smartphone made by [[Apple Inc.]] and sold with service through AT&T. It can be used to send/receive [[email]] (see [[IPhone Mail Header Format]]), keep schedules, surf the web, and view videos from YouTube. A large number of forensic products can process iPhones, such as [[Oxygen Forensic Suite 2010]].
+
{{expand}}
  
In December 2009, Nicolas Seriot presented ([http://seriot.ch/resources/talks_papers/iPhonePrivacy.pdf PDF]) a harvesting application, [http://github.com/nst/spyphone SpyPhone]. This application grabs data as sensitive as location data and a cache of keyboard words. It neither requires jailbreaking nor makes Private API calls (which Apple's App Store does not allow in any application it distributes).
+
The Basic Security Module (BSM) file format originates from the [[Solaris|Sun Solaris]] operating system and has been adopted in various forms by BSD Unix, [[Mac OS X]] included.
 +
 
 +
== External Links ==
 +
* [http://en.wikipedia.org/wiki/OpenBSM Wikipedia: OpenBSM]
 +
* [https://developer.apple.com/library/mac/documentation/Darwin/Reference/ManPages/man5/audit.log.5.html audit -- Basic Security Module (BSM) file format], Mac Developer Library
 +
* [http://www.opensource.apple.com/source/xnu/xnu-1456.1.26/bsd/security/audit/audit_bsm_token.c?txt audit_bsm_token.c], Apple Open Source
  
 
== Tools ==
 
== Tools ==
* [http://code.google.com/p/iphone-dataprotection/ iphone Data Protection] is a set of tools that can image and decrypt an iPhone. The tools can even brute-force the iPhone's 4-digit numerical password.
+
=== praudit ===
 +
* [http://www.trustedbsd.org/openbsm.html OpenBSM], Open Source Basic Security Module (BSM) Audit Implementation
 +
* [http://sourceforge.net/projects/linuxbsm/ linuxbsm], The Linux Basic Security Module; The Linux BSM is an auditing tool that aims to bring the capabilities of Sun's Solaris Basic Security Module to Linux.
 +
* [http://sourceforge.net/projects/linuxbsm2/ linuxbsm2], LinuxBSM-2; LinuxBSM-2 introduces auditing features in Linux kernel to achieve better security and keep an eye on system activities.
 +
* [https://code.google.com/p/linuxopenbsm/ linuxopenbsm], Linux Basic Security Module
  
* [http://www.iosresearch.org Jonathan Zdziarski] has released tools that will image iPhones, iPads and iPod Touch. (law enforcement only).
+
[[Category:File Formats]]
 
+
* [http://www.libimobiledevice.org/ libimobiledevice] is a library with utilities for backing up iPhones. The output format is an iTunes-style backup that can be examined with traditional tools.  They are available in the Debian-testing packages '''libimobiledevice''' and '''libimobiledevice-utils'''.
+
 
+
== Publications ==
+
 
+
* Gómez-Miralles, Arnedo-Moreno. [http://openaccess.uoc.edu/webapps/o2/bitstream/10609/11862/1/iPadForensics.pdf  Versatile iPad forensic acquisition using the Apple Camera Connection Kit.] Computers And Mathematics With Applications, Volume 63, Issue 2, 2012, pp.544-553.
+
 
+
== External Links ==
+
* [http://www.apple.com/iphone/ Official web site]
+
* [http://github.com/nst/spyphone SpyPhone].  Noted on [http://it.slashdot.org/story/09/12/04/0413235/Malware-Could-Grab-Data-From-Stock-iPhones?from=rss&utm_source=feedburner&utm_medium=feed&utm_campaign=Feed%3A+Slashdot%2Fslashdot+%28Slashdot%29 Slashdot].
+
* [http://viaforensics.com/education/white-papers/iphone-forensics/ iPhone Forensics White Paper] was originally published in 2009 and updated in November 2010.  It review 13 iOS forensic tools and provides detailed information on the results.
+

Revision as of 15:28, 16 December 2013

Information icon.png

Please help to improve this article by expanding it.
Further information might be found on the discussion page.

The Basic Security Module (BSM) file format originates from the Sun Solaris operating system and has been adopted in various forms by BSD Unix, Mac OS X included.

External Links

Tools

praudit

  • OpenBSM, Open Source Basic Security Module (BSM) Audit Implementation
  • linuxbsm, The Linux Basic Security Module; The Linux BSM is an auditing tool that aims to bring the capabilities of Sun's Solaris Basic Security Module to Linux.
  • linuxbsm2, LinuxBSM-2; LinuxBSM-2 introduces auditing features in Linux kernel to achieve better security and keep an eye on system activities.
  • linuxopenbsm, Linux Basic Security Module