image: The Purdue Toolkit for Selective Analysis and Reconstruction of Files (FileTSAR) brings together in one complete package the top open source investigative tools used by digital forensic law enforcement teams. view more
Credit: Kathryn Seigfried-Spellar/Purdue University
WEST LAFAYETTE, Ind. - A growing number of law enforcement agencies from across the world want to use Purdue University technology to help them track down cybercriminals with a toolkit that also can help companies stop insider threats and technology-facilitated abuse.
Purdue cybersecurity experts developed the all-in-one toolkit, called the Toolkit for Selective Analysis and Reconstruction of Files (FileTSAR), to help detectives solve cybercrimes.
"FileTSAR allows forensic investigators to capture, selectively analyze and reconstruct files from network traffic," said Kathryn Seigfried-Spellar, an associate professor of computer and information technology in the Purdue Polytechnic Institute, who helps lead the research team. "The main functions of this tool are capturing data flows and providing a mechanism to selectively reconstruct documents, images, email and VoIP conversations."
VoIP is Voice over Internet Protocol, a means of making phone calls.
Seigfried-Spellar said the toolkit could be used to uncover any network traffic that may be relevant to a case, including employees who are sending out trade secrets.
The Purdue toolkit brings together in one complete package the top open source investigative tools used by digital forensic law enforcement teams at the local, state, national and global levels.
More than 100 law enforcement agencies from across the world have requested access to the technology, which is being licensed through the Purdue Research Foundation Office of Technology Commercialization. OTC is working to process the requests. For more information on licensing the technology, contact Matt Halladay from OTC at mrhalladay@prf.org and mention track code 2018-SEIG-68068.
"Knowing that we created an affordable tool that will help law enforcement with their network forensic investigations is incredibly rewarding," Seigfried-Spellar said.
The Purdue team developed its Toolkit for Selective Analysis and Reconstruction of Files (FileTSAR) by collaborating with law enforcement agencies from around the country, including the High Tech Crime Unit of Tippecanoe County, Indiana. The HTCU is housed in Purdue's Discovery Park.
The project was funded by the National Institute of Justice and made available for three years to law enforcement agencies.
###
About Purdue Research Foundation Office of Technology Commercialization
The Purdue Research Foundation Office of Technology Commercialization operates one of the most comprehensive technology transfer programs among leading research universities in the U.S. Services provided by this office support the economic development initiatives of Purdue University and benefit the university's academic activities through commercializing, licensing and protecting Purdue intellectual property. The office recently moved into the Convergence Center for Innovation and Collaboration in Discovery Park District. The office is managed by the Purdue Research Foundation, which received the 2019 Innovation and Economic Prosperity Universities Award for Place from the Association of Public and Land-grant Universities. The Purdue Research Foundation is a private, nonprofit foundation created to advance the mission of Purdue University. Visit the Office of Technology Commercialization for more information or contact otcip@prf.org.
Writer: Chris Adam, 765-588-3341, cladam@prf.org
Source: Kathryn Seigfried-Spellar, kspellar@purdue.edu