Lessons Learned Developing a Visual Analytics Solution for Investigative Analysis of Scamming Activities

Jay Koven; Cristian Felix; Hossein Siadati; Markus Jakobsson; Enrico Bertini

doi:10.1109/TVCG.2018.2865023

Lessons Learned Developing a Visual Analytics Solution for Investigative Analysis of Scamming Activities

Jay Koven, Cristian Felix, Hossein Siadati, Markus Jakobsson, Enrico Bertini

Research output: Contribution to journal › Article › peer-review

Abstract

The forensic investigation of communication datasets which contain unstructured text, social network information, and metadata is a complex task that is becoming more important due to the immense amount of data being collected. Currently there are limited approaches that allow an investigator to explore the network, text and metadata in a unified manner. We developed Beagle as a forensic tool for email datasets that allows investigators to flexibly form complex queries in order to discover important information in email data. Beagle was successfully deployed at a security firm which had a large email dataset that was difficult to properly investigate. We discuss our experience developing Beagle as well as the lessons we learned applying visual analytic techniques to a difficult real-world problem.

Original language	English (US)
Article number	8440841
Pages (from-to)	225-234
Number of pages	10
Journal	IEEE Transactions on Visualization and Computer Graphics
Volume	25
Issue number	1
DOIs	https://doi.org/10.1109/TVCG.2018.2865023
State	Published - Jan 2019

Keywords

Email Forensics
Email Investigation
Visual Analytics

ASJC Scopus subject areas

Software
Signal Processing
Computer Vision and Pattern Recognition
Computer Graphics and Computer-Aided Design

Access to Document

10.1109/TVCG.2018.2865023

Cite this

@article{57a5d45290ec4555ac30f464964c61e8,

title = "Lessons Learned Developing a Visual Analytics Solution for Investigative Analysis of Scamming Activities",

abstract = "The forensic investigation of communication datasets which contain unstructured text, social network information, and metadata is a complex task that is becoming more important due to the immense amount of data being collected. Currently there are limited approaches that allow an investigator to explore the network, text and metadata in a unified manner. We developed Beagle as a forensic tool for email datasets that allows investigators to flexibly form complex queries in order to discover important information in email data. Beagle was successfully deployed at a security firm which had a large email dataset that was difficult to properly investigate. We discuss our experience developing Beagle as well as the lessons we learned applying visual analytic techniques to a difficult real-world problem.",

keywords = "Email Forensics, Email Investigation, Visual Analytics",

author = "Jay Koven and Cristian Felix and Hossein Siadati and Markus Jakobsson and Enrico Bertini",

note = "Publisher Copyright: {\textcopyright} 1995-2012 IEEE.",

year = "2019",

month = jan,

doi = "10.1109/TVCG.2018.2865023",

language = "English (US)",

volume = "25",

pages = "225--234",

journal = "IEEE Transactions on Visualization and Computer Graphics",

issn = "1077-2626",

publisher = "IEEE Computer Society",

number = "1",

}

TY - JOUR

T1 - Lessons Learned Developing a Visual Analytics Solution for Investigative Analysis of Scamming Activities

AU - Koven, Jay

AU - Felix, Cristian

AU - Siadati, Hossein

AU - Jakobsson, Markus

AU - Bertini, Enrico

PY - 2019/1

Y1 - 2019/1

N2 - The forensic investigation of communication datasets which contain unstructured text, social network information, and metadata is a complex task that is becoming more important due to the immense amount of data being collected. Currently there are limited approaches that allow an investigator to explore the network, text and metadata in a unified manner. We developed Beagle as a forensic tool for email datasets that allows investigators to flexibly form complex queries in order to discover important information in email data. Beagle was successfully deployed at a security firm which had a large email dataset that was difficult to properly investigate. We discuss our experience developing Beagle as well as the lessons we learned applying visual analytic techniques to a difficult real-world problem.

AB - The forensic investigation of communication datasets which contain unstructured text, social network information, and metadata is a complex task that is becoming more important due to the immense amount of data being collected. Currently there are limited approaches that allow an investigator to explore the network, text and metadata in a unified manner. We developed Beagle as a forensic tool for email datasets that allows investigators to flexibly form complex queries in order to discover important information in email data. Beagle was successfully deployed at a security firm which had a large email dataset that was difficult to properly investigate. We discuss our experience developing Beagle as well as the lessons we learned applying visual analytic techniques to a difficult real-world problem.

KW - Email Forensics

KW - Email Investigation

KW - Visual Analytics

UR - http://www.scopus.com/inward/record.url?scp=85052659153&partnerID=8YFLogxK

UR - http://www.scopus.com/inward/citedby.url?scp=85052659153&partnerID=8YFLogxK

U2 - 10.1109/TVCG.2018.2865023

DO - 10.1109/TVCG.2018.2865023

M3 - Article

C2 - 30136969

AN - SCOPUS:85052659153

SN - 1077-2626

VL - 25

SP - 225

EP - 234

JO - IEEE Transactions on Visualization and Computer Graphics

JF - IEEE Transactions on Visualization and Computer Graphics

IS - 1

M1 - 8440841

ER -

Lessons Learned Developing a Visual Analytics Solution for Investigative Analysis of Scamming Activities

Abstract

Keywords

ASJC Scopus subject areas

Access to Document

Other files and links

Fingerprint

Cite this