Registration Data Access Protocol (RDAP) for digital forensic investigators

Nikkel, Bruce (2017). Registration Data Access Protocol (RDAP) for digital forensic investigators Digital Investigation, 22, pp. 133-141. Elsevier 10.1016/j.diin.2017.07.002

Text
nikkel2017.pdf - Published Version
Restricted to registered users only
Available under License Publisher holds Copyright.
Download (1MB) | Request a copy

This paper describes the Registration Data Access Protocol (RDAP) with a focus on relevance to digital forensic investigators. RDAP was developed as the successor to the aging WHOIS system and is intended to eventually replace WHOIS as the authoritative source for registration information on IP addresses, Domain Names, Autonomous Systems, and more. RDAP uses a RESTful interface over HTTP and introduces a number of new features related to security, internationalization, and standardized query/response definitions. It is important for digital forensic investigators to become familiar with RDAP as it will play an increasingly important role in Internet investigations requiring the search and collection of registration data as evidence.

Item Type:	Journal Article (Original Article)
Division/Institute:	School of Engineering and Computer Science > Research Institute for the Security in the Information Society RISIS School of Engineering and Computer Science > Institute for Cybersecurity & Engineering (ICE)
Name:	Nikkel, Bruce
ISSN:	1742-2876
Publisher:	Elsevier
Language:	English
Submitter:	Bruce Nikkel
Date Deposited:	07 Apr 2020 12:44
Last Modified:	07 Apr 2020 12:44
Publisher DOI:	10.1016/j.diin.2017.07.002
ARBOR DOI:	10.24451/arbor.10328
URI:	https://arbor.bfh.ch/id/eprint/10328

Actions (login required)

View Item

ARBOR

Registration Data Access Protocol (RDAP) for digital forensic investigators

Item Type:

Division/Institute:

Name:

ISSN:

Publisher:

Language:

Submitter:

Date Deposited:

Last Modified:

Publisher DOI:

ARBOR DOI:

URI:

Actions (login required)