National Software Reference Library: Difference between revisions

Browse history interactively

← Previous edit

Content deleted Content added

VisualWikitext

Revision as of 20:35, 1 September 2010 edit ErrantX (talk \| contribs) Administrators 21,974 edits add reference for that ← Previous edit		Latest revision as of 16:38, 17 August 2023 edit undo Citation bot (talk \| contribs) Bots 5,868,548 edits Add: s2cid. \| Use this bot. Report bugs. \| Suggested by Whoop whoop pull up \| #UCB_webform 1097/1152
(27 intermediate revisions by 18 users not shown)
Line 1: {{Infobox organization \|name = National Software Reference Library The '''National Software Reference Library''' (NSRL), a project of the [[National Institute of Standards and Technology]], is supported by the [[United States Department of Justice]]'s [[National Institute of Justice]], federal, state, and local law enforcement, and the [[National Institute of Standards and Technology]] to promote efficient and effective use of [[computer]] technology in the [[Digital forensics\|forensic investigation]] of [[crime]]s involving computers. \|image = NRSL_logo.gif \|abbreviation = NSRL \|motto = \|formation = \|extinction = \|type = GO \|parent_organization = [[National Institute of Standards and Technology\|NIST]] \|website = http://www.nsrl.nist.gov/ }} The '''National Software Reference Library''' (NSRL), is a project of the [[National Institute of Standards and Technology]] (NIST) which maintains a repository of known software, file profiles and file signatures for use by law enforcement and other organizations involved with computer forensic investigations. The project is supported by the [[United States Department of Justice]]'s [[National Institute of Justice]], the [[Federal Bureau of Investigation]] (FBI), [[Defense Computer Forensics Laboratory]] (DCFL), the [[U.S. Customs Service]], software vendors, and state and local law enforcement.<ref name=NSRL-RDS>{{cite web\|title=NIST Special Database 28 (RDS)\|url=https://www.nist.gov/srd/nistsd28.cfm\|work=National Software Reference Library (NSRL)\|date=27 August 2010 \|publisher=[[National Institute of Standards and Technology]]\|accessdate=7 April 2012}}</ref> It also provides a research environment for computational analysis of large sets of files.<ref>{{cite web\|last1=White\|first1=Doug\|last2=Owens\|first2=Trevor\|title=Life-Saving: The National Software Reference Library\|url=https://blogs.loc.gov/digitalpreservation/2012/05/life-saving-the-national-software-reference-library/\|website=The Signal: The Library of Congress Digital Preservation Blog\|publisher=The Library of Congress\|accessdate=16 January 2016\|date=May 4, 2012}}</ref> ==Components== The NSRL collects [[software]] from various sources and incorporates file profiles computed from this software into a Reference Data Set (RDS) of information. The RDS can be used to review files on a computer by matching file profiles in the RDS. This will help alleviate much of the effort involved in determining which files are important as [[evidence]] on computers or file systems that have been seized as part of criminal investigations.▼ The NSRL is made up of three major elements:<ref name="mead" /> # A large physical collection of commercial software packages (e.g., [[operating systems]], off-the-shelf application software); # A database containing detailed information, or [[metadata]], about each file that makes up each of those software packages; # A smaller public dataset containing the most widely used metadata for each file in the collection that is published and updated quarterly. This is called the ''Reference Data Set''. ==Reference Data Set== The RDS is a collection of [[message digest]]s of known, traceable software applications. There are application [[hash function]] values in the hash set which may be considered malicious, i.e. [[steganography]] tools and [[hack (technology slang)\|hacking]] scripts. NIST maintains a collection of original software media in order to provide repeatability of the calculated hash values, ensuring admissibility of this data in [[court]]. ▲The NSRL collects [[software]] from various sources and ~~incorporates~~computes ~~file~~[[message ~~profiles~~digest]]s, ~~computed~~or cryptographic hash values, from ~~this~~them. ~~software~~The ~~into~~digests aare stored in the Reference Data Set (RDS) ~~of information. The RDS~~which can be used to ~~review~~identify "known" files on ~~a computer by~~digital ~~matching file profiles in the RDS~~media. This will help alleviate much of the effort involved in determining which files are important as [[evidence]] on computers or file systems that have been seized as part of criminal investigations.<ref name="mead" /> Although the RDS hashset contains some malicious software (such as [[steganography]] and [[Hacker (computer security)\|hacking]] tools) it does not contain illicit material (e.g. indecent images). The collection of original software media is maintained in order to provide repeatability of the calculated hash values, ensuring admissibility of this data in [[court]]. Reference Data Set Version 2.14, October 2006, has over 11 million unique [[SHA-1]], [[MD5]] and [[CRC32]] values. The [[data set]] is available at no cost to the public.▼ In 2004 the ~~NRSL~~NSRL released a set of hashes for ~~verifyinh~~verifying [[eVoting]] software, as part of the US [[Election Assistance Commission]]'s Electronic Voting Security Strategy.<ref name="cw" /> ▲As of October 1, 2013 the Reference Data Set ~~Version~~is at version 2.~~14,~~42 ~~October~~and ~~2006, has~~contains over 1133.9 million unique ~~[[SHA-1]], [[MD5]] and [[CRC32]]~~hash values. The [[data set]] is available at no cost to the public.<ref name="readme" /> In addition to operating system and application software, the library has also collected numerous popular video game titles to be used both as part of data forensics, as well as partially to serve as [[video game preservation]].<ref>{{cite web \| url = https://www.gamesindustry.biz/articles/2018-09-11-nist-adds-gaming-software-to-national-software-reference-library \| title = NIST adds gaming software to National Software Reference Library \| first = Rebekah \| last = Valentine \| date = September 10, 2018 \| accessdate = September 10, 2018 \| work = [[GamesIndustry.biz]] }}</ref> ==See also== * [[Digital forensics]] ==References== {{reflist\|refs= <ref name="mead" >{{cite journal\|author=Steve Mead\|title=Unique file identification in the National Software Reference Library\|journal=Digital Investigation\|volume=3\|issue=3\|date=September 2006\|pages=138–150\|issn=1742-2876\|url=http://www.nsrl.nist.gov/documents/analysis/draft-060530.pdf \|doi=10.1016/j.diin.2006.08.010\|s2cid=17079984 }}</ref> <ref name="cw">{{cite web\|last=Verton\|first=Dan\|title=Feds Issue Test Copies of E-voting Software\|url=http://www.computerworld.com/s/article/97070/Feds_Issue_Test_Copies_of_E_voting_Software\|publisher=Computer World\|accessdate=1 September 2010}}</ref>▼ <ref name="readme">{{cite web\|archiveurl=https://web.archive.org/web/20131106001259/http://www.nsrl.nist.gov/RDS/rds_2.42/READ_ME.txt\|archivedate=6 November 2013\|url=http://www.nsrl.nist.gov/RDS/rds_2.42/READ_ME.txt\|title=RDS Readme.txt\|accessdate=1 October 2013}}</ref> ▲<ref name="cw">{{cite web\|last=Verton\|first=Dan\|title=Feds Issue Test Copies of E-voting Software\|date=November 2004 \|url=http://www.computerworld.com/s/article/97070/Feds_Issue_Test_Copies_of_E_voting_Software\|publisher=Computer World\|accessdate=1 September 2010}}</ref> }} ==External links== * [{{official website\|http://www.nsrl.nist.gov/ ~~NSRL website]~~}} * [http://ionrift.ath.cx/nsrl/ NSRL 2.14 Query (Not affiliated with NIST)] {{Digital forensics}} [[Category:United States Department of Commerce]] [[Category:National Institute of Standards and Technology]] [[Category:Digital forensics ~~organisations~~organizations]] ~~{{Compu-library-stub}}~~ ~~{{Library-stub}}~~