Cargando…
Evidential value of country location evidence obtained from IP address geolocation
Knowledge of the previous location of an Internet device is valuable information in forensics. The previous device location can be obtained via the IP address that the device used to access Internet services, such as email, banking, and online shopping. However, the problem with the device location...
| Autor principal: | |
|---|---|
| Formato: | Online Artículo Texto |
| Lenguaje: | English |
| Publicado: |
PeerJ Inc.
2023
|
| Materias: | |
| Acceso en línea: | https://www.ncbi.nlm.nih.gov/pmc/articles/PMC10280408/ https://www.ncbi.nlm.nih.gov/pubmed/37346602 http://dx.doi.org/10.7717/peerj-cs.1305 |
| _version_ | 1785060787639812096 |
|---|---|
| author | Komosny, Dan |
| author_facet | Komosny, Dan |
| author_sort | Komosny, Dan |
| collection | PubMed |
| description | Knowledge of the previous location of an Internet device is valuable information in forensics. The previous device location can be obtained via the IP address that the device used to access Internet services, such as email, banking, and online shopping. However, the problem with the device location using its IP address is the unknown evidential value, which is used to admit the evidence in the case. This work introduces a method to process free and constantly updated data to assess the evidential value of the IP country location. The evidential value is assessed for several countries by analyzing historical data over 8 years. Tampering with the location evidence is discussed, as well as its detection. The source code to replicate the results and to apply the updated data to future evidence is available. |
| format | Online Article Text |
| id | pubmed-10280408 |
| institution | National Center for Biotechnology Information |
| language | English |
| publishDate | 2023 |
| publisher | PeerJ Inc. |
| record_format | MEDLINE/PubMed |
| spelling | pubmed-102804082023-06-21 Evidential value of country location evidence obtained from IP address geolocation Komosny, Dan PeerJ Comput Sci Computer Networks and Communications Knowledge of the previous location of an Internet device is valuable information in forensics. The previous device location can be obtained via the IP address that the device used to access Internet services, such as email, banking, and online shopping. However, the problem with the device location using its IP address is the unknown evidential value, which is used to admit the evidence in the case. This work introduces a method to process free and constantly updated data to assess the evidential value of the IP country location. The evidential value is assessed for several countries by analyzing historical data over 8 years. Tampering with the location evidence is discussed, as well as its detection. The source code to replicate the results and to apply the updated data to future evidence is available. PeerJ Inc. 2023-03-30 /pmc/articles/PMC10280408/ /pubmed/37346602 http://dx.doi.org/10.7717/peerj-cs.1305 Text en ©2023 Komosny https://creativecommons.org/licenses/by/4.0/This is an open access article distributed under the terms of the Creative Commons Attribution License (https://creativecommons.org/licenses/by/4.0/) , which permits unrestricted use, distribution, reproduction and adaptation in any medium and for any purpose provided that it is properly attributed. For attribution, the original author(s), title, publication source (PeerJ Computer Science) and either DOI or URL of the article must be cited. |
| spellingShingle | Computer Networks and Communications Komosny, Dan Evidential value of country location evidence obtained from IP address geolocation |
| title | Evidential value of country location evidence obtained from IP address geolocation |
| title_full | Evidential value of country location evidence obtained from IP address geolocation |
| title_fullStr | Evidential value of country location evidence obtained from IP address geolocation |
| title_full_unstemmed | Evidential value of country location evidence obtained from IP address geolocation |
| title_short | Evidential value of country location evidence obtained from IP address geolocation |
| title_sort | evidential value of country location evidence obtained from ip address geolocation |
| topic | Computer Networks and Communications |
| url | https://www.ncbi.nlm.nih.gov/pmc/articles/PMC10280408/ https://www.ncbi.nlm.nih.gov/pubmed/37346602 http://dx.doi.org/10.7717/peerj-cs.1305 |
| work_keys_str_mv | AT komosnydan evidentialvalueofcountrylocationevidenceobtainedfromipaddressgeolocation |