Drone forensics
AdityaWibisono14
1,233 views
11 slides
Jul 27, 2021
Slide 1 of 11
1
2
3
4
5
6
7
8
9
10
11
About This Presentation
As drones continue to advance in capabilities
and come into wider and wider use by both
legitimate users and by malicious actors, it is
essential that law enforcement, corrections,
security and military professionals increase
their levels of knowledge and preparedness
regarding drone threats, includ...
Slide Content
Drone
Forensics
ADITYA WIBISONO KUNCORO
by David Kovar and Joel Bollo
ISLAMIC UNIVERSITY OF INDONESIA
Forensics
ADITYA WIBISONO KUNCORO
by David Kovar and Joel Bollo
ISLAMIC UNIVERSITY OF INDONESIA
Popularity of Drone for several years
The risk and threats
Malicious actors reversed on the Unmanned Aerial
Vehicles
Investigating over drones incidents
UAV creates new forensics for challanges and
opportunities for researchers
Drone
Forensics
WHAT'S IN TOPIC
The risk and threats
Malicious actors reversed on the Unmanned Aerial
Vehicles
Investigating over drones incidents
UAV creates new forensics for challanges and
opportunities for researchers
Drone
Forensics
WHAT'S IN TOPIC
Popularity of Drone for several
years
Now among both hobbyists and professionals in a range industries, producing
stunning videography, superb survey maps and increasing tempo on interference
with manned aircraft operations.
years
Now among both hobbyists and professionals in a range industries, producing
stunning videography, superb survey maps and increasing tempo on interference
with manned aircraft operations.
The art and science
of UAV or Drone
forensics is
at the point where
mobile device
forensics was
10 years ago.
of UAV or Drone
forensics is
at the point where
mobile device
forensics was
10 years ago.
We must be able to analyze all of the
components, not just the drone, or the
mobile device, or the remote controller
Machine learning, artificial intelligence,
and the use swarms, are coming or are
already in use, the classic dual use
technology problem
for others to operationalize
Non-state, state, academic, and
commercial
organizations are all creating new
capabilities and demonstrating
possibilities
There are many vendors other than DJI,
in their home built drones
The Risk The Threats
3D printing, a global supply bin, "maker
spaces", and hackers will all help
enable one off, custom, or heavilty
modified drones that challenge our
ability to extract and analyze data and
other forensics evidence
components, not just the drone, or the
mobile device, or the remote controller
Machine learning, artificial intelligence,
and the use swarms, are coming or are
already in use, the classic dual use
technology problem
for others to operationalize
Non-state, state, academic, and
commercial
organizations are all creating new
capabilities and demonstrating
possibilities
There are many vendors other than DJI,
in their home built drones
The Risk The Threats
3D printing, a global supply bin, "maker
spaces", and hackers will all help
enable one off, custom, or heavilty
modified drones that challenge our
ability to extract and analyze data and
other forensics evidence
Where is the Data ?
Physical
Evidence is on the physical
devices, the drone,
thebatteries, the sensor, the
remote controller, the ground
controll station, and on any
computers used to maintain
the drone or process its data
Process Flow
the data after the flight.
Derives from how an operator
prepares for a flight, conducts
it, and manages
and systems on the Internet.
Communication between
the drone,
the environment, its
supporting systems,
Physical
Evidence is on the physical
devices, the drone,
thebatteries, the sensor, the
remote controller, the ground
controll station, and on any
computers used to maintain
the drone or process its data
Process Flow
the data after the flight.
Derives from how an operator
prepares for a flight, conducts
it, and manages
and systems on the Internet.
Communication between
the drone,
the environment, its
supporting systems,
What Data is Available ?
THE MOBILE DEVICE USUALLY HAS A LESS ROBUST VERSION OF THE DATA ON THE
DRONE BUT ADDS MORE INFORMATION ABOUT THE USER’S ACTIONS, SUCH AS
SETTING WAYPOINTS AND CHANGING VIEWS IN THE APPLICATION.
Serial number of the
aircraft and
some components
Version numbers for
critical firmware
State change information such as
launch/
land, manual/waypoint operation, GPS
available or unavailable
Geo-location information for
critical locations
– launch, land, and home point
Flight track information
THE MOBILE DEVICE USUALLY HAS A LESS ROBUST VERSION OF THE DATA ON THE
DRONE BUT ADDS MORE INFORMATION ABOUT THE USER’S ACTIONS, SUCH AS
SETTING WAYPOINTS AND CHANGING VIEWS IN THE APPLICATION.
Serial number of the
aircraft and
some components
Version numbers for
critical firmware
State change information such as
launch/
land, manual/waypoint operation, GPS
available or unavailable
Geo-location information for
critical locations
– launch, land, and home point
Flight track information
Actors reversed on
the Unmanned Aerial
Vehicles (UAV)
DJI
is a Chinese technology company
headquartered in Shenzhen, Guangdong with
factories spread all over the world. DJI is
renowned as a manufacturer of drones for
videography and aerial photography.
the Unmanned Aerial
Vehicles (UAV)
DJI
is a Chinese technology company
headquartered in Shenzhen, Guangdong with
factories spread all over the world. DJI is
renowned as a manufacturer of drones for
videography and aerial photography.
Kovar & Associates purchased a DJI Mavic drone from a police auction site in the U.S.
It arrived intact but with signs that someone had started to disassemble it but stopped.
Continuing the process, we extracted an intact micro SD card and found over 30 flight
logs on the card, valuable evidence of where and how it had been operated. Many law
enforcement agencies are not aware of the volume and value of data present on drones
and on the supporting devices, so greater awareness is needed. Widely used mobile
forensic tools like XRY and Cellebrite now support drone forensics for many of the
most popular models.
INVESTIGATING OVER DRONES
INCIDENTS
It arrived intact but with signs that someone had started to disassemble it but stopped.
Continuing the process, we extracted an intact micro SD card and found over 30 flight
logs on the card, valuable evidence of where and how it had been operated. Many law
enforcement agencies are not aware of the volume and value of data present on drones
and on the supporting devices, so greater awareness is needed. Widely used mobile
forensic tools like XRY and Cellebrite now support drone forensics for many of the
most popular models.
INVESTIGATING OVER DRONES
INCIDENTS
via a mountable filesystem.
For forensically sound extraction the
card could be physically removed and imaged.
Alternatively, the drone could be put in “flight
data mode” and the files would be available
accessible via flight data mode.
Further investigation determined that
the log files had been moved to storage on the
flight controller and that they were no longer
option for extracting flight logs.
It is expected that this change in the user’s
ability to access flight logs on their own aircraft
will extend to some or all future models. If this
trend continues, exploits may be the best
Collecting
Evidence
from Drone
Forensics
For forensically sound extraction the
card could be physically removed and imaged.
Alternatively, the drone could be put in “flight
data mode” and the files would be available
accessible via flight data mode.
Further investigation determined that
the log files had been moved to storage on the
flight controller and that they were no longer
option for extracting flight logs.
It is expected that this change in the user’s
ability to access flight logs on their own aircraft
will extend to some or all future models. If this
trend continues, exploits may be the best
Collecting
Evidence
from Drone
Forensics
As drones continue to advance in capabilities
and come into wider and wider use by both
legitimate users and by malicious actors, it is
essential that law enforcement, corrections,
security and military professionals increase
their levels of knowledge and preparedness
regarding drone threats, including the art
and science of drone forensics.
David Kovar and Joel Bollo
and come into wider and wider use by both
legitimate users and by malicious actors, it is
essential that law enforcement, corrections,
security and military professionals increase
their levels of knowledge and preparedness
regarding drone threats, including the art
and science of drone forensics.
David Kovar and Joel Bollo
Tags
Categories
GeneralDownload
Download Slideshow Get the original presentation fileQuick Actions
Statistics
- Views 1,233
- Slides 11
- Age 1589 days
Related Slideshows
22
Pray For The Peace Of Jerusalem and You Will Prosper
RodolfoMoralesMarcuc
30 views
26
Don_t_Waste_Your_Life_God.....powerpoint
chalobrido8
32 views
31
VILLASUR_FACTORS_TO_CONSIDER_IN_PLATING_SALAD_10-13.pdf
JaiJai148317
30 views
14
Fertility awareness methods for women in the society
Isaiah47
29 views
35
Chapter 5 Arithmetic Functions Computer Organisation and Architecture
RitikSharma297999
26 views
5
syakira bhasa inggris (1) (1).pptx.......
ourcommunity56
28 views