The increasing number of mobile devices being submitted to Digital Forensic Laboratories (DFLs) is creating a backlog that can hinder investigations and negatively impact public safety and the criminal justice system. In a military context, delays in extracting intelligence form mobile devices can negatively impact troop and civilian safety as well as the overall mission. To address this problem, there is a need for more effective on-scene triage methods and tools to provide investigators with information in a timely manner, and to reduce the number of devices that are submitted to DFLs for analysis. Existing tools that are promoted for on-scene triage actually attempt to fulfill the needs of both on-scene triage and in-lab forensic examination in a single solution. On-scene triage has unique requirements because it is a precursor to and distinct from the forensic examination process, and may be performed by mobile device technicians rather than forensic analysts. This presentation introduces the on-scene triage process, placing it firmly in the overall forensic handling process and providing guidelines for standardization of on-scene triage. In addition, this presentation outlines basic requirements for automated triage tools.

Bio:
Richard P. Mislan

Richard is a professor at Purdue University specializing in the area of Cyber Forensics.  Richard's areas of research include Small-Scale Digital Device Forensics, Unusual Sources of Digital Evidence, Mobile Malware and Spyware, and the Application of Artificial Intelligence Techniques for Improving Efficiency in Cyber Forensics.  He is also a faculty member with the Center for Education and Research in Information Assurance and Security (CERIAS).

He has authored numerous articles in the area of Small Scale Digital Device Forensics, serves as co-editor for the Small Scale Digital Device Forensics Journal, and acts as a reviewing editor for the National Institute of Standards and Technology (NIST) on Guidelines for Cellphone Forensics, Guidelines for PDA Forensics, Cell Phone Forensic Tools, and PDA Forensic Tools.  Richard is in the process of completing his doctoral dissertation, preparing for ultimate online resource for his course in Small Scale Digital Device Forensics, and planning the annual Mobile Forensics World Conference.