Home > Research > Publications & Outputs > iCOP
View graph of relations

iCOP: automatically identifying new child abuse media in P2P networks

Research output: Contribution in Book/Report/ProceedingsPaper

Published
Close
Publication date2014
Host publication2014 IEEE Symposium on Security and Privacy Workshops
PublisherIEEE Publishing
Pages124-131
Number of pages9
<mark>Original language</mark>English

Abstract

The increasing levels of child sex abuse (CSA) media being shared in peer-to-peer (P2P) networks pose a significant challenge for law enforcement agencies. Although a number of P2P monitoring tools to detect offender activity in such networks exist, they typically rely on hash value databases of known CSA media. Such an approach cannot detect new or previously unknown media being shared. Conversely, identifying such new/previously unknown media is a priority for law enforcement – they can be indicators of recent or on-going child abuse. Furthermore, originators of such media can be hands on abusers and their apprehension can safeguard children from further abuse. The sheer volume of activity on P2P networks, however, makes manual detection virtually infeasible. In this paper, we present a novel approach that combines sophisticated filename and media analysis techniques to automatically flag new/previously unseen CSA media to investigators. The approach has been implemented into the iCOP toolkit. Our evaluation on real case data shows high degrees of accuracy while hands-on trials with law enforcement officers highlight iCOP’s usability and its complementarity to existing investigative workflows.