Date Added: May 2010
The investigation of peer-To-peer (p2p) file sharing networks is now of critical interest to law enforcement. P2P networks are extensively used for sharing and distribution of contraband. The authors detail the functionality of two p2p protocols, Gnutella and BitTorrent, and describe the legal issues pertaining to investigating such networks. They present an analysis of the protocols focused on the items of particular interest to investigators, such as the value of evidence given its provenance on the network. They also report the development of RoundUp, a tool for Gnutella investigations that follows the principles and techniques they detail for networking investigations.