IoT Forensic Challenge, 2017-2018

Internet of Things (IoT) are, very generally, network and Internet connected devices usually for the purpose of monitoring and automation tasks. Consumer-grade “Smart” devices are increasing in popularity and scope. These devices and the data they collect are potentially interesting for digital investigations, but also come with a number of new investigation challenges.

This challenge seeks to advance the state-of-the-art in IoT forensics by focusing the community’s attention on this emerging domain.

Scenario

A woman (Betty) has been murdered. The murder was called in by Betty’s husband (Simon), who claims to have been at home at the time. Additional case details can be found here. Your job is to analyze these artifacts for forensically interesting information.

Time Zone: UTC+9

Responders acquired the following data:

All acquired data can be downloaded from here. We recommend using a download manager like uGet since the compressed mobile images are 3GB.

Challenge

This DFRWS Forensic Challenge aspires to motivate new approaches to forensic analysis and has four levels of participation:

  1. Evaluating and Expressing Conclusions: Formally evaluating and expressing the probability or likelihood ratio that the husband killed his wife versus some other unknown person.
  2. Device Level Analysis: Developing methods and tools to forensically process digital traces generated by IoT devices, including on mobile devices.
  3. Network and Cloud Level Analysis: Developing methods and tools to forensically process digital traces generated by IoT devices on networks and cloud systems.
  4. Correlation and Analysis: Developing methods and supporting tools that combine information from various data sources and automatically compute, visualize, or otherwise expose patterns of potential interest.

Submissions

Good luck!