Collaborative Research: DASS: A Socio-Technical Framework for Handling Digital Evidence with Security and Privacy Assurances

Information

  • NSF Award
  • 2131509
Owner
  • Award Id
    2131509
  • Award Effective Date
    10/1/2021 - 3 years ago
  • Award Expiration Date
    9/30/2024 - 2 months ago
  • Award Amount
    $ 569,500.00
  • Award Instrument
    Standard Grant

Collaborative Research: DASS: A Socio-Technical Framework for Handling Digital Evidence with Security and Privacy Assurances

The ever-increasing use of digital devices in society is creating mounting privacy risks. Above all, complementary desires from technology companies and law enforcement to harness the vast troves of data stored on our devices are complicating privacy interests in seclusion, autonomy, and anonymity. Though data privacy has received significant attention from both technological and legal angles, the two scholarly perspectives rarely combine to expose the interdisciplinary dependencies and synergies inherent in this topic of growing significance to our society. Using the context of digital evidence collection, this project studies legal and technical angles to privacy and security concerns. From the technical side, the investigators study how the data can be searched in a more targeted fashion and how data can be kept from unauthorized alteration. From the legal side, new technical capabilities will motivate new scholarship on related topics. <br/><br/>The rise of digital evidence in criminal proceedings triggers two principal issues guiding this project. First, under the Fourth Amendment to the Constitution, judges often limit device searches to specific data relevant to the investigation, despite the complication that various types of data may be intermixed. Second, once law enforcement has collected digital evidence, they must guard against tampering and prevent privacy invasions by both “inside” and “outside” hackers. This project addresses these two sets of challenges through the following contributions: 1) Developing software that responds to legal directives (including warrant-based and consent-based restrictions governing the scope of digital searches) and retrieves only relevant evidence from a device containing intermingled data, using a combination of metadata-based analysis and natural language processing (NLP) techniques; 2) Addressing the ambiguity in natural language directives and the accuracy limitations of automatic classification, while considering legal and social consequences of violating privacy and conducting unauthorized searches; 3) Providing security mechanisms that preserve data confidentiality and detect data tampering; 4) Using blockchain technology to create immutable logs of all accesses to, and modification of, data stored by law enforcement; and 5) Further developing and applying formal verification techniques that reason about the security of the protocols implemented. In addition to enhancing digital forensics, the work is applicable to data practices in both government and industry, particularly in dealing with heterogeneous data and separating and securing data in contexts far beyond criminal proceedings. The project impacts several existing and new classes in terms of curriculum development, cutting across digital forensics, security, and data sciences.<br/><br/>This award reflects NSF's statutory mission and has been deemed worthy of support through evaluation using the Foundation's intellectual merit and broader impacts review criteria.

  • Program Officer
    Reggie Sheehanrsheehan@nsf.gov7032925389
  • Min Amd Letter Date
    9/1/2021 - 3 years ago
  • Max Amd Letter Date
    9/1/2021 - 3 years ago
  • ARRA Amount

Institutions

  • Name
    AUGUSTA UNIVERSITY RESEARCH INSTITUTE, INC.
  • City
    Augusta
  • State
    GA
  • Country
    United States
  • Address
    1120 Fifteenth Street
  • Postal Code
    309120004
  • Phone Number
    7067212592

Investigators

  • First Name
    Gagan
  • Last Name
    Agrawal
  • Email Address
    gagrawal@augusta.edu
  • Start Date
    9/1/2021 12:00:00 AM
  • First Name
    Hoda
  • Last Name
    Maleki
  • Email Address
    hmaleki@augusta.edu
  • Start Date
    9/1/2021 12:00:00 AM
  • First Name
    Gokila
  • Last Name
    Dorai
  • Email Address
    gdorai@augusta.edu
  • Start Date
    9/1/2021 12:00:00 AM

Program Element

  • Text
    DASS-Dsgng Accntble SW Systms

Program Reference

  • Text
    LS-Law and Science
  • Text
    PROGRAMMING LANGUAGES
  • Code
    7943
  • Text
    Formal Methods and Verification
  • Code
    8206