<!DOCTYPE html><html lang="en" data-reactroot=""><head><meta charSet="utf-8"/><link rel="alternate" type="application/rss+xml" title="iOS KnowledgeC.db Notifications RSS Feed" href="https://dfir.pubpub.org/rss.xml"/><title>iOS KnowledgeC.db Notifications · DFIR Review</title><meta property="og:title" content="iOS KnowledgeC.db Notifications"/><meta name="twitter:title" content="iOS KnowledgeC.db Notifications · DFIR Review"/><meta name="twitter:image:alt" content="iOS KnowledgeC.db Notifications · DFIR Review"/><meta name="citation_title" content="iOS KnowledgeC.db Notifications"/><meta name="dc.title" content="iOS KnowledgeC.db Notifications"/><meta property="og:site_name" content="DFIR Review"/><meta name="citation_journal_title" content="DFIR Review"/><meta property="og:url" content="https://dfir.pubpub.org/pub/g2v1z97i/release/1"/><meta property="og:type" content="article"/><meta name="citation_pdf_url" content="https://dfir.pubpub.org/pub/g2v1z97i/download/pdf"/><meta property="og:image" content="https://assets.pubpub.org/3yqqvtl4/71553968763873.png"/><meta property="og:image:url" content="https://assets.pubpub.org/3yqqvtl4/71553968763873.png"/><meta property="og:image:width" content="500"/><meta name="twitter:image" content="https://assets.pubpub.org/3yqqvtl4/71553968763873.png"/><link rel="icon" type="image/png" sizes="256x256" href="https://assets.pubpub.org/c8g3oakn/41553968740088.png"/><meta name="citation_author" content="Scott Koenig"/><meta name="dc.creator" content="Scott Koenig"/><meta property="article:published_time" content="Thu Nov 03 2022 11:43:49 GMT+0000 (Coordinated Universal Time)"/><meta property="dc.date" content="2022-10-3"/><meta name="citation_publication_date" content="2022/11/3"/><meta property="dc.publisher" content="PubPub"/><link rel="canonical" href="https://dfir.pubpub.org/pub/g2v1z97i"/><meta property="fb:app_id" content="924988584221879"/><meta name="twitter:card" content="summary"/><meta name="twitter:site" content="@pubpub"/><meta name="viewport" content="width=device-width, initial-scale=1, shrink-to-fit=no"/><meta name="google-site-verification" content="jmmJFnkSOeIEuS54adOzGMwc0kwpsa8wQ-L4GyPpPDg"/><link rel="stylesheet" type="text/css" href="/dist/main.8953e10b2e394e83bb73.css"/><link rel="search" type="application/opensearchdescription+xml" title="DFIR Review" href="/opensearch.xml"/></head><body class="pub-body-wrapper active-pub-g2v1z97i"><script>0</script><div id="root"><div id="app" class=""><style type="text/css">:root { --community-accent-dark: #2D2E2F; --community-accent-dark-faded-30: rgb(63, 63, 63); --community-accent-dark-faded: rgba(45, 46, 47, 0.050000000000000044); }</style><style> .accent-background { background-color: #2D2E2F; } .accent-color { color: #FFFFFF; } .accent-background.header-component, .accent-background.nav-bar-component, .accent-background.footer-component, .accent-background.nav-item-background, .accent-background.image-wrapper{ background-color: #2D2E2F; } .accent-color.header-component, .accent-color.nav-bar-component, .accent-color.footer-component, .accent-color.nav-item { color: #FFFFFF; } .bp3-button.bp3-intent-primary:not(.bp3-outlined) { background-color: rgba(45, 46, 47, 0.6); color: #FFFFFF; } .bp3-button.bp3-intent-primary:not(.bp3-outlined):hover:not(.bp3-disabled) { background-color: rgba(45, 46, 47, 0.8); color: #FFFFFF; } .bp3-button.bp3-intent-primary:not(.bp3-outlined):active:not(.bp3-disabled), .bp3-button.bp3-intent-primary.bp3-active:not(.bp3-disabled) { background-color: #2D2E2F; color: #FFFFFF; } .bp3-button.bp3-intent-primary.bp3-outlined { border-color: #2D2E2F; color: #2D2E2F; } .bp3-button.bp3-intent-primary.bp3-outlined:hover:not(.bp3-disabled) { background-color: rgba(45, 46, 47, 0.09999999999999998); color: #2D2E2F; } .bp3-button.bp3-intent-primary.bp3-outlined:active:not(.bp3-disabled), .bp3-button.bp3-intent-primary.bp3-active:not(.bp3-disabled) { background-color: rgba(45, 46, 47, 0.19999999999999996); color: #2D2E2F; } .bp3-tree-node.bp3-tree-node-selected > .bp3-tree-node-content { background-color: #2D2E2F; } .bp3-tag.bp3-intent-primary { background: #2D2E2F; color: #FFFFFF; } .bp3-tag.bp3-minimal.bp3-intent-primary { background-color: rgba(45, 46, 47, 0.09999999999999998); color: inherit; } .accent-color .bp3-button:not([class*="bp3-intent-primary"]), .accent-color .bp3-button:not([class*="bp3-intent-success"]), .accent-color .bp3-button:not([class*="bp3-intent-warning"]), .accent-color .bp3-button:not([class*="bp3-intent-danger"]), .accent-color .bp3-button[class*="bp3-icon"]::before { color: inherit; } .accent-color a, .accent-color a:hover { color: inherit; } .bp3-tab[aria-selected="true"], .bp3-tab:not([aria-selected="true"]):hover { box-shadow: inset 0 -3px 0 rgba(45, 46, 47, 0.09999999999999998); } .bp3-tab[aria-selected="true"] { box-shadow: inset 0 -3px 0 #2D2E2F; } .thread:hover:after { background-color: #2D2E2F; } .bp3-slider-progress.bp3-intent-primary, .bp3-dark .bp3-slider-progress.bp3-intent-primary { background: #2D2E2F; } .bp3-slider-handle .bp3-slider-label { background: #2D2E2F; color: #FFFFFF; } .highlight-dot-wrapper .highlight-dot { background-color: #2D2E2F; } .changelog-callout { background: rgba(45, 46, 47, 0.09999999999999998) !important; } .changelog-callout .release-label { color: #2D2E2F; border: 1px dashed #2D2E2F; } span.citation:hover { color: #2D2E2F; } .overflow-gradient { background: linear-gradient(90deg, rgba(45, 46, 47, 0) 0%, rgba(45, 46, 47, 0) 85%, #2D2E2F 100%); } </style><a href="#main-content" tabindex="0" class="skip-link-component tab-to-show-component">Skip to main content</a><header class="header-component accent-background accent-color"><div class="main"><div class="container "><div class="row"><div class="col-12 main-content"><div class="logo-wrapper"><a href="/" aria-label="DFIR Review"><img alt="" src="https://resize-v3.pubpub.org/eyJidWNrZXQiOiJhc3NldHMucHVicHViLm9yZyIsImtleSI6ImhuZHdvMDAzLzYxNjc1Mzc0NjMxMDQ5LnBuZyIsImVkaXRzIjp7InJlc2l6ZSI6eyJoZWlnaHQiOjUwLCJmaXQiOiJpbnNpZGUiLCJ3aXRob3V0RW5sYXJnZW1lbnQiOnRydWV9fX0="/></a></div><div class="global-controls-component"><a role="button" href="/search" aria-label="Search" class="bp3-button bp3-minimal mobile-aware-component__mobile" tabindex="0"><span icon="search" class="bp3-icon bp3-icon-search"><svg data-icon="search" width="16" height="16" viewBox="0 0 16 16"><path d="M15.55 13.43l-2.67-2.68a6.94 6.94 0 001.11-3.76c0-3.87-3.13-7-7-7s-7 3.13-7 7 3.13 7 7 7c1.39 0 2.68-.42 3.76-1.11l2.68 2.67a1.498 1.498 0 102.12-2.12zm-8.56-1.44c-2.76 0-5-2.24-5-5s2.24-5 5-5 5 2.24 5 5-2.24 5-5 5z" fill-rule="evenodd"></path></svg></span></a><a role="button" href="/search" aria-label="Search" class="bp3-button bp3-large bp3-minimal mobile-aware-component__desktop" tabindex="0"><span class="bp3-button-text">Search</span></a><button type="button" style="display:inline-flex;-webkit-appearance:unset" aria-expanded="false" aria-controls="id-2" aria-haspopup="menu" aria-label="Dashboard menu" class="bp3-button bp3-minimal mobile-aware-component__mobile"><span icon="settings" class="bp3-icon bp3-icon-settings"><svg data-icon="settings" width="16" height="16" viewBox="0 0 16 16"><path d="M3 1c0-.55-.45-1-1-1S1 .45 1 1v3h2V1zm0 4H1c-.55 0-1 .45-1 1v2c0 .55.45 1 1 1h2c.55 0 1-.45 1-1V6c0-.55-.45-1-1-1zm12-4c0-.55-.45-1-1-1s-1 .45-1 1v2h2V1zM9 1c0-.55-.45-1-1-1S7 .45 7 1v6h2V1zM1 15c0 .55.45 1 1 1s1-.45 1-1v-5H1v5zM15 4h-2c-.55 0-1 .45-1 1v2c0 .55.45 1 1 1h2c.55 0 1-.45 1-1V5c0-.55-.45-1-1-1zm-2 11c0 .55.45 1 1 1s1-.45 1-1V9h-2v6zM9 8H7c-.55 0-1 .45-1 1v2c0 .55.45 1 1 1h2c.55 0 1-.45 1-1V9c0-.55-.45-1-1-1zm-2 7c0 .55.45 1 1 1s1-.45 1-1v-2H7v2z" fill-rule="evenodd"></path></svg></span></button><button type="button" style="display:inline-flex;-webkit-appearance:unset" aria-expanded="false" aria-controls="id-2" aria-haspopup="menu" aria-label="Dashboard menu" class="bp3-button bp3-large bp3-minimal mobile-aware-component__desktop"><span class="bp3-button-text">Dashboard</span><span icon="caret-down" class="bp3-icon bp3-icon-caret-down"><svg data-icon="caret-down" width="16" height="16" viewBox="0 0 16 16"><desc>caret-down</desc><path d="M12 6.5c0-.28-.22-.5-.5-.5h-7a.495.495 0 00-.37.83l3.5 4c.09.1.22.17.37.17s.28-.07.37-.17l3.5-4c.08-.09.13-.2.13-.33z" fill-rule="evenodd"></path></svg></span></button><a role="button" href="/login?redirect=/pub/g2v1z97i/release/1" class="bp3-button bp3-minimal mobile-aware-component__mobile" tabindex="0"><span class="bp3-button-text">Login</span></a><a role="button" href="/login?redirect=/pub/g2v1z97i/release/1" class="bp3-button bp3-large bp3-minimal mobile-aware-component__desktop" tabindex="0"><span class="bp3-button-text">Login or Signup</span></a></div></div></div></div></div></header><nav class="nav-bar-component accent-background accent-color"><div class="container "><div class="row"><div class="col-12 "><div class="scrollable-nav"><ul class="nav-list"><li><a href="/"><span class="title">DFIR Review</span></a></li><li><a href="/blog"><span class="title">Stats</span></a></li><li><a href="/reviewers"><span class="title">Reviewers</span></a></li><li><a href="/submission-guidance"><span class="title">Submission Guidance</span></a></li><li><a href="/pub"><span class="title">Publications</span></a></li><li><a href="/about"><span class="title">Aims &amp; Scope</span></a></li><li><a href="/review-guidance"><span class="title">Review Guidance</span></a></li><li><a href="/community"><span class="title">Community</span></a></li><li><a href="/dfrws"><span class="title">DFRWS.org</span></a></li></ul><div class="overflow-gradient"></div></div></div></div></div></nav><div id="main-content" tabindex="-1"><div id="pub-container"><div class="pub-header-background-component pub-header-theme-dark pub-header-component"><div class="background-element background-white-layer"></div><div class="background-element background-color" style="background-color:rgba(0, 0, 0, 0.0275)"></div><div class="background-element background-safety-layer"></div><div class="container pub"><div class="row"><div class="col-12 pub-header-column"><div class="pub-header-content-component"><div class="pub-header-top-area has-bottom-hairline"><div class="basic-details"><span class="metadata-pair"><b class="pub-header-themed-secondary">Published on </b>Nov 03, 2022</span><div class="show-details-placeholder"></div></div></div><div class="title-group-component"><h1 class="title"><span class="text-wrapper">iOS KnowledgeC.db Notifications</span></h1><div class="byline-component"><span class="text-wrapper"><span>by<!-- --> </span><span><a href="/user/scott-koenig" class="hoverline">Scott Koenig</a></span></span></div><div class="published-date"><span class="pub-header-themed-secondary">Published on</span><span>Nov 03, 2022</span></div></div><div class="utility-buttons-component"><button type="button" class="small-header-button-component pub-header-themed-box-hover-target label-left show-header-details-button"><div class="pub-header-themed-box icon-container"><span icon="info-sign" class="bp3-icon bp3-icon-info-sign"><svg data-icon="info-sign" width="14" height="14" viewBox="0 0 16 16"><path d="M8 0C3.58 0 0 3.58 0 8s3.58 8 8 8 8-3.58 8-8-3.58-8-8-8zM7 3h2v2H7V3zm3 10H6v-1h1V7H6V6h3v6h1v1z" fill-rule="evenodd"></path></svg></span></div></button><button type="button" class="small-header-button-component pub-header-themed-box-hover-target label-left cite-button"><div class="pub-header-themed-box icon-container"><span class="bp3-icon" data-icon="cite" aria-label="" aria-hidden="true"><svg width="14px" height="14px" viewBox="0 0 24 24"><g><path d="M5.56 22.286v-2.548h-2.039v-15.476h2.039v-2.548h-5.56v20.573h5.56zM24 22.286v-20.573h-5.583v2.548h2.039v15.476h-2.039v2.548h5.583z"></path><path d="M13.918 5.993l-0.421 3.1h-2.409l0.438-3.1h-1.348l-0.421 3.1h-1.702v1.23h1.516l-0.404 2.982h-1.668v1.23h1.483l-0.438 3.083h1.331l0.438-3.083h2.393l-0.438 3.083h1.348l0.421-3.083h1.719v-1.23h-1.533l0.404-2.982h1.685v-1.23h-1.483l0.421-3.1h-1.331zM10.902 10.324h2.393l-0.388 2.982h-2.409l0.404-2.982z"></path></g></svg></span></div><div class="label">Cite</div></button><button type="button" class="small-header-button-component pub-header-themed-box-hover-target label-left"><div class="pub-header-themed-box icon-container"><span class="bp3-icon" data-icon="share2" aria-label="" aria-hidden="true"><svg width="14px" height="14px" viewBox="0 0 32 32"><path d="M25.524 22.54c-1.206 0-2.286 0.476-3.111 1.222l-11.317-6.587c0.079-0.365 0.143-0.73 0.143-1.111s-0.063-0.746-0.143-1.111l11.19-6.524c0.857 0.794 1.984 1.286 3.238 1.286 2.635 0 4.762-2.127 4.762-4.762s-2.127-4.762-4.762-4.762c-2.635 0-4.762 2.127-4.762 4.762 0 0.381 0.064 0.746 0.143 1.111l-11.191 6.524c-0.857-0.794-1.984-1.286-3.238-1.286-2.635 0-4.762 2.127-4.762 4.762s2.127 4.762 4.762 4.762c1.254 0 2.381-0.492 3.238-1.286l11.302 6.603c-0.079 0.333-0.127 0.683-0.127 1.032 0 2.556 2.079 4.635 4.635 4.635s4.635-2.079 4.635-4.635c0-2.556-2.079-4.635-4.635-4.635z"></path></svg></span></div><div class="label">Social</div></button><button type="button" class="small-header-button-component pub-header-themed-box-hover-target label-left"><div class="pub-header-themed-box icon-container"><span class="bp3-icon" data-icon="download2" aria-label="" aria-hidden="true"><svg width="14px" height="14px" viewBox="0 0 32 32"><path d="M28.963 11.37h-7.407v-11.111h-11.111v11.111h-7.407l12.963 12.963 12.963-12.963zM3.037 28.037v3.704h25.926v-3.704h-25.926z"></path></svg></span></div><div class="label">Download</div></button><button type="button" class="small-header-button-component pub-header-themed-box-hover-target label-left"><div class="pub-header-themed-box icon-container"><span class="bp3-icon" data-icon="toc" aria-label="" aria-hidden="true"><svg width="14px" height="14px" viewBox="0 0 24 24"><g><path d="M17.077 19.582h-11.538v3.033h11.538v-3.033zM24 7.451h-18.462v3.033h18.462v-3.033zM5.538 16.55h18.462v-3.033h-18.462v3.033zM5.538 1.385v3.033h18.462v-3.033h-18.462z"></path><path d="M2.769 2.769c0 0.765-0.62 1.385-1.385 1.385s-1.385-0.62-1.385-1.385c0-0.765 0.62-1.385 1.385-1.385s1.385 0.62 1.385 1.385z"></path></g></svg></span></div><div class="label">Contents</div></button></div><div class="draft-release-buttons-component"><button type="button" class="small-header-button-component pub-header-themed-box-hover-target label-left mobile-aware-component__mobile"><div class="pub-header-themed-box icon-container"><span icon="history" class="bp3-icon bp3-icon-history"><svg data-icon="history" width="14" height="14" viewBox="0 0 16 16"><path d="M8 3c-.55 0-1 .45-1 1v4c0 .28.11.53.29.71l2 2a1.003 1.003 0 001.42-1.42L9 7.59V4c0-.55-.45-1-1-1zm0-3a7.95 7.95 0 00-6 2.74V1c0-.55-.45-1-1-1S0 .45 0 1v4c0 .55.45 1 1 1h4c.55 0 1-.45 1-1s-.45-1-1-1H3.54C4.64 2.78 6.23 2 8 2c3.31 0 6 2.69 6 6 0 2.61-1.67 4.81-4 5.63v-.01c-.63.23-1.29.38-2 .38-3.31 0-6-2.69-6-6 0-.55-.45-1-1-1s-1 .45-1 1c0 4.42 3.58 8 8 8 .34 0 .67-.03 1-.07.02 0 .04-.01.06-.01C12.98 15.4 16 12.06 16 8c0-4.42-3.58-8-8-8z" fill-rule="evenodd"></path></svg></span></div></button><button style="display:inline-flex;-webkit-appearance:unset" type="button" class="large-header-button-component pub-header-themed-box-hover-target mobile-aware-component__desktop" aria-expanded="false" aria-controls="id-11" aria-haspopup="menu" aria-label="Choose a historical release of this Pub"><div class="button-box pub-header-themed-box no-label"><span icon="history" class="bp3-icon bp3-icon-history"><svg data-icon="history" width="22" height="22" viewBox="0 0 20 20"><path d="M10 0C6.71 0 3.82 1.6 2 4.05V2c0-.55-.45-1-1-1s-1 .45-1 1v4c0 .55.45 1 1 1h4c.55 0 1-.45 1-1s-.45-1-1-1H3.76C5.23 3.17 7.47 2 10 2c4.42 0 8 3.58 8 8s-3.58 8-8 8-8-3.58-8-8c0-.55-.45-1-1-1s-1 .45-1 1c0 5.52 4.48 10 10 10s10-4.48 10-10S15.52 0 10 0zm0 3c-.55 0-1 .45-1 1v6c0 .28.11.53.29.71l3 3a1.003 1.003 0 001.42-1.42L11 9.59V4c0-.55-.45-1-1-1z" fill-rule="evenodd"></path></svg></span><span icon="caret-down" class="bp3-icon bp3-icon-caret-down caret"><svg data-icon="caret-down" width="10" height="10" viewBox="0 0 16 16"><path d="M12 6.5c0-.28-.22-.5-.5-.5h-7a.495.495 0 00-.37.83l3.5 4c.09.1.22.17.37.17s.28-.07.37-.17l3.5-4c.08-.09.13-.2.13-.33z" fill-rule="evenodd"></path></svg></span></div><div class="outer-label"><div class="top pub-header-themed-secondary">last released</div><div class="bottom"><time dateTime="2022-11-03T11:43:49.132Z" title="2022-11-03 11:43">3 years ago</time></div></div></button></div></div><button type="button" class="small-header-button-component pub-header-themed-box-hover-target label-left details-button"><div class="pub-header-themed-box icon-container"><span icon="expand-all" class="bp3-icon bp3-icon-expand-all"><svg data-icon="expand-all" width="14" height="14" viewBox="0 0 16 16"><path d="M4 7c.28 0 .53-.11.71-.29L8 3.41l3.29 3.29c.18.19.43.3.71.3a1.003 1.003 0 00.71-1.71l-4-4C8.53 1.11 8.28 1 8 1s-.53.11-.71.29l-4 4A1.003 1.003 0 004 7zm8 2c-.28 0-.53.11-.71.29L8 12.59l-3.29-3.3a1.003 1.003 0 00-1.42 1.42l4 4c.18.18.43.29.71.29s.53-.11.71-.29l4-4A1.003 1.003 0 0012 9z" fill-rule="evenodd"></path></svg></span></div><div class="label">Show details</div></button></div></div></div><div class="pub-header-sticky-component"><div class="sticky-title">iOS KnowledgeC.db Notifications</div><div class="sticky-buttons"><button type="button" style="display:inline-flex;-webkit-appearance:unset" aria-expanded="false" aria-controls="id-13" aria-haspopup="menu" aria-label="Table of contents" class="bp3-button bp3-minimal contents-button"><span class="bp3-button-text">Contents</span></button><span class="dot">·</span><button type="button" class="bp3-button bp3-minimal"><span icon="double-chevron-up" class="bp3-icon bp3-icon-double-chevron-up"><svg data-icon="double-chevron-up" width="16" height="16" viewBox="0 0 16 16"><path d="M4 8c.28 0 .53-.11.71-.29L8 4.41l3.29 3.29c.18.19.43.3.71.3a1.003 1.003 0 00.71-1.71l-4-4C8.53 2.11 8.28 2 8 2s-.53.11-.71.29l-4 4A1.003 1.003 0 004 8zm4.71-.71C8.53 7.11 8.28 7 8 7s-.53.11-.71.29l-4 4a1.003 1.003 0 001.42 1.42L8 9.41l3.29 3.29c.18.19.43.3.71.3a1.003 1.003 0 00.71-1.71l-4-4z" fill-rule="evenodd"></path></svg></span></button></div></div></div><div class="pub-document-component"><div class="pub-grid"><div class="main-content"><main class="pub-body-component"><div class="editor ProseMirror read-only"><h1 id="synopsis">Synopsis</h1><div class="tableWrapper" id="7pnvpve7ye" data-smaller-font="false"><table><tbody><tr><td><p id="ca09dpu7kq"><strong>Forensics Question:</strong> <br/>What are the different types of notifications we will have from the KnowledgeC.db and what do they mean? </p><p id="ncf47u53que">Can we determine if the user interacted with device after a notification was received and displayed on an iPhone?</p></td><td><p id="n4x03e4rspv"></p><figure id="3z7uqe08aw" data-node-type="image" data-size="50" data-align="center" data-url="https://assets.pubpub.org/otm7hspl/01604324623084.png" data-caption="" data-alt-text="" data-hide-label="false"><img srcSet="https://resize-v3.pubpub.org/eyJidWNrZXQiOiJhc3NldHMucHVicHViLm9yZyIsImtleSI6Im90bTdoc3BsLzAxNjA0MzI0NjIzMDg0LnBuZyIsImVkaXRzIjp7InJlc2l6ZSI6eyJ3aWR0aCI6ODAwLCJmaXQiOiJpbnNpZGUiLCJ3aXRob3V0RW5sYXJnZW1lbnQiOnRydWV9fX0= 1x,https://resize-v3.pubpub.org/eyJidWNrZXQiOiJhc3NldHMucHVicHViLm9yZyIsImtleSI6Im90bTdoc3BsLzAxNjA0MzI0NjIzMDg0LnBuZyIsImVkaXRzIjp7InJlc2l6ZSI6eyJ3aWR0aCI6MTYwMCwiZml0IjoiaW5zaWRlIiwid2l0aG91dEVubGFyZ2VtZW50Ijp0cnVlfX19 2x,https://resize-v3.pubpub.org/eyJidWNrZXQiOiJhc3NldHMucHVicHViLm9yZyIsImtleSI6Im90bTdoc3BsLzAxNjA0MzI0NjIzMDg0LnBuZyIsImVkaXRzIjp7InJlc2l6ZSI6eyJ3aWR0aCI6MjQwMCwiZml0IjoiaW5zaWRlIiwid2l0aG91dEVubGFyZ2VtZW50Ijp0cnVlfX19 3x" src="https://resize-v3.pubpub.org/eyJidWNrZXQiOiJhc3NldHMucHVicHViLm9yZyIsImtleSI6Im90bTdoc3BsLzAxNjA0MzI0NjIzMDg0LnBuZyIsImVkaXRzIjp7InJlc2l6ZSI6eyJ3aWR0aCI6ODAwLCJmaXQiOiJpbnNpZGUiLCJ3aXRob3V0RW5sYXJnZW1lbnQiOnRydWV9fX0=" alt=""/><figcaption id="3z7uqe08aw-figure-caption"><div><div></div></div></figcaption></figure></td></tr><tr><td><p id="tapzxzhb9k"><strong>OS Version:</strong> <br/>iOS 14.7.1 (18G82)</p><p id="n591ehow3km">iOS 14.4.2 (18D70)<br/></p></td><td><figure id="nlkqjkuo9y6" data-node-type="image" data-size="50" data-align="center" data-url="https://assets.pubpub.org/9636kems/61615840870473.png" data-caption="" data-alt-text="" data-hide-label="false"><img srcSet="https://resize-v3.pubpub.org/eyJidWNrZXQiOiJhc3NldHMucHVicHViLm9yZyIsImtleSI6Ijk2MzZrZW1zLzYxNjE1ODQwODcwNDczLnBuZyIsImVkaXRzIjp7InJlc2l6ZSI6eyJ3aWR0aCI6ODAwLCJmaXQiOiJpbnNpZGUiLCJ3aXRob3V0RW5sYXJnZW1lbnQiOnRydWV9fX0= 1x,https://resize-v3.pubpub.org/eyJidWNrZXQiOiJhc3NldHMucHVicHViLm9yZyIsImtleSI6Ijk2MzZrZW1zLzYxNjE1ODQwODcwNDczLnBuZyIsImVkaXRzIjp7InJlc2l6ZSI6eyJ3aWR0aCI6MTYwMCwiZml0IjoiaW5zaWRlIiwid2l0aG91dEVubGFyZ2VtZW50Ijp0cnVlfX19 2x,https://resize-v3.pubpub.org/eyJidWNrZXQiOiJhc3NldHMucHVicHViLm9yZyIsImtleSI6Ijk2MzZrZW1zLzYxNjE1ODQwODcwNDczLnBuZyIsImVkaXRzIjp7InJlc2l6ZSI6eyJ3aWR0aCI6MjQwMCwiZml0IjoiaW5zaWRlIiwid2l0aG91dEVubGFyZ2VtZW50Ijp0cnVlfX19 3x" src="https://resize-v3.pubpub.org/eyJidWNrZXQiOiJhc3NldHMucHVicHViLm9yZyIsImtleSI6Ijk2MzZrZW1zLzYxNjE1ODQwODcwNDczLnBuZyIsImVkaXRzIjp7InJlc2l6ZSI6eyJ3aWR0aCI6ODAwLCJmaXQiOiJpbnNpZGUiLCJ3aXRob3V0RW5sYXJnZW1lbnQiOnRydWV9fX0=" alt=""/><figcaption id="nlkqjkuo9y6-figure-caption"><div><div></div></div></figcaption></figure></td></tr><tr><td><p id="zc8ryi5sxh"><strong>Tools:</strong> </p><p id="nvoaf3co3p6">Cellebrite UFED 4PC 7.47.0.247</p><p class="MsoNoSpacing" id="ncw27heev64">Cellebrite Physical Analyzer 7.48.1.3 – Does not decode KnowledgeC.db /notification/usage</p><p class="MsoNoSpacing" id="nckft86vwnj">Magnet AXIOM 5.4.0.26185</p><p class="MsoNoSpacing" id="nceajwn8y1k">ArtEx 2.0.0.4</p><p class="MsoNoSpacing" id="nbjt1sjuitt">iLEAPP 1.9.4 – Does not decode KnowledgeC.db /notification/usage</p><p class="MsoNoSpacing" id="nbuqnlrxgak">APOLLO 1.4</p></td><td><p id="n7fsdfw313q"></p></td></tr></tbody></table></div><h1 id="introduction">Introduction</h1><p id="nl0q2rww66z">Cell phone use is routine. Our cell phones are really an extension of ourselves. We carry them around not only to make calls and messages, but they are also our daily planners, to-do lists, and entertainment resources. We use them at all times of the day – the alarms in the morning, email and social media all day, listening to music, and even reading books at night in bed. They can be a distraction, but does that stop us from checking them all day, especially when a notification pops up? Sometimes we just look to see what the notification is and move on with our business. Sometimes, a notification needs to be handled right away. How do iPhones, or at least those running iOS 14, store notifications, and what happened with those notifications?</p><p class="MsoNoSpacing" id="nrwcv8qmnd4"> While using some commercial and some free forensic tools, I noticed very few of them decode the <em><strong>KnowledgeC.db/notification/usage</strong></em> data. The ones that do provide very little information about what the notification types mean.</p><p class="MsoNoSpacing" id="nkdnqwptlml"> Thanks to Sarah Edwards and several others who previously researched the <em><strong>KnowledgeC.db, </strong></em>we know it to be a great artifact. It can be used to determine a lot of device activities and a user’s pattern of life, but can we use that data to determine if a user interacted with the device after it received a notification?</p><p class="MsoNoSpacing" id="nimj8k7ahy7"> Based on previous research and publications, in conjunction this research, I believe not only can we determine if a user interacted with the device after receiving a notification, but I also believe we can determine how and when that interaction occurred.</p><p id="ndb9vfz2fs4"></p><h2 id="artifact-location"><strong>Artifact Location:</strong></h2><p class="MsoNoSpacing" id="nvib9kmh5zf">·       <em><strong>private\var\mobile\Library\CoreDuet\Knowledge\</strong></em></p><p class="MsoNoSpacing" id="no3ykjo5d3i">The notification data I will be discussing is stored in the <em><strong>KnowledgeC.db ZOBJECTS </strong></em>table and<em><strong>ZSTRUCTUREDMETADATA </strong></em>table<em><strong>.</strong></em></p><p class="MsoNoSpacing" id="n0wpm4ffvv1"><em><strong> </strong></em></p><p class="MsoNoSpacing" id="nctss9ttyfv">The data I will be discussing in detail is:</p><p class="MsoNoSpacing" id="nqq1z5wzcic">·       <em><strong>ZSTREAMNAME </strong></em>= <em><strong>/notification/usage</strong></em></p><p class="MsoNoSpacing" id="np1gzbdn5kk">·       <em><strong>ZVALUESTRING</strong></em> = The notification types, which are listed below</p><p class="MsoNoSpacing" id="noss8wduju1">o   <em><strong>Clear</strong></em></p><p class="MsoNoSpacing" id="n1ep3e7zlcw">o   <em><strong>DefaultAction</strong></em></p><p class="MsoNoSpacing" id="nh6r8zh16u2">o   <em><strong>Dismiss</strong></em></p><p class="MsoNoSpacing" id="n2wz4ijaj5v">o   <em><strong>Hidden</strong></em></p><p class="MsoNoSpacing" id="ncnajbhqb2w">o   <em><strong>IndirectClear</strong></em></p><p class="MsoNoSpacing" id="nz5je6jt39j">o   <em><strong>Orb </strong></em></p><p class="MsoNoSpacing" id="n92f9lkv5vm">o   <em><strong>Receive</strong></em></p><p class="MsoNoSpacing" id="nl8xdzl5yts">·       <em><strong>Z_DKNOTIFICATIONUSAGEMETADATAKEY__BUNDLEID </strong></em>= the bundle or application for which the notification is related. In the database, the bundle ID is only listed with a <em><strong>Receive</strong></em> notification type.</p><p class="MsoNoSpacing" id="nreey7940hl">·       <em><strong>Z_DKNOTIFICATIONUSAGEMETADATAKEY__IDENTIFIER</strong></em> = semi-unique identifier that can be used to link different notification types.</p><p class="MsoNoSpacing" id="n1x2o0s9guj"> </p><p class="MsoNoSpacing" id="ndsw39rc73x"><em><strong>Note:</strong></em> I mention the <em><strong>Z_DKNOTIFICATIONUSAGEMETADATAKEY__IDENTIFIER </strong></em>as a semi-unique identifier because in some cases, like the Do Not Disturb notifications, the identifier repeats itself, but we can still use this to link the notification types together while analyzing the data.</p><p class="MsoNoSpacing" id="ncf26m4j466"> </p><p class="MsoNoSpacing" id="nmw1qkviqn6">Here is a link to GitHub for a SQLite query that might assist with analyzing the database</p><p class="MsoNoSpacing" id="nrn879vlwka"> </p><p class="MsoNoSpacing" id="n4s7fe6zliq"><strong>Device Settings:</strong></p><p class="MsoNoSpacing" id="n5rcn1lweup">When using this data in a forensic analysis, be sure to check the device notification settings. During testing, all applications tested had all notifications turned ON. These are the settings a user can change that could restrict the notification types you might encounter during an analysis. Figure 1 shows the settings menu for the Apple Messenger Application (com.apple.MobileSMS). Please check out the resources section to review additional research.</p><p class="MsoNoSpacing" id="n66n5w4e2ij"> </p><p class="MsoNoSpacing" id="n2uvjrz1z7d"></p><figure id="nwjzs9zwm6t" data-node-type="image" data-size="50" data-align="center" data-url="https://assets.pubpub.org/ygt9zlof/21659644944980.png" data-caption="" data-alt-text="" data-hide-label="false"><img srcSet="https://resize-v3.pubpub.org/eyJidWNrZXQiOiJhc3NldHMucHVicHViLm9yZyIsImtleSI6InlndDl6bG9mLzIxNjU5NjQ0OTQ0OTgwLnBuZyIsImVkaXRzIjp7InJlc2l6ZSI6eyJ3aWR0aCI6ODAwLCJmaXQiOiJpbnNpZGUiLCJ3aXRob3V0RW5sYXJnZW1lbnQiOnRydWV9fX0= 1x,https://resize-v3.pubpub.org/eyJidWNrZXQiOiJhc3NldHMucHVicHViLm9yZyIsImtleSI6InlndDl6bG9mLzIxNjU5NjQ0OTQ0OTgwLnBuZyIsImVkaXRzIjp7InJlc2l6ZSI6eyJ3aWR0aCI6MTYwMCwiZml0IjoiaW5zaWRlIiwid2l0aG91dEVubGFyZ2VtZW50Ijp0cnVlfX19 2x,https://resize-v3.pubpub.org/eyJidWNrZXQiOiJhc3NldHMucHVicHViLm9yZyIsImtleSI6InlndDl6bG9mLzIxNjU5NjQ0OTQ0OTgwLnBuZyIsImVkaXRzIjp7InJlc2l6ZSI6eyJ3aWR0aCI6MjQwMCwiZml0IjoiaW5zaWRlIiwid2l0aG91dEVubGFyZ2VtZW50Ijp0cnVlfX19 3x" src="https://resize-v3.pubpub.org/eyJidWNrZXQiOiJhc3NldHMucHVicHViLm9yZyIsImtleSI6InlndDl6bG9mLzIxNjU5NjQ0OTQ0OTgwLnBuZyIsImVkaXRzIjp7InJlc2l6ZSI6eyJ3aWR0aCI6ODAwLCJmaXQiOiJpbnNpZGUiLCJ3aXRob3V0RW5sYXJnZW1lbnQiOnRydWV9fX0=" alt=""/><figcaption id="nwjzs9zwm6t-figure-caption"><div><div></div></div></figcaption></figure><p class="MsoNoSpacing" id="navqridz0eu"> </p><p class="MsoNoSpacing" id="nojk56cev8m">Figure 1</p><p class="MsoNoSpacing" id="n2nnmze8kqg"> </p><p class="MsoNoSpacing" id="nzfg5wnwttv"><strong>Research and Testing: </strong></p><p class="MsoNoSpacing" id="nmtd1aniyc9">The following sections will demonstrate how I was able to determine each notification type and how I recreated them in testing. </p><p class="MsoNoSpacing" id="nz7vw606qax"> </p><p class="MsoNoSpacing" id="n5z8blelkkc"><em><strong>Note</strong></em>: During testing, Magnet AXIOM, ArtEx, and APOLLO parsed the <em><strong>KnowledgeC.db</strong></em> notifications. Cellebrite Physical Analyzer and iLEAPP did not. iLEAPP had a section for iOS notifications, but the data was being parsed from<em><strong>DeliveredNotifications.plist, </strong></em>not the notifications from <em><strong>KnowledgeC.db,</strong></em> review the resources for additional information. </p><p class="MsoNoSpacing" id="npmj3lacz2t"> </p><p class="MsoNoSpacing" id="n45x0gys5bq">During testing, the test device was connected to ArtEx via ArtExtraction – Live Connection. This allowed me to run multiple tests, and I did not have to repeatedly acquire full file system dumps. The acquisition methods and tools listed above were used to validate what was being displayed in ArtEx.   </p><p class="MsoNoSpacing" id="nafkquv0zbs"> </p><p class="MsoNoSpacing" id="nf5u57gbgnk"><em><strong>Note:</strong></em> If you are a curious how to perform your own testing using ArtEx, here is a link to a recorded session of Cellebrite’s Ctrl + Alt + Del where ArtEx creator Ian Whiffin discusses how to use the ArtEx Live Connection to conduct research: <a href="https://www.cellebrite.com/en/using-artifact-examiner-artex-to-investigate-an-artifact-on-a-device/">https://www.cellebrite.com/en/using-artifact-examiner-artex-to-investigate-an-artifact-on-a-device/</a></p><p class="MsoNoSpacing" id="neqm92odl59"> </p><p class="MsoNoSpacing" id="nqpy1o3mdvp"><strong>Receive Notification Type:</strong></p><p class="MsoNoSpacing" id="ne9tjiiwh6n">A <em><strong>Receive</strong></em> notification type is when a notification is received and displayed on the device. Depending on user interaction and device status the notification could be viewed from the springboard, the Lock Screen and/or the Notification Center. </p><p class="MsoNoSpacing" id="nbkes9bk1j5"> </p><p class="MsoNoSpacing" id="ncfleq4ff3t">Figure 2 has an example of a <em><strong>Receive</strong></em> notification type in ArtEx. During testing, this was created by sending the test device a text message (SMS). The test device screen came on and displayed the notification. After a few seconds, the screen automatically turned OFF and went dark. I did not touch or interact with the device or the screen.</p><p class="MsoNoSpacing" id="na1392iepum"> </p><figure id="n8a1b24dgvf" data-node-type="image" data-size="94" data-align="center" data-url="https://assets.pubpub.org/f6rpcgyb/71659645034872.jpeg" data-caption="" data-alt-text="" data-hide-label="false"><img srcSet="https://resize-v3.pubpub.org/eyJidWNrZXQiOiJhc3NldHMucHVicHViLm9yZyIsImtleSI6ImY2cnBjZ3liLzcxNjU5NjQ1MDM0ODcyLmpwZWciLCJlZGl0cyI6eyJyZXNpemUiOnsid2lkdGgiOjgwMCwiZml0IjoiaW5zaWRlIiwid2l0aG91dEVubGFyZ2VtZW50Ijp0cnVlfX19 1x,https://resize-v3.pubpub.org/eyJidWNrZXQiOiJhc3NldHMucHVicHViLm9yZyIsImtleSI6ImY2cnBjZ3liLzcxNjU5NjQ1MDM0ODcyLmpwZWciLCJlZGl0cyI6eyJyZXNpemUiOnsid2lkdGgiOjE2MDAsImZpdCI6Imluc2lkZSIsIndpdGhvdXRFbmxhcmdlbWVudCI6dHJ1ZX19fQ== 2x,https://resize-v3.pubpub.org/eyJidWNrZXQiOiJhc3NldHMucHVicHViLm9yZyIsImtleSI6ImY2cnBjZ3liLzcxNjU5NjQ1MDM0ODcyLmpwZWciLCJlZGl0cyI6eyJyZXNpemUiOnsid2lkdGgiOjI0MDAsImZpdCI6Imluc2lkZSIsIndpdGhvdXRFbmxhcmdlbWVudCI6dHJ1ZX19fQ== 3x" src="https://resize-v3.pubpub.org/eyJidWNrZXQiOiJhc3NldHMucHVicHViLm9yZyIsImtleSI6ImY2cnBjZ3liLzcxNjU5NjQ1MDM0ODcyLmpwZWciLCJlZGl0cyI6eyJyZXNpemUiOnsid2lkdGgiOjgwMCwiZml0IjoiaW5zaWRlIiwid2l0aG91dEVubGFyZ2VtZW50Ijp0cnVlfX19" alt=""/><figcaption id="n8a1b24dgvf-figure-caption"><div><div></div></div></figcaption></figure><p class="MsoNoSpacing" id="nim2x12b5ud">Figure 2</p><p class="MsoNoSpacing" id="nee6x8svum8"> </p><p class="MsoNoSpacing" id="nikk9d4sxdn">I turned the screen ON and OFF several times, using side button. During that time, I captured a screenshot of what the notification looked like on the device, seen in Figure 3. This did not affect or change the notification as it remained visible on the Lock Screen.</p><p class="MsoNoSpacing" id="nbwha3v1omv"> </p><p class="MsoNoSpacing" id="ntw6c6leyry"></p><figure id="nic8l5g004w" data-node-type="image" data-size="50" data-align="center" data-url="https://assets.pubpub.org/x0iv3gaw/41659645064014.jpeg" data-caption="" data-alt-text="" data-hide-label="false"><img srcSet="https://resize-v3.pubpub.org/eyJidWNrZXQiOiJhc3NldHMucHVicHViLm9yZyIsImtleSI6IngwaXYzZ2F3LzQxNjU5NjQ1MDY0MDE0LmpwZWciLCJlZGl0cyI6eyJyZXNpemUiOnsid2lkdGgiOjgwMCwiZml0IjoiaW5zaWRlIiwid2l0aG91dEVubGFyZ2VtZW50Ijp0cnVlfX19 1x,https://resize-v3.pubpub.org/eyJidWNrZXQiOiJhc3NldHMucHVicHViLm9yZyIsImtleSI6IngwaXYzZ2F3LzQxNjU5NjQ1MDY0MDE0LmpwZWciLCJlZGl0cyI6eyJyZXNpemUiOnsid2lkdGgiOjE2MDAsImZpdCI6Imluc2lkZSIsIndpdGhvdXRFbmxhcmdlbWVudCI6dHJ1ZX19fQ== 2x,https://resize-v3.pubpub.org/eyJidWNrZXQiOiJhc3NldHMucHVicHViLm9yZyIsImtleSI6IngwaXYzZ2F3LzQxNjU5NjQ1MDY0MDE0LmpwZWciLCJlZGl0cyI6eyJyZXNpemUiOnsid2lkdGgiOjI0MDAsImZpdCI6Imluc2lkZSIsIndpdGhvdXRFbmxhcmdlbWVudCI6dHJ1ZX19fQ== 3x" src="https://resize-v3.pubpub.org/eyJidWNrZXQiOiJhc3NldHMucHVicHViLm9yZyIsImtleSI6IngwaXYzZ2F3LzQxNjU5NjQ1MDY0MDE0LmpwZWciLCJlZGl0cyI6eyJyZXNpemUiOnsid2lkdGgiOjgwMCwiZml0IjoiaW5zaWRlIiwid2l0aG91dEVubGFyZ2VtZW50Ijp0cnVlfX19" alt=""/><figcaption id="nic8l5g004w-figure-caption"><div><div></div></div></figcaption></figure><p class="MsoNoSpacing" id="nsp67sxlin5">Figure 3</p><p class="MsoNoSpacing" id="nk73d6i716d"> </p><p class="MsoNoSpacing" id="nlvfuqspj11">At 2:14 PM, I made a phone call to the test device, which was unanswered. When the phone call was received by the device and the InCallService application was brought into focus. A <em><strong>Receive</strong></em> notification type was created, seen in Figure 4 and Figure 5.</p><p class="MsoNoSpacing" id="nn6e0y0wiqv"> </p><p class="MsoNoSpacing" id="naia5vw25mu"></p><figure id="nm367nxwlcz" data-node-type="image" data-size="100" data-align="center" data-url="https://assets.pubpub.org/xw6lxvgp/21659645088930.jpeg" data-caption="" data-alt-text="" data-hide-label="false"><img srcSet="https://resize-v3.pubpub.org/eyJidWNrZXQiOiJhc3NldHMucHVicHViLm9yZyIsImtleSI6Inh3Nmx4dmdwLzIxNjU5NjQ1MDg4OTMwLmpwZWciLCJlZGl0cyI6eyJyZXNpemUiOnsid2lkdGgiOjgwMCwiZml0IjoiaW5zaWRlIiwid2l0aG91dEVubGFyZ2VtZW50Ijp0cnVlfX19 1x,https://resize-v3.pubpub.org/eyJidWNrZXQiOiJhc3NldHMucHVicHViLm9yZyIsImtleSI6Inh3Nmx4dmdwLzIxNjU5NjQ1MDg4OTMwLmpwZWciLCJlZGl0cyI6eyJyZXNpemUiOnsid2lkdGgiOjE2MDAsImZpdCI6Imluc2lkZSIsIndpdGhvdXRFbmxhcmdlbWVudCI6dHJ1ZX19fQ== 2x,https://resize-v3.pubpub.org/eyJidWNrZXQiOiJhc3NldHMucHVicHViLm9yZyIsImtleSI6Inh3Nmx4dmdwLzIxNjU5NjQ1MDg4OTMwLmpwZWciLCJlZGl0cyI6eyJyZXNpemUiOnsid2lkdGgiOjI0MDAsImZpdCI6Imluc2lkZSIsIndpdGhvdXRFbmxhcmdlbWVudCI6dHJ1ZX19fQ== 3x" src="https://resize-v3.pubpub.org/eyJidWNrZXQiOiJhc3NldHMucHVicHViLm9yZyIsImtleSI6Inh3Nmx4dmdwLzIxNjU5NjQ1MDg4OTMwLmpwZWciLCJlZGl0cyI6eyJyZXNpemUiOnsid2lkdGgiOjgwMCwiZml0IjoiaW5zaWRlIiwid2l0aG91dEVubGFyZ2VtZW50Ijp0cnVlfX19" alt=""/><figcaption id="nm367nxwlcz-figure-caption"><div><div></div></div></figcaption></figure><p class="MsoNoSpacing" id="n6bdt2jq72a">Figure 4</p><p class="MsoNoSpacing" id="nivfmie1kin"> </p><p class="MsoNoSpacing" id="nmey298z4cq"></p><figure id="n1ixmfgqi7r" data-node-type="image" data-size="50" data-align="center" data-url="https://assets.pubpub.org/re61xtc7/41659645110209.jpeg" data-caption="" data-alt-text="" data-hide-label="false"><img srcSet="https://resize-v3.pubpub.org/eyJidWNrZXQiOiJhc3NldHMucHVicHViLm9yZyIsImtleSI6InJlNjF4dGM3LzQxNjU5NjQ1MTEwMjA5LmpwZWciLCJlZGl0cyI6eyJyZXNpemUiOnsid2lkdGgiOjgwMCwiZml0IjoiaW5zaWRlIiwid2l0aG91dEVubGFyZ2VtZW50Ijp0cnVlfX19 1x,https://resize-v3.pubpub.org/eyJidWNrZXQiOiJhc3NldHMucHVicHViLm9yZyIsImtleSI6InJlNjF4dGM3LzQxNjU5NjQ1MTEwMjA5LmpwZWciLCJlZGl0cyI6eyJyZXNpemUiOnsid2lkdGgiOjE2MDAsImZpdCI6Imluc2lkZSIsIndpdGhvdXRFbmxhcmdlbWVudCI6dHJ1ZX19fQ== 2x,https://resize-v3.pubpub.org/eyJidWNrZXQiOiJhc3NldHMucHVicHViLm9yZyIsImtleSI6InJlNjF4dGM3LzQxNjU5NjQ1MTEwMjA5LmpwZWciLCJlZGl0cyI6eyJyZXNpemUiOnsid2lkdGgiOjI0MDAsImZpdCI6Imluc2lkZSIsIndpdGhvdXRFbmxhcmdlbWVudCI6dHJ1ZX19fQ== 3x" src="https://resize-v3.pubpub.org/eyJidWNrZXQiOiJhc3NldHMucHVicHViLm9yZyIsImtleSI6InJlNjF4dGM3LzQxNjU5NjQ1MTEwMjA5LmpwZWciLCJlZGl0cyI6eyJyZXNpemUiOnsid2lkdGgiOjgwMCwiZml0IjoiaW5zaWRlIiwid2l0aG91dEVubGFyZ2VtZW50Ijp0cnVlfX19" alt=""/><figcaption id="n1ixmfgqi7r-figure-caption"><div><div></div></div></figcaption></figure><p class="MsoNoSpacing" id="nb4ca3i6cki">Figure 5</p><p class="MsoNoSpacing" id="n07dmcqe7hm"> </p><p class="MsoNoSpacing" id="njj2jump1dq">At 3:35 PM, the test device received a phone call from an unknown source. The phone call was unanswered. There was not any user interaction with the screen. After the phone stopped ringing, the screen turned OFF and went dark. A <em><strong>Receive</strong></em> notification type was recorded via the <em><strong>KnowledgeC.db</strong></em>, seen in Figure 6 and Figure 7. You will notice a <em><strong>Receive</strong></em> notification type for the voicemail which followed the unanswered phone call. </p><p class="MsoNoSpacing" id="nge476zo8yy"> </p><p class="MsoNoSpacing" id="nvcg7eqbotp"><em><strong>Note:</strong></em> During testing, when I answered or declined an incoming phone call, a <em><strong>Receive</strong></em> notification type would not be logged in the <em><strong>KnowledgeC.db</strong></em>. A <em><strong>Receive</strong></em> notification type would be logged in the <em><strong>KnowledgeC.db</strong></em> when a phone call was missed/unanswered and when a voicemail was received. </p><p class="MsoNoSpacing" id="n26t3upu8d5"> </p><p class="MsoNoSpacing" id="n96eyk9n612">These are examples of a<em><strong> Receive</strong></em> notification type that occurred on an iPhone with iOS 14.7.1. These types of notifications will be recorded when a notification is received by the device and when it is displayed on the device screen. In Figure 7, we have four notifications on the test device. There has been no user interaction with the device screen or the notifications.</p><p class="MsoNoSpacing" id="nffk50w1ucl"> </p><p class="MsoNoSpacing" id="n1k8g905kpz"></p><figure id="ndmri46z5ad" data-node-type="image" data-size="100" data-align="center" data-url="https://assets.pubpub.org/7cltj7ts/41659645140886.jpeg" data-caption="" data-alt-text="" data-hide-label="false"><img srcSet="https://resize-v3.pubpub.org/eyJidWNrZXQiOiJhc3NldHMucHVicHViLm9yZyIsImtleSI6IjdjbHRqN3RzLzQxNjU5NjQ1MTQwODg2LmpwZWciLCJlZGl0cyI6eyJyZXNpemUiOnsid2lkdGgiOjgwMCwiZml0IjoiaW5zaWRlIiwid2l0aG91dEVubGFyZ2VtZW50Ijp0cnVlfX19 1x,https://resize-v3.pubpub.org/eyJidWNrZXQiOiJhc3NldHMucHVicHViLm9yZyIsImtleSI6IjdjbHRqN3RzLzQxNjU5NjQ1MTQwODg2LmpwZWciLCJlZGl0cyI6eyJyZXNpemUiOnsid2lkdGgiOjE2MDAsImZpdCI6Imluc2lkZSIsIndpdGhvdXRFbmxhcmdlbWVudCI6dHJ1ZX19fQ== 2x,https://resize-v3.pubpub.org/eyJidWNrZXQiOiJhc3NldHMucHVicHViLm9yZyIsImtleSI6IjdjbHRqN3RzLzQxNjU5NjQ1MTQwODg2LmpwZWciLCJlZGl0cyI6eyJyZXNpemUiOnsid2lkdGgiOjI0MDAsImZpdCI6Imluc2lkZSIsIndpdGhvdXRFbmxhcmdlbWVudCI6dHJ1ZX19fQ== 3x" src="https://resize-v3.pubpub.org/eyJidWNrZXQiOiJhc3NldHMucHVicHViLm9yZyIsImtleSI6IjdjbHRqN3RzLzQxNjU5NjQ1MTQwODg2LmpwZWciLCJlZGl0cyI6eyJyZXNpemUiOnsid2lkdGgiOjgwMCwiZml0IjoiaW5zaWRlIiwid2l0aG91dEVubGFyZ2VtZW50Ijp0cnVlfX19" alt=""/><figcaption id="ndmri46z5ad-figure-caption"><div><div></div></div></figcaption></figure><p class="MsoNoSpacing" id="nj6080qlqek">Figure 6</p><p class="MsoNoSpacing" id="naee3q9n3b2"> </p><p class="MsoNoSpacing" id="nnex9drbiyx"></p><figure id="nngdqlnb77q" data-node-type="image" data-size="50" data-align="center" data-url="https://assets.pubpub.org/3l3vopr9/41659645161479.jpeg" data-caption="" data-alt-text="" data-hide-label="false"><img srcSet="https://resize-v3.pubpub.org/eyJidWNrZXQiOiJhc3NldHMucHVicHViLm9yZyIsImtleSI6IjNsM3ZvcHI5LzQxNjU5NjQ1MTYxNDc5LmpwZWciLCJlZGl0cyI6eyJyZXNpemUiOnsid2lkdGgiOjgwMCwiZml0IjoiaW5zaWRlIiwid2l0aG91dEVubGFyZ2VtZW50Ijp0cnVlfX19 1x,https://resize-v3.pubpub.org/eyJidWNrZXQiOiJhc3NldHMucHVicHViLm9yZyIsImtleSI6IjNsM3ZvcHI5LzQxNjU5NjQ1MTYxNDc5LmpwZWciLCJlZGl0cyI6eyJyZXNpemUiOnsid2lkdGgiOjE2MDAsImZpdCI6Imluc2lkZSIsIndpdGhvdXRFbmxhcmdlbWVudCI6dHJ1ZX19fQ== 2x,https://resize-v3.pubpub.org/eyJidWNrZXQiOiJhc3NldHMucHVicHViLm9yZyIsImtleSI6IjNsM3ZvcHI5LzQxNjU5NjQ1MTYxNDc5LmpwZWciLCJlZGl0cyI6eyJyZXNpemUiOnsid2lkdGgiOjI0MDAsImZpdCI6Imluc2lkZSIsIndpdGhvdXRFbmxhcmdlbWVudCI6dHJ1ZX19fQ== 3x" src="https://resize-v3.pubpub.org/eyJidWNrZXQiOiJhc3NldHMucHVicHViLm9yZyIsImtleSI6IjNsM3ZvcHI5LzQxNjU5NjQ1MTYxNDc5LmpwZWciLCJlZGl0cyI6eyJyZXNpemUiOnsid2lkdGgiOjgwMCwiZml0IjoiaW5zaWRlIiwid2l0aG91dEVubGFyZ2VtZW50Ijp0cnVlfX19" alt=""/><figcaption id="nngdqlnb77q-figure-caption"><div><div></div></div></figcaption></figure><p class="MsoNoSpacing" id="np1tthmuosl">Figure 7</p><p class="MsoNoSpacing" id="n7oklhuvdcp"> </p><p class="MsoNoSpacing" id="neemlg2j5c9"><em><strong>Note:</strong></em> If an application is in focus on a device and new application data is received for that specific application, no <em><strong>Receive</strong></em> notification type will be recorded. If the application is running in the background, a <em><strong>Receive</strong></em> notification type will be recorded. Example: if the Apple Messenger application is in focus and additional messages are received, a <em><strong>Receive</strong></em> notification type will not be recorded in the <em><strong>KnowledgeC.db</strong></em>. </p><p class="MsoNoSpacing" id="nbih58yalp5"> </p><p class="MsoNoSpacing" id="n8r11yh7fss"><em><strong>Note:</strong></em> During testing, there was a time when I did not have mobile data service and attempted to send two photos via multimedia messenger. When I attempted to send the messages to an Android device, the iPhone testing device received notifications which indicated the messages failed. The device recorded two <em><strong>Receive</strong></em> notifications. These notifications had the same <em><strong>Z_DKNOTIFICATIONUSAGEMETADATAKEY__IDENTIFIER</strong></em>, so again, just a reminder, these identifiers are semi-unique. There is a chance to have duplicates.</p><p class="MsoNoSpacing" id="nsb48z24n4e"> </p><p class="MsoNoSpacing" id="nobq70f235z"><strong>Hidden Notification Type:</strong></p><p class="MsoNoSpacing" id="nprecnjmfmd">A <em><strong>Hidden</strong></em> notification type will be recorded when a notification is hidden from the Lock Screen notification area. This area can be viewed both when the device is locked and when a user swipes down on the screen to see the Notification Center.  </p><p class="MsoNoSpacing" id="nnb0avdikh9"> </p><p class="MsoNoSpacing" id="nfh9ujqjr99">During testing this occurred a few different ways:</p><p class="MsoNoSpacing" id="nrh5ffe1t2d"> </p><p class="MsoNoSpacing" id="n9tyrmdhvbf">·       If a device is locked and it receives a notification, it will be displayed on the Lock Screen. When a user unlocks the device and accesses the springboard or an application, the notifications that were displayed on the Lock Screen, will no longer be displayed, thus they are hidden, and <em><strong>Hidden</strong></em> notification types will be recorded in the <em><strong>KnowledgeC.db.</strong></em></p><p class="MsoNoSpacing" id="nuret2mgdt1"> </p><p class="MsoNoSpacing" id="ne3tn74iufk">·       If a device is unlocked and the user is navigating the springboard or an application is in focus and a notification is received, a Banner Notification will be displayed on the screen. These notifications will be listed in the Lock Screen area until the device screen turns off, either by a user or a device setting.</p><p class="MsoNoSpacing" id="nofpfq5sv8z"> </p><p class="MsoNoSpacing" id="nspngs98jww"><em><strong>Note:</strong></em> Please review my previous blog about how to determine what value was set for the display auto-lock.</p><p class="MsoNoSpacing" id="nvs4jxjfl8a"><strong> </strong></p><p class="MsoNoSpacing" id="noufshjdya1">In Figure 7, there are four notifications displayed on the Lock Screen. At 4:38:56 PM, the test device was unlocked and I clicked on one of the SMS notification banners. An open button appeared to the left of the notification banner. Instead of clicking on the open button, I clicked on the home button unlocking the device. At that time all the notification banners were hidden from the Lock Screen. I checked the Lock Screen and verified that there were no notification banners visible, seen in Figure 8.</p><p class="MsoNoSpacing" id="nnbpw927pr5"></p><p class="MsoNoSpacing" id="n65mju15y6s"></p><figure id="noc99vra6rq" data-node-type="image" data-size="50" data-align="center" data-url="https://assets.pubpub.org/gnpge4xh/21659645179776.jpeg" data-caption="" data-alt-text="" data-hide-label="false"><img srcSet="https://resize-v3.pubpub.org/eyJidWNrZXQiOiJhc3NldHMucHVicHViLm9yZyIsImtleSI6ImducGdlNHhoLzIxNjU5NjQ1MTc5Nzc2LmpwZWciLCJlZGl0cyI6eyJyZXNpemUiOnsid2lkdGgiOjgwMCwiZml0IjoiaW5zaWRlIiwid2l0aG91dEVubGFyZ2VtZW50Ijp0cnVlfX19 1x,https://resize-v3.pubpub.org/eyJidWNrZXQiOiJhc3NldHMucHVicHViLm9yZyIsImtleSI6ImducGdlNHhoLzIxNjU5NjQ1MTc5Nzc2LmpwZWciLCJlZGl0cyI6eyJyZXNpemUiOnsid2lkdGgiOjE2MDAsImZpdCI6Imluc2lkZSIsIndpdGhvdXRFbmxhcmdlbWVudCI6dHJ1ZX19fQ== 2x,https://resize-v3.pubpub.org/eyJidWNrZXQiOiJhc3NldHMucHVicHViLm9yZyIsImtleSI6ImducGdlNHhoLzIxNjU5NjQ1MTc5Nzc2LmpwZWciLCJlZGl0cyI6eyJyZXNpemUiOnsid2lkdGgiOjI0MDAsImZpdCI6Imluc2lkZSIsIndpdGhvdXRFbmxhcmdlbWVudCI6dHJ1ZX19fQ== 3x" src="https://resize-v3.pubpub.org/eyJidWNrZXQiOiJhc3NldHMucHVicHViLm9yZyIsImtleSI6ImducGdlNHhoLzIxNjU5NjQ1MTc5Nzc2LmpwZWciLCJlZGl0cyI6eyJyZXNpemUiOnsid2lkdGgiOjgwMCwiZml0IjoiaW5zaWRlIiwid2l0aG91dEVubGFyZ2VtZW50Ijp0cnVlfX19" alt=""/><figcaption id="noc99vra6rq-figure-caption"><div><div></div></div></figcaption></figure><p class="MsoNoSpacing" id="npjgujol42p"> </p><p class="MsoNoSpacing" id="nk1y1zkkzwq">                                  <br/>Figure 8</p><p class="MsoNoSpacing" id="nng0kokdg1f"> </p><p class="MsoNoSpacing" id="na5iz8mshgo">While reviewing the notifications in ArtEx, seen in Figure 9, I noticed there are four <em><strong>Hidden</strong></em> notifications logged at the time I unlocked the device. I researched if there was any way to link the <em><strong>Hidden</strong></em> notification type to the <em><strong>Receive</strong></em>notification type. Reminder, bundle identifications are only recorded with a <em><strong>Receive </strong></em>notification type. </p><p class="MsoNoSpacing" id="nmdc1geqi4b"> </p><p class="MsoNoSpacing" id="nsk5o05d34b"></p><figure id="naclnood97p" data-node-type="image" data-size="100" data-align="center" data-url="https://assets.pubpub.org/srbb2kft/11659645191340.jpeg" data-caption="" data-alt-text="" data-hide-label="false"><img srcSet="https://resize-v3.pubpub.org/eyJidWNrZXQiOiJhc3NldHMucHVicHViLm9yZyIsImtleSI6InNyYmIya2Z0LzExNjU5NjQ1MTkxMzQwLmpwZWciLCJlZGl0cyI6eyJyZXNpemUiOnsid2lkdGgiOjgwMCwiZml0IjoiaW5zaWRlIiwid2l0aG91dEVubGFyZ2VtZW50Ijp0cnVlfX19 1x,https://resize-v3.pubpub.org/eyJidWNrZXQiOiJhc3NldHMucHVicHViLm9yZyIsImtleSI6InNyYmIya2Z0LzExNjU5NjQ1MTkxMzQwLmpwZWciLCJlZGl0cyI6eyJyZXNpemUiOnsid2lkdGgiOjE2MDAsImZpdCI6Imluc2lkZSIsIndpdGhvdXRFbmxhcmdlbWVudCI6dHJ1ZX19fQ== 2x,https://resize-v3.pubpub.org/eyJidWNrZXQiOiJhc3NldHMucHVicHViLm9yZyIsImtleSI6InNyYmIya2Z0LzExNjU5NjQ1MTkxMzQwLmpwZWciLCJlZGl0cyI6eyJyZXNpemUiOnsid2lkdGgiOjI0MDAsImZpdCI6Imluc2lkZSIsIndpdGhvdXRFbmxhcmdlbWVudCI6dHJ1ZX19fQ== 3x" src="https://resize-v3.pubpub.org/eyJidWNrZXQiOiJhc3NldHMucHVicHViLm9yZyIsImtleSI6InNyYmIya2Z0LzExNjU5NjQ1MTkxMzQwLmpwZWciLCJlZGl0cyI6eyJyZXNpemUiOnsid2lkdGgiOjgwMCwiZml0IjoiaW5zaWRlIiwid2l0aG91dEVubGFyZ2VtZW50Ijp0cnVlfX19" alt=""/><figcaption id="naclnood97p-figure-caption"><div><div></div></div></figcaption></figure><p class="MsoNoSpacing" id="ngrdojbliqm">Figure 9</p><p class="MsoNoSpacing" id="nz0pk2qo0j8"> </p><p class="MsoNoSpacing" id="n7e8wc4pxlh">As seen in Figure 10, I noticed Magnet AXIOM was parsing the <em><strong>ZSTRUCTUREDMETADATA table  Z_DKNOTIFICATIONUSAGEMETADATAKEY__IDENTIFIER</strong></em> with the notifications. After additional testing, I was able to determine this is the value that can be used to link related notification types together.</p><p class="MsoNoSpacing" id="n5345gexi4g"> </p><p class="MsoNoSpacing" id="nhnfc5dyyn4"></p><figure id="njbo794270x" data-node-type="image" data-size="50" data-align="center" data-url="https://assets.pubpub.org/awupvpuf/61659645213845.png" data-caption="" data-alt-text="" data-hide-label="false"><img srcSet="https://resize-v3.pubpub.org/eyJidWNrZXQiOiJhc3NldHMucHVicHViLm9yZyIsImtleSI6ImF3dXB2cHVmLzYxNjU5NjQ1MjEzODQ1LnBuZyIsImVkaXRzIjp7InJlc2l6ZSI6eyJ3aWR0aCI6ODAwLCJmaXQiOiJpbnNpZGUiLCJ3aXRob3V0RW5sYXJnZW1lbnQiOnRydWV9fX0= 1x,https://resize-v3.pubpub.org/eyJidWNrZXQiOiJhc3NldHMucHVicHViLm9yZyIsImtleSI6ImF3dXB2cHVmLzYxNjU5NjQ1MjEzODQ1LnBuZyIsImVkaXRzIjp7InJlc2l6ZSI6eyJ3aWR0aCI6MTYwMCwiZml0IjoiaW5zaWRlIiwid2l0aG91dEVubGFyZ2VtZW50Ijp0cnVlfX19 2x,https://resize-v3.pubpub.org/eyJidWNrZXQiOiJhc3NldHMucHVicHViLm9yZyIsImtleSI6ImF3dXB2cHVmLzYxNjU5NjQ1MjEzODQ1LnBuZyIsImVkaXRzIjp7InJlc2l6ZSI6eyJ3aWR0aCI6MjQwMCwiZml0IjoiaW5zaWRlIiwid2l0aG91dEVubGFyZ2VtZW50Ijp0cnVlfX19 3x" src="https://resize-v3.pubpub.org/eyJidWNrZXQiOiJhc3NldHMucHVicHViLm9yZyIsImtleSI6ImF3dXB2cHVmLzYxNjU5NjQ1MjEzODQ1LnBuZyIsImVkaXRzIjp7InJlc2l6ZSI6eyJ3aWR0aCI6ODAwLCJmaXQiOiJpbnNpZGUiLCJ3aXRob3V0RW5sYXJnZW1lbnQiOnRydWV9fX0=" alt=""/><figcaption id="njbo794270x-figure-caption"><div><div></div></div></figcaption></figure><p class="MsoNoSpacing" id="nqrdcxfafyh">Figure 10</p><p class="MsoNoSpacing" id="nbju8udwww3"> </p><p class="MsoNoSpacing" id="n00ubs27g83">In Figure 11, we can see the data stored in the <em><strong>KnowledgeC.db</strong></em> when the 4 notifications were received. Then we can see when the notifications are hidden from the lock screen and when they are cleared from the Notification Center. Later I will discuss the <em><strong>IndirectClear</strong></em> notification type and describe how and why this happened, see the <em><strong>IndirectClear</strong></em> section for more details. </p><p class="MsoNoSpacing" id="nlxd8ayiq9l"> </p><p class="MsoNoSpacing" id="n3n71721igl"></p><p class="MsoNoSpacing" id="ny9rbm6r1eq">Figure 11</p><p class="MsoNoSpacing" id="n0ecpn6kas8"> </p><p class="MsoNoSpacing" id="n78niqmv8yx">In the next example, the test device received a SMS notification, Facebook Messenger notification and a Twitter notification. When the notifications were received there was no user interaction with the device. The screen turned ON and OFF on its own. After the three notifications were received, the test device was unlocked by clicking the home button and all notifications were hidden from the Lock Screen. These notifications can still be visible in the Notification Center.  </p><p class="MsoNoSpacing" id="nrrdahddoe1"> </p><p class="MsoNoSpacing" id="n6b51r0flak">In Figure 12 we can see the activity for the three notifications that were received and hidden. When the notifications were hidden from the Lock Screen, <em><strong>Hidden</strong></em> notification types were recorded for each notification. Figure 12 shows how these actions look like on the device and in the <em><strong>KnowledgeC.db</strong></em>.</p><p class="MsoNoSpacing" id="n0o0pf9cd9f">  </p><p class="MsoNoSpacing" id="nw40l14lm1u"></p><p class="MsoNoSpacing" id="nfw6920arad"></p><p class="MsoNoSpacing" id="ndufa7efeqr">Figure 12</p><p class="MsoNoSpacing" id="n1r9va0ylet"> </p><p class="MsoNoSpacing" id="now02rz6m5d">The previous examples had user – device interaction. Based on the testing, <em><strong>Hidden</strong></em> notifications can be both user and non-user initiated.</p><p class="MsoNoSpacing" id="n1r0hgdvm00"> </p><p class="MsoNoSpacing" id="n4emdjcro8j">In Figure 13, the Notification Center is checked for any active notifications, which there are none. The device is unlocked, and the Facebook Messenger is brought into focus. While the application was in focus, the device received a notification for a SMS message. There was no user interaction with this notification, and it disappears from the screen on its own. Another message is received, and another Banner Notification is displayed, it also did not have any user interaction and disappears on its own.</p><p class="MsoNoSpacing" id="n5jfs5vufsq"> </p><p class="MsoNoSpacing" id="nxb16beyyq4">The Facebook Messenger application was sent to the background, and we can see the messenger application still has a badge notification count, these will only be cleared after the application data is viewed or handled within the application. When the notifications were received, the messenger application was running in the background. All the applications were closed, except for the Facebook Messenger application. While the Facebook Messenger application was in focus, a Facebook Messenger message was received. Notice the device did not display a Banner Notification, as previously seen with the SMS notifications. </p><p class="MsoNoSpacing" id="n8m0n1cgu7l"> </p><p class="MsoNoSpacing" id="ng5tmd5gd84">After the screen is turned off and the device is locked, we can only see the two SMS notifications are displayed in the Notification Center. The Facebook Messenger message did not generate a <em><strong>Receive</strong></em> notification type and will not be listed in the <em><strong>KnowledgeC.db</strong></em>.</p><p class="MsoNoSpacing" id="nnlzm4jmnig"> </p><p class="MsoNoSpacing" id="nvw4z2l6uxp"></p><p class="MsoNoSpacing" id="n3elkkpqb8l">Figure 13</p><p class="MsoNoSpacing" id="n7son2otz2m"> </p><p class="MsoNoSpacing" id="nd9uwqfcxdk"><strong>Clear Notification Type:</strong></p><p class="MsoNoSpacing" id="nxw9ovw450z">A <em><strong>Clear</strong></em> notification type occurs when a user manually swipes left on the notification banner displayed in the Lock Screen or in the Notification Center, by doing so, reveals a clear button. When the user presses the clear button for an individual notification or the clear all buttons. It removes the notification from the Lock Screen and the Notification Center.</p><p class="MsoNoSpacing" id="n81nuk1wck1"> </p><p class="MsoNoSpacing" id="n8yut1qolm7"><em><strong>Note:</strong></em> A corresponding <em><strong>IndirectClear</strong></em> notification type will also be recorded with a matching timestamp as the <em><strong>Clear</strong></em>notification type. Review the <em><strong>IndirectClear</strong></em> notification type section for more details.  </p><p class="MsoNoSpacing" id="n765hxf7b7d"><strong> </strong></p><p class="MsoNoSpacing" id="nyxb0hbmphy">In Figure 14, the test device receives a notification for an incoming SMS message. Then at 7:45:55 PM, another notification is received for a second incoming SMS message.</p><p class="MsoNoSpacing" id="n392v6863tr"> </p><p class="MsoNoSpacing" id="nuai384o7x1">The user accessed the Lock Screen notifications, swiped left on the second notification, and pressed the clear button. The notification was removed from the Lock Screen and will not be displayed in the Notification Center. After analyzing the database, when the clear button is selected, that specific notification will have both a <em><strong>Clear </strong></em>notification type and an <em><strong>IndirectClear</strong></em> notification type with the same timestamp. <em><strong> </strong></em></p><p class="MsoNoSpacing" id="nxnix5ak5n1"> </p><p class="MsoNoSpacing" id="nmk6o4gr90e">The user then accessed the Lock Screen, swiped right on the notification banner, and clicked the open button. The Messenger application was brought into focus and the message was viewed within the application. After analyzing the database when the open button was selected, that specific notification would have both a <em><strong>DefaultAction</strong></em> notification type and an <em><strong>IndirectClear</strong></em> notification type with the same timestamp. Review the <em><strong>DefaultAction</strong></em> notification type section for more details.  </p><p class="MsoNoSpacing" id="n6143oazdw4"> </p><p class="MsoNoSpacing" id="nt7uj3g3gep">In Figure 14 we can see what these actions look like on the device and the data recorded in the <em><strong>KnowledgeC.db</strong></em>.  </p><p class="MsoNoSpacing" id="n3rt0h0z4yc"> </p><p class="MsoNoSpacing" id="n5o0mh5crt5"></p><p class="MsoNoSpacing" id="nbqwypzu1ur">Figure 14</p><p class="MsoNoSpacing" id="nn6hj6uznvt"> </p><p class="MsoNoSpacing" id="nb65prefryk"><strong>Dismiss Notification Type:</strong></p><p class="MsoNoSpacing" id="n3ntrhen6tr">If a device is unlocked and the screen is ON when a notification is received, if the user swipes up on the notification, before it disappears on its own, a <em><strong>Dismiss</strong></em> notification type will be recorded in the <em><strong>KnowledgeC.db</strong></em>.</p><p class="MsoNoSpacing" id="n518ozpr2ym"> </p><p class="MsoNoSpacing" id="n02f0stku03">In Figure 15, the test device receives a Facebook Messenger message notification. The user swiped up on the notification to dismiss it. Then a SMS message notification is received, and the user swiped up on the notification to dismiss it. The user then locks the device and views the Lock Screen and Notification Center. The two notifications that were dismissed are no longer visible in the Lock Screen notification area, but they are displayed in the Notification Center. </p><p class="MsoNoSpacing" id="ncmeswzlhgg"> </p><p class="MsoNoSpacing" id="n2hh9y0asjj">The SMS notification is cleared from the Notification Center and the Facebook Messenger notification is opened, thus bringing the Facebook Messenger application into focus. Figure 15, shows what this looks like on the device and how the data is recorded in the <em><strong>KnowledgeC.db</strong></em>.</p><p class="MsoNoSpacing" id="n740w9afpzb"> </p><p class="MsoNoSpacing" id="niwu2t4mt7a"></p><p class="MsoNoSpacing" id="njtorio4npf">Figure 15</p><p class="MsoNoSpacing" id="nuvzwpiiu9b"> </p><p class="MsoNoSpacing" id="nk8cn7v3dpj"><strong>IndirectClear Notification Type:</strong></p><p class="MsoNoSpacing" id="n6702oyyqp7">An <em><strong>IndirectClear</strong></em> notification type will occur when a notification is no longer displayed in the Notification Center.  </p><p class="MsoNoSpacing" id="ndizdqcsxrp"> </p><p class="MsoNoSpacing" id="n04a9664bgk">In Figure 16 the test device as already received two notifications, one from a SMS message and another from Twitter. An additional Facebook Messenger message notification is received. At this time, the test device is locked, and the screen is turning ON when the notifications are received, then back OFF on its own after the notification has been displayed. Another Twitter notification is received and displayed. Special thanks to Kevin Pagano (@KevinPagano3) for his assistance with an additional notification during testing! An additional SMS message notification was received.</p><p class="MsoNoSpacing" id="nyknef5d7ak"> </p><p class="MsoNoSpacing" id="nlq6i6puapj">The user unlocked the device by pressing the home button. This user action then hid the notifications from the Lock Screen and a <em><strong>Hidden</strong></em> notification type was recorded for each one of the notifications that were displayed on the Lock Screen.</p><p class="MsoNoSpacing" id="nsd3nf1n71h"> </p><p class="MsoNoSpacing" id="n3ebzh19c9t">After the notifications were hidden from the Lock Screen, the user checked the Notification Center, and all the past notifications are still visible. The user entered the Notification Center and used the clear button to clear the Facebook Messenger notification. </p><p class="MsoNoSpacing" id="ndoyn70bbdm"> </p><p class="MsoNoSpacing" id="nipocgmpkie">During testing, I received a phone call from someone reminding me that my vehicle warranty was expired. After receiving the phone call notification, the device was unlocked, and the notification was hidden from the Lock Screen, then the user cleared it from the Notification Center. Then the user cleared one of the SMS notifications from the Notification Center. The user then unlocks the device and views the springboard. Notice that all the badge notification counters are still visible.</p><p class="MsoNoSpacing" id="ncarbbs4r4i"> </p><p class="MsoNoSpacing" id="n3penouqel3">In Figure 16, we can see what this looks like on the device and how the data is recorded in the <em><strong>KnowledgeC.db</strong></em>.</p><p class="MsoNoSpacing" id="ndxdm6rf6g4"> </p><p class="MsoNoSpacing" id="nt209d7jtro"></p><p class="MsoNoSpacing" id="njxaytswdzz">Figure 16</p><p class="MsoNoSpacing" id="nkbrymxc7tf"> </p><p class="MsoNoSpacing" id="ni7aebpz9xi">An <em><strong>IndirectClear</strong></em> notification type will be recorded when the application is opened which has pending data/badge notifications that have not been viewed. </p><p class="MsoNoSpacing" id="nl0gvujjxiv"> </p><p class="MsoNoSpacing" id="n5egvfdoz46"><strong>DefaultAction Notification Type:</strong></p><p class="MsoNoSpacing" id="nw5dr5wo00z">The <em><strong>DefaultAction</strong></em> notification type occurs when a notification is received and is used to open the application to view the data.</p><p class="MsoNoSpacing" id="nd25pxexrk0"> </p><p class="MsoNoSpacing" id="nb19mqmgc53">We have already seen some examples of the <em><strong>DefaultAction</strong></em> notification type, but we will review it and show how it was replicated during testing.</p><p class="MsoNoSpacing" id="nzw2558itys"> </p><p class="MsoNoSpacing" id="nh13xg2qc57">In this first example, Figure 17, the device was unlocked, and the user was navigating the springboard. The device received a SMS message notification, which was displayed on the device in a banner notification. The notification banner was clicked, and the Apple Messenger application was opened to view the data. You will notice the <em><strong>DefaultAction</strong></em> and <em><strong>IndirectClear</strong></em> notification types are logged one second apart. </p><p class="MsoNoSpacing" id="nkbjo28w85p"> </p><p class="MsoNoSpacing" id="niscm0hv4mt"></p><p class="MsoNoSpacing" id="nxgh5miojmy">Figure 17 </p><p class="MsoNoSpacing" id="n7ew61c48y0"> </p><p class="MsoNoSpacing" id="njy5k3q286f"><em><strong>Note:</strong></em> When a notification is used to bring an application into focus, the method listed for bringing the application into focus will be <em>com.apple.SpringBoard.transitionReason.externalrequest</em>. I’ll be doing more research into application in focus methods for both iOS 14 and 15 and will be writing something soon, so stay tuned.</p><p class="MsoNoSpacing" id="n8wyt1s8awu"> </p><p class="MsoNoSpacing" id="nj815thbi8m">In Figure 18, the second example, we will be reviewing the data stored in the <em><strong>KnowledgeC.db</strong></em> and attempt to determine what happened on the device, based on what we have already learned in this blog. Based on previous testing I believe:</p><p class="MsoNoSpacing" id="nytbmg6oyff"> </p><p class="MsoNoSpacing" id="nf50dk6gxnp">·       On 10/1/2021 at 19:13:14 UTC, the device was unlocked, the screen was on, and the device received a Facebook Messenger notification.</p><p class="MsoNoSpacing" id="n0xbzkvoyur"> </p><p class="MsoNoSpacing" id="nqhdwglpbs8">·       At 19:13:16 UTC, the device user swiped up on the notification to dismiss it.</p><p class="MsoNoSpacing" id="n2qp9jn5yqr"> </p><p class="MsoNoSpacing" id="nzxp9r9r7cn">·       At 19:13:48 UTC, the notification was hidden from the Lock Screen. </p><p class="MsoNoSpacing" id="ntl675ud79m"> </p><p class="MsoNoSpacing" id="nycrqp2qg97">·       At 19:14:23 UTC, the device user accessed the Notification Center and opened the notification, which then brought the Facebook Messenger into focus.</p><p class="MsoNoSpacing" id="nmkyx1xg8an"> </p><p class="MsoNoSpacing" id="n4mtas9c8uz"></p><p class="MsoNoSpacing" id="njmkmxmahxa">Figure 18</p><p class="MsoNoSpacing" id="np2bu3nrt7o"> </p><p class="MsoNoSpacing" id="nt4q0dho241">In Figure 19 and can see what these device events look like in ArtEx.</p><p class="MsoNoSpacing" id="nq6my7tk7ge"> </p><p class="MsoNoSpacing" id="ntrpuf9199c"></p><p class="MsoNoSpacing" id="nwg2vyrm1a5">Figure 19</p><p class="MsoNoSpacing" id="nax0x3f2tog"> </p><p class="MsoNoSpacing" id="njzj90iic0y"><strong>Orb Notifications:   </strong></p><p class="MsoNoSpacing" id="n18c47lq8m5">I have not been able to determine exactly what <em><strong>Orb</strong></em> stands for and if anyone could provide some insight it would be appreciated.</p><p class="MsoNoSpacing" id="nn3eijxpjo4"> </p><p class="MsoNoSpacing" id="nhze6259tre">During testing, I would receive an <em><strong>Orb</strong></em> notification type in the <em><strong>KnowledgeC.db</strong></em> when a notification was received, and I interacted with the notification on the device screen. When I pressed and held the notification, the application would open in a small sub-window on the device. I could send messages or preform other actions within the application from this small sub-window. The following are some examples:</p><p class="MsoNoSpacing" id="nirjk1x5750"> </p><p class="MsoNoSpacing" id="nes2xh2s6gj"><strong>Do not Disturb Notification:</strong></p><p class="MsoNoSpacing" id="n79tjlbirwk">During testing, I received several Do Not Disturb While Driving notifications. While the notification was displayed on the Lock Screen, if I clicked on the notification a sub-window would appear and an option to select, <em><strong>I’m Not Driving</strong></em>would be displayed. When this small sub-window with this option would be displayed on the screen, I would receive an <em><strong>Orb</strong></em> notification type in the <em><strong>KnowledgeC.db</strong></em>, seen in Figure 20.</p><p class="MsoNoSpacing" id="n7x3w69je44"> </p><p class="MsoNoSpacing" id="nwxwoyof85o"></p><p class="MsoNoSpacing" id="n2w1nm35j22">Figure 20</p><p class="MsoNoSpacing" id="n87bbxbip9u">    </p><p class="MsoNoSpacing" id="nuggr7f1k6p"><strong>Apple Messenger:</strong></p><p class="MsoNoSpacing" id="nh7zrk3pg55">During testing, I was able to replicate the <em><strong>Orb</strong></em> notification type by sending a SMS message to the test device, then clicking on the notification and opening the Apple Messenger application in a small sub-window, which allowed me to interact with the application in the small sub-window, which included sending a text message, while the device was locked as seen in Figure 21.</p><p class="MsoNoSpacing" id="ni6y82udrwf"> </p><p class="MsoNoSpacing" id="nz33ltwek2g"></p><p class="MsoNoSpacing" id="nkecrlkbn46">Figure 21</p><p class="MsoNoSpacing" id="nqh68s1g08t"> </p><p class="MsoNoSpacing" id="nzbe0pewbfl"><strong>Josh Hickman Image Testing:</strong></p><p class="MsoNoSpacing" id="n3ijoca6spp">After my testing, I decided to test my knowledge of these notifications and loaded up Josh Hickman’s iPhone SE iOS 14.3 image into ArtEx.</p><p class="MsoNoSpacing" id="nop57k9woin"> </p><p class="MsoNoSpacing" id="nxf63n6a09p"><strong>Facebook Messenger:</strong></p><p class="MsoNoSpacing" id="n45idad6zqb">In Josh Hickman’s documentation there is a section for Facebook Messenger, which is displayed in Figure 22. Notice in Figure 22, his test device sends and receives several messages, media messages and video calls. </p><p class="MsoNoSpacing" id="ns7ad59bywx"> </p><p class="MsoNoSpacing" id="nv7tw5v7vdx"></p><figure id="n3jmmkm4xr9" data-node-type="image" data-size="50" data-align="center" data-url="https://assets.pubpub.org/a3h3obwr/01659645334113.png" data-caption="" data-alt-text="" data-hide-label="false"><img srcSet="https://resize-v3.pubpub.org/eyJidWNrZXQiOiJhc3NldHMucHVicHViLm9yZyIsImtleSI6ImEzaDNvYndyLzAxNjU5NjQ1MzM0MTEzLnBuZyIsImVkaXRzIjp7InJlc2l6ZSI6eyJ3aWR0aCI6ODAwLCJmaXQiOiJpbnNpZGUiLCJ3aXRob3V0RW5sYXJnZW1lbnQiOnRydWV9fX0= 1x,https://resize-v3.pubpub.org/eyJidWNrZXQiOiJhc3NldHMucHVicHViLm9yZyIsImtleSI6ImEzaDNvYndyLzAxNjU5NjQ1MzM0MTEzLnBuZyIsImVkaXRzIjp7InJlc2l6ZSI6eyJ3aWR0aCI6MTYwMCwiZml0IjoiaW5zaWRlIiwid2l0aG91dEVubGFyZ2VtZW50Ijp0cnVlfX19 2x,https://resize-v3.pubpub.org/eyJidWNrZXQiOiJhc3NldHMucHVicHViLm9yZyIsImtleSI6ImEzaDNvYndyLzAxNjU5NjQ1MzM0MTEzLnBuZyIsImVkaXRzIjp7InJlc2l6ZSI6eyJ3aWR0aCI6MjQwMCwiZml0IjoiaW5zaWRlIiwid2l0aG91dEVubGFyZ2VtZW50Ijp0cnVlfX19 3x" src="https://resize-v3.pubpub.org/eyJidWNrZXQiOiJhc3NldHMucHVicHViLm9yZyIsImtleSI6ImEzaDNvYndyLzAxNjU5NjQ1MzM0MTEzLnBuZyIsImVkaXRzIjp7InJlc2l6ZSI6eyJ3aWR0aCI6ODAwLCJmaXQiOiJpbnNpZGUiLCJ3aXRob3V0RW5sYXJnZW1lbnQiOnRydWV9fX0=" alt=""/><figcaption id="n3jmmkm4xr9-figure-caption"><div><div></div></div></figcaption></figure><p class="MsoNoSpacing" id="nujyczs68rq">Figure 22</p><p class="MsoNoSpacing" id="nz6z6ik8wfd"> </p><p class="MsoNoSpacing" id="npfc2ph6kgm">Figure 23 is that same timeframe viewed in ArtEx. Notice between 14:32 though 15:18, no new notifications were being received on the device. This is because the Facebook Application was in focus, and everything is occurring in real time on the device. </p><p class="MsoNoSpacing" id="n6fmd06dafo"> </p><p class="MsoNoSpacing" id="n2npcp8ws8x">At 15:24:14 there is a Receive notification type for Google Duo (com.google.Tachyon).    </p><p class="MsoNoSpacing" id="nrvqofljunr"> </p><p class="MsoNoSpacing" id="n5pbsma5tnf"></p><figure id="ngirwvo6op8" data-node-type="image" data-size="50" data-align="center" data-url="https://assets.pubpub.org/slwk1j4u/71659645349084.png" data-caption="" data-alt-text="" data-hide-label="false"><img srcSet="https://resize-v3.pubpub.org/eyJidWNrZXQiOiJhc3NldHMucHVicHViLm9yZyIsImtleSI6InNsd2sxajR1LzcxNjU5NjQ1MzQ5MDg0LnBuZyIsImVkaXRzIjp7InJlc2l6ZSI6eyJ3aWR0aCI6ODAwLCJmaXQiOiJpbnNpZGUiLCJ3aXRob3V0RW5sYXJnZW1lbnQiOnRydWV9fX0= 1x,https://resize-v3.pubpub.org/eyJidWNrZXQiOiJhc3NldHMucHVicHViLm9yZyIsImtleSI6InNsd2sxajR1LzcxNjU5NjQ1MzQ5MDg0LnBuZyIsImVkaXRzIjp7InJlc2l6ZSI6eyJ3aWR0aCI6MTYwMCwiZml0IjoiaW5zaWRlIiwid2l0aG91dEVubGFyZ2VtZW50Ijp0cnVlfX19 2x,https://resize-v3.pubpub.org/eyJidWNrZXQiOiJhc3NldHMucHVicHViLm9yZyIsImtleSI6InNsd2sxajR1LzcxNjU5NjQ1MzQ5MDg0LnBuZyIsImVkaXRzIjp7InJlc2l6ZSI6eyJ3aWR0aCI6MjQwMCwiZml0IjoiaW5zaWRlIiwid2l0aG91dEVubGFyZ2VtZW50Ijp0cnVlfX19 3x" src="https://resize-v3.pubpub.org/eyJidWNrZXQiOiJhc3NldHMucHVicHViLm9yZyIsImtleSI6InNsd2sxajR1LzcxNjU5NjQ1MzQ5MDg0LnBuZyIsImVkaXRzIjp7InJlc2l6ZSI6eyJ3aWR0aCI6ODAwLCJmaXQiOiJpbnNpZGUiLCJ3aXRob3V0RW5sYXJnZW1lbnQiOnRydWV9fX0=" alt=""/><figcaption id="ngirwvo6op8-figure-caption"><div><div></div></div></figcaption></figure><p class="MsoNoSpacing" id="njl0rnrke55">Figure 23  </p><p class="MsoNoSpacing" id="ny2psc7m54g"> </p><p class="MsoNoSpacing" id="nfg439fhyzd"><strong>Google Duo:</strong></p><p class="MsoNoSpacing" id="nfp7uz3la2j">In Josh Hickman’s documentation there is a section for Google Duo, which is displayed in Figure 24. Notice in Figure 24, there is documentation that on 2/4/2021 at 15:24, a note is received, which contained a message <em>What is this??</em>  </p><p class="MsoNoSpacing" id="ne1py2dxsmo"> </p><p class="MsoNoSpacing" id="nxqcjbh6yrw"></p><figure id="n6vw8u7g7ka" data-node-type="image" data-size="50" data-align="center" data-url="https://assets.pubpub.org/2by364ya/61659645369647.png" data-caption="" data-alt-text="" data-hide-label="false"><img srcSet="https://resize-v3.pubpub.org/eyJidWNrZXQiOiJhc3NldHMucHVicHViLm9yZyIsImtleSI6IjJieTM2NHlhLzYxNjU5NjQ1MzY5NjQ3LnBuZyIsImVkaXRzIjp7InJlc2l6ZSI6eyJ3aWR0aCI6ODAwLCJmaXQiOiJpbnNpZGUiLCJ3aXRob3V0RW5sYXJnZW1lbnQiOnRydWV9fX0= 1x,https://resize-v3.pubpub.org/eyJidWNrZXQiOiJhc3NldHMucHVicHViLm9yZyIsImtleSI6IjJieTM2NHlhLzYxNjU5NjQ1MzY5NjQ3LnBuZyIsImVkaXRzIjp7InJlc2l6ZSI6eyJ3aWR0aCI6MTYwMCwiZml0IjoiaW5zaWRlIiwid2l0aG91dEVubGFyZ2VtZW50Ijp0cnVlfX19 2x,https://resize-v3.pubpub.org/eyJidWNrZXQiOiJhc3NldHMucHVicHViLm9yZyIsImtleSI6IjJieTM2NHlhLzYxNjU5NjQ1MzY5NjQ3LnBuZyIsImVkaXRzIjp7InJlc2l6ZSI6eyJ3aWR0aCI6MjQwMCwiZml0IjoiaW5zaWRlIiwid2l0aG91dEVubGFyZ2VtZW50Ijp0cnVlfX19 3x" src="https://resize-v3.pubpub.org/eyJidWNrZXQiOiJhc3NldHMucHVicHViLm9yZyIsImtleSI6IjJieTM2NHlhLzYxNjU5NjQ1MzY5NjQ3LnBuZyIsImVkaXRzIjp7InJlc2l6ZSI6eyJ3aWR0aCI6ODAwLCJmaXQiOiJpbnNpZGUiLCJ3aXRob3V0RW5sYXJnZW1lbnQiOnRydWV9fX0=" alt=""/><figcaption id="n6vw8u7g7ka-figure-caption"><div><div></div></div></figcaption></figure><p class="MsoNoSpacing" id="n843txpi9qa">Figure 24</p><p class="MsoNoSpacing" id="nkqaz3zs5jy"> </p><p class="MsoNoSpacing" id="ngne210d61i">Figure 25 is that same timeframe viewed in ArtEx. Notice there is a <em><strong>Receive</strong></em> notification type, followed by a <em><strong>DefaultAction</strong></em>, then an <em><strong>IndirectClear</strong></em> notification type. This indicates that when the notification was received on the device, the user used the notification to bring the application into focus. We can see in ArtEx the application started in focus at 15:24:20, which is one second after the <em><strong>DefaultAction</strong></em> notification type was logged.     </p><p class="MsoNoSpacing" id="nbiyzl4b66j"> </p><p class="MsoNoSpacing" id="nr56mxe2hzo"></p><figure id="nfj9hfvz1zg" data-node-type="image" data-size="50" data-align="center" data-url="https://assets.pubpub.org/e5gexzku/11659645383334.png" data-caption="" data-alt-text="" data-hide-label="false"><img srcSet="https://resize-v3.pubpub.org/eyJidWNrZXQiOiJhc3NldHMucHVicHViLm9yZyIsImtleSI6ImU1Z2V4emt1LzExNjU5NjQ1MzgzMzM0LnBuZyIsImVkaXRzIjp7InJlc2l6ZSI6eyJ3aWR0aCI6ODAwLCJmaXQiOiJpbnNpZGUiLCJ3aXRob3V0RW5sYXJnZW1lbnQiOnRydWV9fX0= 1x,https://resize-v3.pubpub.org/eyJidWNrZXQiOiJhc3NldHMucHVicHViLm9yZyIsImtleSI6ImU1Z2V4emt1LzExNjU5NjQ1MzgzMzM0LnBuZyIsImVkaXRzIjp7InJlc2l6ZSI6eyJ3aWR0aCI6MTYwMCwiZml0IjoiaW5zaWRlIiwid2l0aG91dEVubGFyZ2VtZW50Ijp0cnVlfX19 2x,https://resize-v3.pubpub.org/eyJidWNrZXQiOiJhc3NldHMucHVicHViLm9yZyIsImtleSI6ImU1Z2V4emt1LzExNjU5NjQ1MzgzMzM0LnBuZyIsImVkaXRzIjp7InJlc2l6ZSI6eyJ3aWR0aCI6MjQwMCwiZml0IjoiaW5zaWRlIiwid2l0aG91dEVubGFyZ2VtZW50Ijp0cnVlfX19 3x" src="https://resize-v3.pubpub.org/eyJidWNrZXQiOiJhc3NldHMucHVicHViLm9yZyIsImtleSI6ImU1Z2V4emt1LzExNjU5NjQ1MzgzMzM0LnBuZyIsImVkaXRzIjp7InJlc2l6ZSI6eyJ3aWR0aCI6ODAwLCJmaXQiOiJpbnNpZGUiLCJ3aXRob3V0RW5sYXJnZW1lbnQiOnRydWV9fX0=" alt=""/><figcaption id="nfj9hfvz1zg-figure-caption"><div><div></div></div></figcaption></figure><p class="MsoNoSpacing" id="n1ov6ya7m26">Figure 25</p><p class="MsoNoSpacing" id="nj89b46ii5e"> </p><p class="MsoNoSpacing" id="nr9uihukz3a"><strong>Messenger Application:</strong></p><p class="MsoNoSpacing" id="n4rhqhf3suf">In Josh Hickman’s documentation there is a section for Messages, which is displayed in Figure 26. Notice in Figure 26, there is documentation that on 2/15/2021 at 13:06 (Eastern Time) an iMessage is received. Because Josh Hickman’s device is set to Eastern Time and I am in Pacific Time, for this example I will be referencing artifacts in UTC.</p><p class="MsoNoSpacing" id="n2yo4j8jj13"> </p><p class="MsoNoSpacing" id="nz94qdcxr1f"></p><figure id="nulkplczenl" data-node-type="image" data-size="50" data-align="center" data-url="https://assets.pubpub.org/nv5e6s6l/11659645395392.png" data-caption="" data-alt-text="" data-hide-label="false"><img srcSet="https://resize-v3.pubpub.org/eyJidWNrZXQiOiJhc3NldHMucHVicHViLm9yZyIsImtleSI6Im52NWU2czZsLzExNjU5NjQ1Mzk1MzkyLnBuZyIsImVkaXRzIjp7InJlc2l6ZSI6eyJ3aWR0aCI6ODAwLCJmaXQiOiJpbnNpZGUiLCJ3aXRob3V0RW5sYXJnZW1lbnQiOnRydWV9fX0= 1x,https://resize-v3.pubpub.org/eyJidWNrZXQiOiJhc3NldHMucHVicHViLm9yZyIsImtleSI6Im52NWU2czZsLzExNjU5NjQ1Mzk1MzkyLnBuZyIsImVkaXRzIjp7InJlc2l6ZSI6eyJ3aWR0aCI6MTYwMCwiZml0IjoiaW5zaWRlIiwid2l0aG91dEVubGFyZ2VtZW50Ijp0cnVlfX19 2x,https://resize-v3.pubpub.org/eyJidWNrZXQiOiJhc3NldHMucHVicHViLm9yZyIsImtleSI6Im52NWU2czZsLzExNjU5NjQ1Mzk1MzkyLnBuZyIsImVkaXRzIjp7InJlc2l6ZSI6eyJ3aWR0aCI6MjQwMCwiZml0IjoiaW5zaWRlIiwid2l0aG91dEVubGFyZ2VtZW50Ijp0cnVlfX19 3x" src="https://resize-v3.pubpub.org/eyJidWNrZXQiOiJhc3NldHMucHVicHViLm9yZyIsImtleSI6Im52NWU2czZsLzExNjU5NjQ1Mzk1MzkyLnBuZyIsImVkaXRzIjp7InJlc2l6ZSI6eyJ3aWR0aCI6ODAwLCJmaXQiOiJpbnNpZGUiLCJ3aXRob3V0RW5sYXJnZW1lbnQiOnRydWV9fX0=" alt=""/><figcaption id="nulkplczenl-figure-caption"><div><div></div></div></figcaption></figure><p class="MsoNoSpacing" id="nk8faw3xikd">Figure 26</p><p class="MsoNoSpacing" id="nul08wl9o1l"> </p><p class="MsoNoSpacing" id="njnrx87hyfy">According to Josh Hickman’s documentation his device received an iMessage at 18:06 UTC. Can we answer the following questions?</p><p class="MsoNoSpacing" id="nuhh0tq9l0l"> </p><p class="MsoNoSpacing" id="nt909dr1lyo">·       Did the device display a notification on the screen for this message?</p><p class="MsoNoSpacing" id="neyx71umkwp">·       Did the user interact with the screen if a notification was displayed?</p><p class="MsoNoSpacing" id="n3eyqujgzr4">·       How was the notification cleared from the device?</p><p class="MsoNoSpacing" id="n5w29ub7nxo"> </p><p class="MsoNoSpacing" id="n4th7qbi22i">In Figure 27, we can see in ArtEx at 18:04:18 UTC, the device was unlocked, but notice an application was not in focus. A message was sent at 18:04:46 UTC, but was not sent from the iPhone, it was sent from a synced Mac.</p><p class="MsoNoSpacing" id="nftofxpnkty"> </p><p class="MsoNoSpacing" id="n8jxmsyqu3g">At 18:06:37 UTC, a <em><strong>Receive</strong></em> notification type was received on the device, thus because the device is unlocked, a banner notification would have been displayed on the screen. </p><p class="MsoNoSpacing" id="nsu04wipmfa"> </p><p class="MsoNoSpacing" id="n9z9zubdzrd">At 18:06:37 UTC, a <em><strong>Dismiss</strong></em> notification type was recorded, thus when the banner notification was displayed on the device, the user interacted with the screen and dismissed the banner notification.</p><p class="MsoNoSpacing" id="n16blvpxx4p"> </p><p class="MsoNoSpacing" id="n4e22bg7rf9">At 18:06:49 UTC, the Messenger application (com.apple.MobileSMS) was brought into focus via the home screen.</p><p class="MsoNoSpacing" id="ntxlzsk6hh3"> </p><p class="MsoNoSpacing" id="nwru0gqec9h">Note: If the notification was used to open the application a <em><strong>DefaultAction</strong></em> notification type would have been recorded and the method of bringing the application into focus would have been different.   </p><p class="MsoNoSpacing" id="n0k105vgijh"> </p><p class="MsoNoSpacing" id="ns8tyjje0zn">At 18:06:52 UTC, a <em><strong>IndirectClear</strong></em> notification type was recorded because the application was opened, and the user viewed the message. The notification will no longer be displayed on the Lock Screen or the Notification Center.</p><p class="MsoNoSpacing" id="n6jvv1a3b57"> </p><p class="MsoNoSpacing" id="nweaixynh91">Notice in Figure 27, there are several messages being sent back and forth. Some from the synced Mac and others from the iPhone, but notifications are not being recorded. This is because the Messenger application was in focus when these messages were being sent and received.</p><p class="MsoNoSpacing" id="n30n67ehls2"> </p><p class="MsoNoSpacing" id="npzu8503onr"></p><figure id="njbxqxfwhn1" data-node-type="image" data-size="100" data-align="center" data-url="https://assets.pubpub.org/hg5sk7xp/11659645419980.png" data-caption="" data-alt-text="" data-hide-label="false"><img srcSet="https://resize-v3.pubpub.org/eyJidWNrZXQiOiJhc3NldHMucHVicHViLm9yZyIsImtleSI6ImhnNXNrN3hwLzExNjU5NjQ1NDE5OTgwLnBuZyIsImVkaXRzIjp7InJlc2l6ZSI6eyJ3aWR0aCI6ODAwLCJmaXQiOiJpbnNpZGUiLCJ3aXRob3V0RW5sYXJnZW1lbnQiOnRydWV9fX0= 1x,https://resize-v3.pubpub.org/eyJidWNrZXQiOiJhc3NldHMucHVicHViLm9yZyIsImtleSI6ImhnNXNrN3hwLzExNjU5NjQ1NDE5OTgwLnBuZyIsImVkaXRzIjp7InJlc2l6ZSI6eyJ3aWR0aCI6MTYwMCwiZml0IjoiaW5zaWRlIiwid2l0aG91dEVubGFyZ2VtZW50Ijp0cnVlfX19 2x,https://resize-v3.pubpub.org/eyJidWNrZXQiOiJhc3NldHMucHVicHViLm9yZyIsImtleSI6ImhnNXNrN3hwLzExNjU5NjQ1NDE5OTgwLnBuZyIsImVkaXRzIjp7InJlc2l6ZSI6eyJ3aWR0aCI6MjQwMCwiZml0IjoiaW5zaWRlIiwid2l0aG91dEVubGFyZ2VtZW50Ijp0cnVlfX19 3x" src="https://resize-v3.pubpub.org/eyJidWNrZXQiOiJhc3NldHMucHVicHViLm9yZyIsImtleSI6ImhnNXNrN3hwLzExNjU5NjQ1NDE5OTgwLnBuZyIsImVkaXRzIjp7InJlc2l6ZSI6eyJ3aWR0aCI6ODAwLCJmaXQiOiJpbnNpZGUiLCJ3aXRob3V0RW5sYXJnZW1lbnQiOnRydWV9fX0=" alt=""/><figcaption id="njbxqxfwhn1-figure-caption"><div><div></div></div></figcaption></figure><p class="MsoNoSpacing" id="n12mpzt0d0j">Figure 27</p><p class="MsoNoSpacing" id="nnyyiss4tu2"> </p><p class="MsoNoSpacing" id="nrvyrb0nbxu">In Figure 28, I have combined ArtEx and the <em><strong>KnowledgeC.db</strong></em> date in a video to again show how this works together. </p><p class="MsoNoSpacing" id="nqgpstyf8lg"> </p><p class="MsoNoSpacing" id="nxaueoahhzl"></p><p class="MsoNoSpacing" id="nhglyzesroa">Figure 28 </p><p class="MsoNoSpacing" id="n8geeyhanhi"> </p><h2 id="considerations"><strong>Considerations:</strong></h2><p class="MsoNoSpacing" id="ncrm652y4j8">Most of this testing was done on a device with iOS 14.7.1, but I believe the results of this testing should be true with other versions of iOS 14.</p><p class="MsoNoSpacing" id="nuv0ei8zh0i">I plan to conduct some additional testing on how device notifications are stored if the device is connected to a vehicle with and without CarPlay. I have done some preliminary testing, and it appears to be very similar to what has already been detailed in this blog. I will add any additional information learned to this blog later. </p><h2 id="conclusion"><strong>Conclusion:</strong></h2><p class="MsoNoSpacing" id="ngawthbjcui">I believe it has been demonstrated there are certain types of notifications that can be used, in conjunction with other device data, to prove whether a user interacted with a device at a certain time. </p><p class="MsoNoSpacing" id="n34q7jbqnik"> Based on testing<em><strong> ZVALUESTRING</strong></em> is the notification types and each notification type is created when:</p><p class="MsoNoSpacing" id="nt24v90ywnj">·       Clear = Notification was cleared by a user via the Lock Screen or Notification Center </p><p class="MsoNoSpacing" id="nou1lwownkm">·       DefaultAction = An application is opened via a notification</p><p class="MsoNoSpacing" id="n6m6nq5ux3v">·       Dismiss = Notification was dismissed by a device user when the notification was received</p><p class="MsoNoSpacing" id="npo097y033a">·       Hidden = When notifications are hidden from the Lock Screen </p><p class="MsoNoSpacing" id="n4xlp1ooy49">·       IndirectClear = When notifications are cleared from the Notification Center</p><p class="MsoNoSpacing" id="nt3fxgfg4ao">·       Orb = Is triggered via user interaction when an application is opened in a small sub-window </p><p class="MsoNoSpacing" id="nbdn8btnrsi">·       Receive = Is when a notification is received and displayed on the device</p><p class="MsoNoSpacing" id="ndzv11zbwzv"> </p><h2 id="references"><strong>References:</strong></h2><p class="MsoNoSpacing" id="n7snoay3rnt">·       August 2018 – Sarah Edwards</p><p class="MsoNoSpacing" id="nf8gpz2ap0w">o   <a href="https://www.mac4n6.com/blog/2018/8/5/knowledge-is-power-using-the-knowledgecdb-database-on-macos-and-ios-to-determine-precise-user-and-application-usage">https://www.mac4n6.com/blog/2018/8/5/knowledge-is-power-using-the-knowledgecdb-database-on-macos-and-ios-to-determine-precise-user-and-application-usage</a></p><p class="MsoNoSpacing" id="n7hjukup0h2"> </p><p class="MsoNoSpacing" id="nbqcwu9lzb8">o   <a href="https://objectivebythesea.com/v3/talks/OBTS_v3_sEdwards.pdf">https://objectivebythesea.com/v3/talks/OBTS_v3_sEdwards.pdf</a></p><p class="MsoNoSpacing" id="ngcjlie88xu"> </p><p class="MsoNoSpacing" id="nz3a6rmt723">·       August 2019 – Christopher Vance </p><p class="MsoNoSpacing" id="n2290cuwg3n">o   <a href="https://blog.d204n6.com/2019/08/ios-12-delivered-notifications-and-new.html?m=1">https://blog.d204n6.com/2019/08/ios-12-delivered-notifications-and-new.html?m=1</a></p><p class="MsoNoSpacing" id="ny5v3pwosdd"> </p><p class="MsoNoSpacing" id="nfsemk0t7l4">·       October 2019 – Ian Whiffin</p><p class="MsoNoSpacing" id="ns1grm844h8">o   <a href="http://www.doubleblak.com/m/blogPosts.php?id=2">http://www.doubleblak.com/m/blogPosts.php?id=2</a></p><p class="MsoNoSpacing" id="n70tcjun9zd"> </p><p class="MsoNoSpacing" id="nkkrwuhkpry">·       Josh Hickman’s Test Device images:</p><p class="MsoNoSpacing" id="ndnmnueny7o">o   <a href="https://thebinaryhick.blog/">https://thebinaryhick.blog/</a></p><h1 id="dfir-review">DFIR Review</h1><p id="ntf0p5omsp0">Determining what notifications, if any, were displayed on a mobile device is a common question asked of forensic examiners. Taking it a step further, understanding what a user of a device did when they were presented with a notification can provide user behavior patterns. The author of this paper demonstrated their understanding of the KnowledgeC and the gaps in research associated with notifications. </p><p id="n2uhabbbx5o">Reviewers found that some of the figures in the paper were missing or could not be viewed.</p><p id="nk5sxaa4xp6">As the Notification Center may be available from the lock screen, examiners should be cautioned on attributing interactive behavior to a a specific individual without performing additional analysis.</p><h1 id="future-work-provided-by-dfir-review">Future Work (provided by DFIR Review)</h1><p id="nixk5lpcwsb">Reviewers are interested in seeing additional values for ZVALUESTRING and additional data that may be associated with device usage. Reviewers also suggested not using video attachments in the submission, if possible, as they do not publish well.</p><p id="nxykm24eus7">Future work on this topic could include testing newer iOS versions to see if anything has changed and testing if additional forensic tools can verify this information. Reviewers also suggested trying different types of applications such as email and also looking at reminders and other alerts.</p><h1 id="reviewers">Reviewers</h1><p id="n7jagjqy3ck">Jessica Hyde, David Loveall (subreviewer) (Methodology Review, Validated Review Using Reviewer Generated Datasets)</p><p id="nc9uc9crzzm">Troy Pugliese (Methodology Review)</p><p id="n0aeen54fx7">Aricia Kulm (Methodology Review)</p><p id="nfee9cdm6ig">Zheng Jie Chan (Methodology Review)</p><p id="nyg39hsr47z"></p><p id="n84np68voka"></p></div></main></div><div class="side-content"></div></div><div class="pub-bottom-component"><div class="inner"><div class="pub-bottom-section-component pub-bottom-license"><div role="none" class="top-row"><div class="left-title">License</div><div class="center-content"><div class="center-content-item"><a target="_blank" rel="license noopener noreferrer" class="license-link" href="https://creativecommons.org/licenses/by/4.0/"><img width="75" alt="" src="/static/license/cc-by.svg" class="license-image"/>Creative Commons Attribution 4.0 International License<!-- --> <!-- -->(CC-BY 4.0)</a></div></div><div class="right-icons" role="none"></div></div></div><div class="pub-bottom-section-component expanded"><div role="button" class="top-row" style="cursor:pointer"><div class="left-title">Comments</div><div class="center-content"><div class="center-content-item">0</div></div><div class="right-icons" role="none"><button type="button" aria-label="Search comments" class="bp3-button bp3-minimal"><span icon="search" class="bp3-icon bp3-icon-search"><svg fill="#2D2E2F" data-icon="search" width="14" height="14" viewBox="0 0 16 16"><path d="M15.55 13.43l-2.67-2.68a6.94 6.94 0 001.11-3.76c0-3.87-3.13-7-7-7s-7 3.13-7 7 3.13 7 7 7c1.39 0 2.68-.42 3.76-1.11l2.68 2.67a1.498 1.498 0 102.12-2.12zm-8.56-1.44c-2.76 0-5-2.24-5-5s2.24-5 5-5 5 2.24 5 5-2.24 5-5 5z" fill-rule="evenodd"></path></svg></span></button><button type="button" aria-label="Sort comments" aria-expanded="false" aria-controls="id-14" aria-haspopup="dialog" class="bp3-button bp3-minimal"><span icon="sort" class="bp3-icon bp3-icon-sort"><svg fill="#2D2E2F" data-icon="sort" width="14" height="14" viewBox="0 0 16 16"><path d="M5 12c-.28 0-.53.11-.71.29l-.29.3V9c0-.55-.45-1-1-1s-1 .45-1 1v3.59l-.29-.29A.965.965 0 001 12a1.003 1.003 0 00-.71 1.71l2 2c.18.18.43.29.71.29s.53-.11.71-.29l2-2A1.003 1.003 0 005 12zm3-9h7c.55 0 1-.45 1-1s-.45-1-1-1H8c-.55 0-1 .45-1 1s.45 1 1 1zm7 2H8c-.55 0-1 .45-1 1s.45 1 1 1h7c.55 0 1-.45 1-1s-.45-1-1-1zm0 8H8c-.55 0-1 .45-1 1s.45 1 1 1h7c.55 0 1-.45 1-1s-.45-1-1-1zm0-4H8c-.55 0-1 .45-1 1s.45 1 1 1h7c.55 0 1-.45 1-1s-.45-1-1-1z" fill-rule="evenodd"></path></svg></span></button><button type="button" aria-label="Filter comments" aria-expanded="false" aria-controls="id-15" aria-haspopup="dialog" class="bp3-button bp3-minimal"><span icon="filter" class="bp3-icon bp3-icon-filter"><svg fill="#2D2E2F" data-icon="filter" width="14" height="14" viewBox="0 0 16 16"><path d="M13.99.99h-12a1.003 1.003 0 00-.71 1.71l4.71 4.71V14a1.003 1.003 0 001.71.71l2-2c.18-.18.29-.43.29-.71V7.41L14.7 2.7a1.003 1.003 0 00-.71-1.71z" fill-rule="evenodd"></path></svg></span></button><button type="button" aria-label="Collapse this section" class="bp3-button bp3-minimal"><span icon="collapse-all" class="bp3-icon bp3-icon-collapse-all"><svg fill="#2D2E2F" data-icon="collapse-all" width="14" height="14" viewBox="0 0 16 16"><path d="M7.29 6.71c.18.18.43.29.71.29s.53-.11.71-.29l4-4a1.003 1.003 0 00-1.42-1.42L8 4.59l-3.29-3.3a1.003 1.003 0 00-1.42 1.42l4 4zm1.42 2.58C8.53 9.11 8.28 9 8 9s-.53.11-.71.29l-4 4a1.003 1.003 0 001.42 1.42L8 11.41l3.29 3.29c.18.19.43.3.71.3a1.003 1.003 0 00.71-1.71l-4-4z" fill-rule="evenodd"></path></svg></span></button></div></div><div class="section-content"><div class="pub-discussions-component"><style> .discussion-list .discussion-thread-component.preview:hover, .discussion-list .discussion-thread-component.expanded-preview { border-left: 3px solid #2D2E2F; padding-left: calc(1em - 2px); } </style><div class="discussion-list"><div class="thread-comment-component input"><div class="avatar-wrapper"><div class="avatar-component" style="width:18px;min-width:18px;height:18px;border-width:0;font-size:7px;background-color:#2D2E2F;z-index:initial;border-radius:50%"><div>?</div></div></div><a role="button" class="bp3-button bp3-small discussion-primary-button" href="/login?redirect=/pub/g2v1z97i/release/1" tabindex="0"><span class="bp3-button-text">Login to discuss</span></a></div><div class="empty-state bp3-non-ideal-state"><div class="bp3-non-ideal-state-visual"><span icon="comment" class="bp3-icon bp3-icon-comment"><svg data-icon="comment" width="60" height="60" viewBox="0 0 20 20"><desc>comment</desc><path d="M19 1H1c-.55 0-1 .45-1 1v12c0 .55.45 1 1 1h3v4a1.003 1.003 0 001.71.71l4.7-4.71H19c.55 0 1-.45 1-1V2c0-.55-.45-1-1-1zM4 10c-1.1 0-2-.9-2-2s.9-2 2-2 2 .9 2 2-.9 2-2 2zm6 0c-1.1 0-2-.9-2-2s.9-2 2-2 2 .9 2 2-.9 2-2 2zm6 0c-1.1 0-2-.9-2-2s.9-2 2-2 2 .9 2 2-.9 2-2 2z" fill-rule="evenodd"></path></svg></span></div><div class="bp3-heading">No comments here</div><div> Why not start the discussion?</div></div></div></div></div></div></div></div><div class="pub-link-controller-component"></div></div></div></div><div class="footer-component accent-background accent-color"><div class="container "><div class="row"><div class="col-12 "><div class="left"></div><div class="right"><div class="footer-title"><a href="/">DFIR Review</a></div><ul class="separated"><li><a class="link" href="/rss.xml">RSS</a></li><li><a class="link" href="/legal">Legal</a></li></ul></div></div></div></div><div class="built-on"><a href="https://www.pubpub.org">Published with<img class="logo" src="/static/logoWhite.svg" alt="PubPub logo"/></a></div></div></div></div><script crossorigin="anonymous" src="https://polyfill-fastly.io/v3/polyfill.min.js?features=default,fetch,HTMLCanvasElement.prototype.toBlob,Node.prototype.contains,Array.prototype.find,Array.from,Number.isNaN,Object.assign,Object.entries,Object.values,Promise,requestIdleCallback,String.prototype.includes,URL,URLSearchParams"></script><script id="initial-data" type="text/plain" data-json="{&quot;communityData&quot;:{&quot;id&quot;:&quot;b0ac9c28-479a-496c-884c-7ae8fc26e385&quot;,&quot;subdomain&quot;:&quot;dfir&quot;,&quot;domain&quot;:null,&quot;title&quot;:&quot;DFIR Review&quot;,&quot;citeAs&quot;:null,&quot;publishAs&quot;:null,&quot;description&quot;:&quot;DFIR Review responds to the need for a focal point for up-to-date community-reviewed applied research and testing in digital forensics and incident response. DFIR Review concentrates on targeted studies of specific devices, digital traces, analysis methods, and criminal activity&quot;,&quot;avatar&quot;:&quot;https://assets.pubpub.org/3yqqvtl4/71553968763873.png&quot;,&quot;favicon&quot;:&quot;https://assets.pubpub.org/c8g3oakn/41553968740088.png&quot;,&quot;accentColorLight&quot;:&quot;#FFFFFF&quot;,&quot;accentColorDark&quot;:&quot;#2D2E2F&quot;,&quot;hideCreatePubButton&quot;:true,&quot;headerLogo&quot;:&quot;https://assets.pubpub.org/hndwo003/61675374631049.png&quot;,&quot;headerLinks&quot;:null,&quot;headerColorType&quot;:&quot;dark&quot;,&quot;useHeaderTextAccent&quot;:false,&quot;hideHero&quot;:false,&quot;hideHeaderLogo&quot;:false,&quot;heroLogo&quot;:null,&quot;heroBackgroundImage&quot;:null,&quot;heroBackgroundColor&quot;:&quot;#0558b3&quot;,&quot;heroTextColor&quot;:null,&quot;useHeaderGradient&quot;:true,&quot;heroImage&quot;:null,&quot;heroTitle&quot;:&quot;DFIR Review&quot;,&quot;heroText&quot;:&quot;DFIR Review responds to the need for a focal point for up-to-date community-reviewed applied research and testing in digital forensics and incident response. DFIR Review concentrates on targeted studies of specific devices, digital traces, analysis methods, and criminal activity&quot;,&quot;heroPrimaryButton&quot;:{},&quot;heroSecondaryButton&quot;:{},&quot;heroAlign&quot;:&quot;left&quot;,&quot;navigation&quot;:[{&quot;id&quot;:&quot;0f373a2c-c88d-4615-901f-9f3007392c8a&quot;,&quot;type&quot;:&quot;page&quot;},{&quot;id&quot;:&quot;b4ba8d5a-2328-4d86-ad66-f8c2c76a506f&quot;,&quot;type&quot;:&quot;page&quot;},{&quot;id&quot;:&quot;a8a6a998-952b-45ac-9dde-1e1fef976417&quot;,&quot;type&quot;:&quot;page&quot;},{&quot;id&quot;:&quot;6a7dd0ce-1852-4aa8-b858-dd9e4fcc23e7&quot;,&quot;type&quot;:&quot;page&quot;},{&quot;id&quot;:&quot;c9d33e1b-70ca-4f00-935e-8b048a2db8aa&quot;,&quot;type&quot;:&quot;page&quot;},{&quot;id&quot;:&quot;b1a5d079-3ee0-4434-a65f-c1b0cc624b45&quot;,&quot;type&quot;:&quot;page&quot;},{&quot;id&quot;:&quot;2bd22226-03c8-4300-b555-73eb1d6a582d&quot;,&quot;type&quot;:&quot;page&quot;},{&quot;id&quot;:&quot;9a0a763a-139f-4380-8620-47bf9e307106&quot;,&quot;type&quot;:&quot;page&quot;},{&quot;id&quot;:&quot;a7126096-fe0b-49af-a377-e69d372934d0&quot;,&quot;type&quot;:&quot;page&quot;}],&quot;hideNav&quot;:false,&quot;navLinks&quot;:null,&quot;footerLinks&quot;:null,&quot;footerLogoLink&quot;:null,&quot;footerTitle&quot;:null,&quot;footerImage&quot;:null,&quot;website&quot;:&quot;&quot;,&quot;facebook&quot;:&quot;&quot;,&quot;twitter&quot;:&quot;&quot;,&quot;instagram&quot;:null,&quot;mastodon&quot;:null,&quot;linkedin&quot;:null,&quot;bluesky&quot;:null,&quot;github&quot;:null,&quot;email&quot;:&quot;&quot;,&quot;socialLinksLocation&quot;:null,&quot;issn&quot;:null,&quot;isFeatured&quot;:null,&quot;viewHash&quot;:&quot;qz0cilrt&quot;,&quot;editHash&quot;:&quot;bqi37oih&quot;,&quot;premiumLicenseFlag&quot;:false,&quot;defaultPubCollections&quot;:[],&quot;analyticsSettings&quot;:null,&quot;spamTagId&quot;:&quot;16a43a5f-d437-4a0a-9721-4781fc993f4e&quot;,&quot;organizationId&quot;:null,&quot;scopeSummaryId&quot;:&quot;aa45c5c8-46a9-480c-912b-0ace04e252d4&quot;,&quot;createdAt&quot;:&quot;2019-03-23T18:09:32.984Z&quot;,&quot;updatedAt&quot;:&quot;2023-02-02T21:50:33.149Z&quot;,&quot;scopeSummary&quot;:{&quot;id&quot;:&quot;aa45c5c8-46a9-480c-912b-0ace04e252d4&quot;,&quot;collections&quot;:1,&quot;pubs&quot;:41,&quot;discussions&quot;:8,&quot;reviews&quot;:0,&quot;submissions&quot;:0,&quot;createdAt&quot;:&quot;2021-04-26T16:49:17.482Z&quot;,&quot;updatedAt&quot;:&quot;2025-03-18T02:21:15.927Z&quot;},&quot;spamTag&quot;:{&quot;id&quot;:&quot;16a43a5f-d437-4a0a-9721-4781fc993f4e&quot;,&quot;status&quot;:&quot;confirmed-not-spam&quot;,&quot;statusUpdatedAt&quot;:&quot;2025-03-25T17:07:04.197Z&quot;,&quot;fields&quot;:{},&quot;spamScore&quot;:0,&quot;spamScoreComputedAt&quot;:&quot;2023-02-02T21:50:33.162Z&quot;,&quot;spamScoreVersion&quot;:1,&quot;createdAt&quot;:&quot;2022-12-07T19:10:59.508Z&quot;,&quot;updatedAt&quot;:&quot;2025-03-25T17:07:04.197Z&quot;},&quot;collections&quot;:[{&quot;id&quot;:&quot;4d6cbcc5-a3fc-459d-820d-1d4a5f7362d7&quot;,&quot;title&quot;:&quot;Papers&quot;,&quot;slug&quot;:&quot;dsthj493&quot;,&quot;avatar&quot;:null,&quot;isRestricted&quot;:true,&quot;isPublic&quot;:true,&quot;viewHash&quot;:&quot;w3mlztuf&quot;,&quot;editHash&quot;:&quot;k7ll8o5q&quot;,&quot;metadata&quot;:null,&quot;kind&quot;:&quot;tag&quot;,&quot;doi&quot;:null,&quot;readNextPreviewSize&quot;:&quot;choose-best&quot;,&quot;layout&quot;:{&quot;blocks&quot;:[{&quot;id&quot;:&quot;m5nt3cew&quot;,&quot;type&quot;:&quot;collection-header&quot;,&quot;content&quot;:{}},{&quot;id&quot;:&quot;82wrvv3v&quot;,&quot;type&quot;:&quot;pubs&quot;,&quot;content&quot;:{&quot;sort&quot;:&quot;collection-rank&quot;,&quot;pubPreviewType&quot;:&quot;medium&quot;}}],&quot;isNarrow&quot;:false},&quot;layoutAllowsDuplicatePubs&quot;:false,&quot;pageId&quot;:&quot;0f373a2c-c88d-4615-901f-9f3007392c8a&quot;,&quot;communityId&quot;:&quot;b0ac9c28-479a-496c-884c-7ae8fc26e385&quot;,&quot;scopeSummaryId&quot;:&quot;1db60c83-a461-4697-a639-fb7d951333bb&quot;,&quot;crossrefDepositRecordId&quot;:null,&quot;createdAt&quot;:&quot;2019-03-30T17:19:53.991Z&quot;,&quot;updatedAt&quot;:&quot;2021-04-26T16:48:52.977Z&quot;,&quot;members&quot;:[]}],&quot;pages&quot;:[{&quot;id&quot;:&quot;b1a5d079-3ee0-4434-a65f-c1b0cc624b45&quot;,&quot;title&quot;:&quot;Aims &amp; Scope&quot;,&quot;slug&quot;:&quot;about&quot;,&quot;description&quot;:&quot;DFIR Review Aims &amp; Scope&quot;,&quot;avatar&quot;:null,&quot;isPublic&quot;:true,&quot;isNarrowWidth&quot;:null,&quot;viewHash&quot;:&quot;e8ydkitt&quot;,&quot;layout&quot;:[{&quot;id&quot;:&quot;wpmh8voe&quot;,&quot;type&quot;:&quot;text&quot;,&quot;content&quot;:{&quot;text&quot;:{&quot;type&quot;:&quot;doc&quot;,&quot;attrs&quot;:{&quot;meta&quot;:{}},&quot;content&quot;:[{&quot;type&quot;:&quot;heading&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;dfir-review---aims-scope&quot;,&quot;rtl&quot;:null,&quot;level&quot;:1,&quot;fixedId&quot;:&quot;&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;DFIR Review - Aims &amp; Scope&quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;nk8u9egeeah&quot;,&quot;rtl&quot;:null,&quot;class&quot;:null,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;Rapid review and dissemination of up-to-date results of applied research and testing is necessary to keep pace with changes in technology and cybercrime. The Internet-of-Things (IoT) and smartphone applications are prime examples of the unprecedented proliferation of new devices and digital traces. New versions of operating systems can also have data structures that contain valuable information from a forensic perspective. When a new type of digital trace is found to be relevant to a legal matter, it may be the first time it has been studied from a forensic perspective. New approaches to analysing digital traces can help develop insights in an investigation. Often this type of material is shared via blogs by active practitioners who are the first to tackle new devices, uncover new digital traces, and encounter new forms of criminal activity. Currently, these posts do not undergo community review or vetting, and are not presented or published in a formalized forum for long term reference. The faster this knowledge can be produced, reviewed, and shared among the DFIR community, the better able we will be to deal with new devices, digital traces, and criminal activities. DFIR Review aims to take the up-to-date rapid content created by practitioners and distributed regularly via blogs and provide review such that the findings can be cited and stored in a referenceable format so that it may be used by others including for reference in legal and other matters while crediting the originating source such as a practitioner blog.&quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;n3ng0n83wot&quot;,&quot;rtl&quot;:null,&quot;class&quot;:null,&quot;textAlign&quot;:null}},{&quot;type&quot;:&quot;heading&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;review&quot;,&quot;rtl&quot;:null,&quot;level&quot;:3,&quot;fixedId&quot;:&quot;&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;Review&quot;,&quot;type&quot;:&quot;text&quot;,&quot;marks&quot;:[{&quot;type&quot;:&quot;strong&quot;}]}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;nljdv0w59dg&quot;,&quot;rtl&quot;:null,&quot;class&quot;:null,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;Submissions to DFIR Review will be reviewed rapidly by a panel of qualified members of the community to include practitioners, researchers, graduate students and others working in the digital forensics field. Submissions will be accepted or rejected on the basis of reviewer responses following these criteria:&quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;nxkaguaiv0n&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;rtecenter&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;Reviewer Guidance&quot;,&quot;type&quot;:&quot;text&quot;,&quot;marks&quot;:[{&quot;type&quot;:&quot;link&quot;,&quot;attrs&quot;:{&quot;href&quot;:&quot;review-guidance&quot;,&quot;title&quot;:null,&quot;target&quot;:null}}]}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;ne057aizup3&quot;,&quot;rtl&quot;:null,&quot;class&quot;:null,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;For accepted submissions, reviewers will provide a detailed response including comments, further research concepts that may not have been explored, as well as validation and/or verification of initial research. The intent is that this response material will be presented along with the submission on DFIR Review.&quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;nj7lk5w62hk&quot;,&quot;rtl&quot;:null,&quot;class&quot;:null,&quot;textAlign&quot;:null}},{&quot;type&quot;:&quot;heading&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;presentation&quot;,&quot;rtl&quot;:null,&quot;level&quot;:3,&quot;fixedId&quot;:&quot;&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;Presentation&quot;,&quot;type&quot;:&quot;text&quot;,&quot;marks&quot;:[{&quot;type&quot;:&quot;strong&quot;}]}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;nmlms51diln&quot;,&quot;rtl&quot;:null,&quot;class&quot;:null,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;Accepted submissions will be made available on the DFRWS website open access under the CC BY-NC-ND license (http://creativecommons.org/licenses/by-nc-nd/4.0/). Accepted submissions will be organized along with reviewer response materials. Although authors can revise accepted materials on the basis of reviewer feedback, this is not a requirement for publication, taking into account that practitioners may not have time to rework a submission or perform additional research. Authors can post their work on their personal website or blog with a reference to the publication in DFIR Review. In this way, DFIR Review is the system of record for the work, and authors can disseminate their work with a reference to the publication in DFIR Review.&quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;naicemtgxdg&quot;,&quot;rtl&quot;:null,&quot;class&quot;:null,&quot;textAlign&quot;:null}},{&quot;type&quot;:&quot;heading&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;submissions&quot;,&quot;rtl&quot;:null,&quot;level&quot;:3,&quot;fixedId&quot;:&quot;&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;Submissions&quot;,&quot;type&quot;:&quot;text&quot;,&quot;marks&quot;:[{&quot;type&quot;:&quot;strong&quot;}]}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;n5ghelqimur&quot;,&quot;rtl&quot;:null,&quot;class&quot;:null,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;DFIR Review welcomes submissions that provide up-to-date knowledge in digital forensics and incident response, as well as test results that validate or update prior studies. The DFIR Review community will actively encourage authors to submit their work, and will assist authors throughout the submission process as needed. Topics of interest include:&quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;bullet_list&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;n8yhzvlmrlq&quot;,&quot;rtl&quot;:null},&quot;content&quot;:[{&quot;type&quot;:&quot;list_item&quot;,&quot;content&quot;:[{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;nn3ihqrnag2&quot;,&quot;rtl&quot;:null,&quot;class&quot;:null,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;Forensic treatment of new devices, including Internet-of-Things&quot;,&quot;type&quot;:&quot;text&quot;}]}]},{&quot;type&quot;:&quot;list_item&quot;,&quot;content&quot;:[{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;nedidix8y5q&quot;,&quot;rtl&quot;:null,&quot;class&quot;:null,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;Forensic analysis of new smartphone apps or updated versions (inclusion of open source tools encouraged)&quot;,&quot;type&quot;:&quot;text&quot;}]}]},{&quot;type&quot;:&quot;list_item&quot;,&quot;content&quot;:[{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;nlt1vg7bgka&quot;,&quot;rtl&quot;:null,&quot;class&quot;:null,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;Forensic analysis of new data structures on operating systems&quot;,&quot;type&quot;:&quot;text&quot;}]}]},{&quot;type&quot;:&quot;list_item&quot;,&quot;content&quot;:[{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;nhoxhzvfab7&quot;,&quot;rtl&quot;:null,&quot;class&quot;:null,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;New methods of analysing digital traces to find patterns, links and other insights&quot;,&quot;type&quot;:&quot;text&quot;}]}]},{&quot;type&quot;:&quot;list_item&quot;,&quot;content&quot;:[{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;n4emu4f3xwp&quot;,&quot;rtl&quot;:null,&quot;class&quot;:null,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;Insights into new ways that criminals are using technology, emphasizing technical elements and potential solutions&quot;,&quot;type&quot;:&quot;text&quot;}]}]},{&quot;type&quot;:&quot;list_item&quot;,&quot;content&quot;:[{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;nvo51ty1z6o&quot;,&quot;rtl&quot;:null,&quot;class&quot;:null,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;Validation and testing of new forensic tool features (inclusion of test data preferred)&quot;,&quot;type&quot;:&quot;text&quot;}]}]}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;ny6tg2u0pg2&quot;,&quot;rtl&quot;:null,&quot;class&quot;:null,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;Submit via EasyChair: &quot;,&quot;type&quot;:&quot;text&quot;},{&quot;text&quot;:&quot;https://easychair.org/conferences/?conf=dfirr2023&quot;,&quot;type&quot;:&quot;text&quot;,&quot;marks&quot;:[{&quot;type&quot;:&quot;link&quot;,&quot;attrs&quot;:{&quot;href&quot;:&quot;https://easychair.org/conferences/?conf=dfirr2023&quot;,&quot;title&quot;:null,&quot;target&quot;:null}}]}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;n09z0jhp5vv&quot;,&quot;rtl&quot;:null,&quot;class&quot;:null,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;Submission implies that the work will not have been published elsewhere (except in as an abstract, academic thesis, preprint or personal blog), and publication in a virtual proceedings is approved by all authors and tacitly or explicitly by the responsible authorities where the work was carried out. Authors of high impact work will be encouraged to further develop their work and submit it to DFRWS conferences and other DFIR community events and publications.&quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;ncgh3dca42r&quot;,&quot;rtl&quot;:null,&quot;class&quot;:null,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;Inquiries can be directed to DFIR@dfrws.org&quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;nwbwbuygrva&quot;,&quot;rtl&quot;:null,&quot;class&quot;:null,&quot;textAlign&quot;:null}},{&quot;type&quot;:&quot;heading&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;copyright-and-rights&quot;,&quot;rtl&quot;:null,&quot;level&quot;:3,&quot;fixedId&quot;:&quot;&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;Copyright and Rights&quot;,&quot;type&quot;:&quot;text&quot;,&quot;marks&quot;:[{&quot;type&quot;:&quot;strong&quot;}]}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;n1kp4gmi6mu&quot;,&quot;rtl&quot;:null,&quot;class&quot;:null,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;Authors will retain copyright of their work in DFIR Review. Authors will grant DFRWS the non-exclusive right to include the material in any form throughout the world, in all languages, for all time, effective when and if the work is accepted for publication.&quot;,&quot;type&quot;:&quot;text&quot;}]}]},&quot;align&quot;:&quot;left&quot;}}],&quot;layoutAllowsDuplicatePubs&quot;:false,&quot;createdAt&quot;:&quot;2019-03-30T17:21:31.710Z&quot;},{&quot;id&quot;:&quot;a7126096-fe0b-49af-a377-e69d372934d0&quot;,&quot;title&quot;:&quot;DFRWS.org&quot;,&quot;slug&quot;:&quot;dfrws&quot;,&quot;description&quot;:&quot;DFRWS community support and activities.&quot;,&quot;avatar&quot;:null,&quot;isPublic&quot;:true,&quot;isNarrowWidth&quot;:null,&quot;viewHash&quot;:&quot;m6xca1m0&quot;,&quot;layout&quot;:[{&quot;id&quot;:&quot;jcfro4os&quot;,&quot;type&quot;:&quot;text&quot;,&quot;content&quot;:{&quot;text&quot;:{&quot;type&quot;:&quot;doc&quot;,&quot;attrs&quot;:{&quot;meta&quot;:{}},&quot;content&quot;:[{&quot;type&quot;:&quot;heading&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;dfrws&quot;,&quot;level&quot;:1},&quot;content&quot;:[{&quot;text&quot;:&quot;DFRWS&quot;,&quot;type&quot;:&quot;text&quot;,&quot;currIndex&quot;:0}],&quot;currIndex&quot;:0},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;class&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;DFIR Review is part of DFRWS, a non-profit, volunteer organization dedicated to bringing together everyone with a legitimate interest in digital forensics to address the emerging challenges of our field. DFRWS organizes digital forensic conferences, challenges, and international collaboration to help drive the direction of research and development.&quot;,&quot;type&quot;:&quot;text&quot;,&quot;currIndex&quot;:0}],&quot;currIndex&quot;:1},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;class&quot;:null},&quot;currIndex&quot;:2},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;class&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;Additional information about DFRWS conferences and publications: &quot;,&quot;type&quot;:&quot;text&quot;,&quot;currIndex&quot;:0},{&quot;text&quot;:&quot;www.DFRWS.org&quot;,&quot;type&quot;:&quot;text&quot;,&quot;marks&quot;:[{&quot;type&quot;:&quot;link&quot;,&quot;attrs&quot;:{&quot;href&quot;:&quot;https://www.dfrws.org&quot;,&quot;title&quot;:null,&quot;target&quot;:null}}],&quot;currIndex&quot;:1}],&quot;currIndex&quot;:3}]},&quot;align&quot;:&quot;left&quot;}}],&quot;layoutAllowsDuplicatePubs&quot;:false,&quot;createdAt&quot;:&quot;2019-03-31T06:36:38.964Z&quot;},{&quot;id&quot;:&quot;c9d33e1b-70ca-4f00-935e-8b048a2db8aa&quot;,&quot;title&quot;:&quot;Publications&quot;,&quot;slug&quot;:&quot;pub&quot;,&quot;description&quot;:&quot;Published work and reviews.&quot;,&quot;avatar&quot;:null,&quot;isPublic&quot;:true,&quot;isNarrowWidth&quot;:null,&quot;viewHash&quot;:&quot;54wh5ywg&quot;,&quot;layout&quot;:[{&quot;id&quot;:&quot;amkwtrbk&quot;,&quot;type&quot;:&quot;text&quot;,&quot;content&quot;:{&quot;text&quot;:{&quot;type&quot;:&quot;doc&quot;,&quot;attrs&quot;:{&quot;meta&quot;:{}},&quot;content&quot;:[{&quot;type&quot;:&quot;heading&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;dfir-review---publications&quot;,&quot;level&quot;:1},&quot;content&quot;:[{&quot;text&quot;:&quot;DFIR Review - Publications&quot;,&quot;type&quot;:&quot;text&quot;,&quot;currIndex&quot;:0}],&quot;currIndex&quot;:0},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;class&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;Reviewed and accepted work addressing emerging challenges in digital forensics, incident response, and cyber-investigation. &quot;,&quot;type&quot;:&quot;text&quot;,&quot;currIndex&quot;:0}],&quot;currIndex&quot;:1}]},&quot;align&quot;:&quot;left&quot;}},{&quot;id&quot;:&quot;gruw36cv&quot;,&quot;type&quot;:&quot;pubs&quot;,&quot;content&quot;:{&quot;size&quot;:&quot;medium&quot;,&quot;limit&quot;:0,&quot;title&quot;:&quot;&quot;,&quot;pubIds&quot;:[],&quot;pubPreviewType&quot;:&quot;medium&quot;}}],&quot;layoutAllowsDuplicatePubs&quot;:false,&quot;createdAt&quot;:&quot;2019-03-31T06:32:20.073Z&quot;},{&quot;id&quot;:&quot;a8a6a998-952b-45ac-9dde-1e1fef976417&quot;,&quot;title&quot;:&quot;Reviewers&quot;,&quot;slug&quot;:&quot;reviewers&quot;,&quot;description&quot;:&quot;Thank you page acknowledging our reviewers&quot;,&quot;avatar&quot;:null,&quot;isPublic&quot;:true,&quot;isNarrowWidth&quot;:null,&quot;viewHash&quot;:&quot;aj895cs6&quot;,&quot;layout&quot;:[{&quot;id&quot;:&quot;n102ug0t&quot;,&quot;type&quot;:&quot;text&quot;,&quot;content&quot;:{&quot;text&quot;:{&quot;type&quot;:&quot;doc&quot;,&quot;attrs&quot;:{&quot;meta&quot;:{}},&quot;content&quot;:[{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;fta2auwwsi&quot;,&quot;class&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;Thank you to all of the volunteer reviewers who contribute their time to conduct thorough reviews of DFIR Review. Please see the bios of selected reviewers below.&quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;0pl4vgpemk&quot;,&quot;class&quot;:null}},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;3rcmkxfsl1&quot;,&quot;class&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;Addisu Afework&quot;,&quot;type&quot;:&quot;text&quot;,&quot;marks&quot;:[{&quot;type&quot;:&quot;strong&quot;}]}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;efzsdtbd9a&quot;,&quot;class&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;Addisu Afework is a Digital Forensics researcher in a governmental agency. Since 2017, he has been performing digital forensics research on smart home IoT devices. Before studying his MSc in Legal Informatics and Digital Forensics Science, he was working in the cybersecurity field since 2009 as a cybersecurity engineer. Currently, he is working on developing tools and procedures in the digital forensics investigation area. Addisu is interested in researching and developing tools and methods to assist digital forensic investigators to easily and efficiently conduct investigations. &quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;p0ks0nrivq&quot;,&quot;class&quot;:null}},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;ms99wbnrut&quot;,&quot;class&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;Timothy Bollé&quot;,&quot;type&quot;:&quot;text&quot;,&quot;marks&quot;:[{&quot;type&quot;:&quot;strong&quot;}]}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;uld75x0t2x&quot;,&quot;class&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;Timothy Bollé is a PhD Student in Digital Forensic and Investigation at the University of Lausanne, under the supervision of Dr. Eoghan Casey. He received his BSc and MSc in forensic science, from the School of Criminal Sciences at the University of Lausanne. During his master, he performed research and development in collaboration with Swiss police to detect repetitions in online fraud. His area of expertise includes research and development in digital forensic science, specializing in machine learning. His PhD research focuses on effective use of machine learning to support forensic analysis of digital evidence. Alongside his PhD and teaching activities, he performed practical case work through the forensic science laboratory that is part the School of Criminal Sciences. When he is not in front of his computer, he enjoys to look at the various astronomical objects through his telescope. He his currently working on his thesis and on developing correlation systems to find links across different cases for a European project. You can reach him at timothy.bolle@unil.ch.&quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;maarbjqhfa&quot;,&quot;class&quot;:null}},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;0kxc8cughk&quot;,&quot;class&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;Ali Hadi&quot;,&quot;type&quot;:&quot;text&quot;,&quot;marks&quot;:[{&quot;type&quot;:&quot;strong&quot;}]}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;sl2qlnesfh&quot;,&quot;class&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;Ali Hadi is a Senior Cybersecurity Specialist with 14+ years of industrial experience in Information Technology (IT), currently working as a full time professor and researcher for the Computer &amp; Digital Forensics Dept. at Champlain College, USA. He provides consulting in several areas of Cybersecurity including digital forensics and incident response, malware analysis, cyber threat hunting, and penetration testing. He is also an author, speaker, and freelance instructor. His research interests include digital forensics, incident response, cyber threat hunting, and malware analysis.&quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;unbzsbrrog&quot;,&quot;class&quot;:null}},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;1dwltx7xjj&quot;,&quot;class&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;Jessica Hyde&quot;,&quot;type&quot;:&quot;text&quot;,&quot;marks&quot;:[{&quot;type&quot;:&quot;strong&quot;}]}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;vavo0ol12x&quot;,&quot;class&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;Jessica Hyde is an experienced forensic examiner in both the commercial and government sectors. She is currently the Director of Forensics at Magnet Forensics and an Adjunct Professor teaching Mobile Forensics in the graduate program at George Mason University, where she achieved an MS in Computer Forensics. Jessica is the host of Cache Up, a weekly podcast where she interviews digital forensics practitioners. She is also involved in several community efforts including as Chair of DFIR Review, 1st Vice President of the New York Metro High Tech Crime International Association Chapter, advisory board for Cyber Sleuths Lab, and a member of the Editorial Board for the Forensic Science International: Digital Investigations Journal. Her previous roles included performing forensic examinations as a Sr. Mobile Exploitation Analyst for Basis Technology, Senior at EY, and Senior Electrical Engineer at American Systems. Jessica is also proud to be a veteran of the United States Marine Corps.&quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;4r8m1leg9d&quot;,&quot;class&quot;:null}},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;cnx7uh53hc&quot;,&quot;class&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;Alex O. Ogbole&quot;,&quot;type&quot;:&quot;text&quot;,&quot;marks&quot;:[{&quot;type&quot;:&quot;strong&quot;}]}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;w1olaw9uge&quot;,&quot;class&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;He is an Investigator and Digital Forensic Analyst with the Economic and Financial Crimes Commission (EFCC) Nigeria. He has over a decade’s experience in digital forensics, evidence management, and investigation of financial and cyber-related criminal cases. He holds a bachelor’s degree in computer sciences and a master’s degree (in-view) in Legal Informatics and Forensic Science from Hallym University Chuncheon, South Korea. &quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;rny1zjjden&quot;,&quot;class&quot;:null}},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;ev024rb2ea&quot;,&quot;class&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;Elénore Ryser&quot;,&quot;type&quot;:&quot;text&quot;,&quot;marks&quot;:[{&quot;type&quot;:&quot;strong&quot;}]}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;f9j3x9kxtz&quot;,&quot;class&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;Elénore Ryser has a MSc in Forensic Science and is a PhD student at the University of Lausanne. Her main areas of research cover a typology of digital traces, the evaluation of digital traces and communication of digital forensic results as well as geo-localisation evidences. In 2019, she received a grant from the Société Académique Vaudoise to support her PhD research.&quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;nv29rz80i96&quot;,&quot;class&quot;:null}},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;n4f1d0jonc3&quot;,&quot;class&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;Brett Shavers&quot;,&quot;type&quot;:&quot;text&quot;,&quot;marks&quot;:[{&quot;type&quot;:&quot;strong&quot;}]}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;nblu5btvwzi&quot;,&quot;class&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;Brett Shavers is a digital forensics examiner whose experience spans a law enforcement career investigating cybercrime and serving as a consultant, expert witness, and special master in civil litigation cases. Brett has well over 1,000 hours of formal digital forensics training from a variety of U.S. federal agencies and forensic software companies. He has provided private consultation to government agencies and law firms in sensitive legal matters ranging from internal employee matters to class action litigation. Brett has also taught digital forensics and investigative techniques to dozens of law enforcement agencies internationally and at graduate-level educational programs. He is an award-winning author of several respected digital forensics books such as Placing the Suspect Behind the Keyboard, Hiding Behind the Keyboard, and the X-Ways Forensics Practitioner’s Guide. Brett also manages the DFIR Training website,  www.dfir.training as a free resource for the DFIR community. You can find Brett at www.dfir.training and &quot;,&quot;type&quot;:&quot;text&quot;},{&quot;text&quot;:&quot;www.brettshavers.com&quot;,&quot;type&quot;:&quot;text&quot;,&quot;marks&quot;:[{&quot;type&quot;:&quot;link&quot;,&quot;attrs&quot;:{&quot;href&quot;:&quot;http://www.brettshavers.com/&quot;,&quot;title&quot;:null,&quot;target&quot;:&quot;_blank&quot;}}]},{&quot;text&quot;:&quot;.&quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;niceabdzcj5&quot;,&quot;class&quot;:null}},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;wjfgouj9bd&quot;,&quot;class&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;Hannes Spichiger&quot;,&quot;type&quot;:&quot;text&quot;,&quot;marks&quot;:[{&quot;type&quot;:&quot;strong&quot;}]}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;0tgf0rrgvw&quot;,&quot;class&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;Hannes Spichiger is a PhD Student at the University of Lausanne interested in questions of reliability and uncertainty related to digital evidence. His thesis is focused on the localisation of persons based on mobile phone traces. In addition to his research activity, he works part time as a specialist for digital investigation at the Neuchâtel Police force in Switzerland. His technical specialisation is mostly centred around the analysis of mobile phones.&quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;x1d7u0dcoo&quot;,&quot;class&quot;:null}},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;dgm9r38f2u&quot;,&quot;class&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;Joe Walsh&quot;,&quot;type&quot;:&quot;text&quot;,&quot;marks&quot;:[{&quot;type&quot;:&quot;strong&quot;}]}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;u7n29eiqth&quot;,&quot;class&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;Joe Walsh teaches digital forensics and computer security courses at DeSales University. Prior to accepting this position, he worked as a senior security consultant for a computer security firm where he was responsible for performing security assessments, conducting penetration testing, and responding to computer security incidents. He has been a police officer for thirteen years. Joe is a former member of the Internet Crimes Against Children (ICAC) task force and the FBI Child Exploitation Task Force, where he was responsible for conducting online undercover investigations and forensic examinations of digital evidence. He has been recognized in court as an expert in computer crime and digital forensics. Joe has a bachelor’s degree in Computer Information Systems and earned his master’s degree in Criminal Justice with a concentration in Digital Forensics at DeSales University. He recently completed his second master&#x27;s degree in Information Systems with a concentration in Cybersecurity and is currently pursuing a Ph.D. in Information Systems with a specialization in Information Systems Cyber Security.&quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;316deb0ade&quot;,&quot;class&quot;:null}}]},&quot;align&quot;:&quot;left&quot;}}],&quot;layoutAllowsDuplicatePubs&quot;:false,&quot;createdAt&quot;:&quot;2021-01-07T20:03:12.970Z&quot;},{&quot;id&quot;:&quot;9a0a763a-139f-4380-8620-47bf9e307106&quot;,&quot;title&quot;:&quot;Community&quot;,&quot;slug&quot;:&quot;community&quot;,&quot;description&quot;:&quot;Organizers, reviewers and other community members&quot;,&quot;avatar&quot;:null,&quot;isPublic&quot;:true,&quot;isNarrowWidth&quot;:null,&quot;viewHash&quot;:&quot;faat8dm3&quot;,&quot;layout&quot;:[{&quot;id&quot;:&quot;0orzouf3&quot;,&quot;type&quot;:&quot;text&quot;,&quot;content&quot;:{&quot;text&quot;:{&quot;type&quot;:&quot;doc&quot;,&quot;attrs&quot;:{&quot;meta&quot;:{},&quot;suggestionId&quot;:null,&quot;suggestionKind&quot;:null,&quot;suggestionUserId&quot;:null,&quot;suggestionTimestamp&quot;:null,&quot;suggestionDiscussionId&quot;:null,&quot;suggestionOriginalAttrs&quot;:null},&quot;content&quot;:[{&quot;type&quot;:&quot;heading&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;dfir-review---community&quot;,&quot;rtl&quot;:null,&quot;level&quot;:1,&quot;fixedId&quot;:&quot;&quot;,&quot;textAlign&quot;:null,&quot;suggestionId&quot;:null,&quot;suggestionKind&quot;:null,&quot;suggestionUserId&quot;:null,&quot;suggestionTimestamp&quot;:null,&quot;suggestionDiscussionId&quot;:null,&quot;suggestionOriginalAttrs&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;DFIR Review - Community&quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;njvmqvwrc72&quot;,&quot;rtl&quot;:null,&quot;class&quot;:null,&quot;textAlign&quot;:null,&quot;suggestionId&quot;:null,&quot;suggestionKind&quot;:null,&quot;suggestionUserId&quot;:null,&quot;suggestionTimestamp&quot;:null,&quot;suggestionDiscussionId&quot;:null,&quot;suggestionOriginalAttrs&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;The DFIR Review community is part of the Digital Forensic Research Conference (&quot;,&quot;type&quot;:&quot;text&quot;},{&quot;text&quot;:&quot;DFRWS.org&quot;,&quot;type&quot;:&quot;text&quot;,&quot;marks&quot;:[{&quot;type&quot;:&quot;link&quot;,&quot;attrs&quot;:{&quot;href&quot;:&quot;https://www.dfrws.org&quot;,&quot;title&quot;:null,&quot;target&quot;:null,&quot;pubEdgeId&quot;:null}}]},{&quot;text&quot;:&quot;). The following individuals are involved with the coordination of DFIR Review and performing reviews of submitted work.&quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;nmhcg32xrcr&quot;,&quot;rtl&quot;:null,&quot;class&quot;:null,&quot;textAlign&quot;:null,&quot;suggestionId&quot;:null,&quot;suggestionKind&quot;:null,&quot;suggestionUserId&quot;:null,&quot;suggestionTimestamp&quot;:null,&quot;suggestionDiscussionId&quot;:null,&quot;suggestionOriginalAttrs&quot;:null}},{&quot;type&quot;:&quot;heading&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;organizing-committee&quot;,&quot;rtl&quot;:null,&quot;level&quot;:3,&quot;fixedId&quot;:&quot;&quot;,&quot;textAlign&quot;:null,&quot;suggestionId&quot;:null,&quot;suggestionKind&quot;:null,&quot;suggestionUserId&quot;:null,&quot;suggestionTimestamp&quot;:null,&quot;suggestionDiscussionId&quot;:null,&quot;suggestionOriginalAttrs&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;Organizing Committee&quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;table&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;nl858e11jp1&quot;,&quot;size&quot;:null,&quot;align&quot;:null,&quot;hideLabel&quot;:false,&quot;smallerFont&quot;:false,&quot;suggestionId&quot;:null,&quot;suggestionKind&quot;:null,&quot;suggestionUserId&quot;:null,&quot;suggestionTimestamp&quot;:null,&quot;suggestionDiscussionId&quot;:null,&quot;suggestionOriginalAttrs&quot;:null},&quot;content&quot;:[{&quot;type&quot;:&quot;table_row&quot;,&quot;attrs&quot;:{&quot;suggestionId&quot;:null,&quot;suggestionKind&quot;:null,&quot;suggestionUserId&quot;:null,&quot;suggestionTimestamp&quot;:null,&quot;suggestionDiscussionId&quot;:null,&quot;suggestionOriginalAttrs&quot;:null},&quot;content&quot;:[{&quot;type&quot;:&quot;table_cell&quot;,&quot;attrs&quot;:{&quot;colspan&quot;:1,&quot;rowspan&quot;:1,&quot;colwidth&quot;:[281],&quot;background&quot;:null,&quot;suggestionId&quot;:null,&quot;suggestionKind&quot;:null,&quot;suggestionUserId&quot;:null,&quot;suggestionTimestamp&quot;:null,&quot;suggestionDiscussionId&quot;:null,&quot;suggestionOriginalAttrs&quot;:null},&quot;content&quot;:[{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;nob2cd5m6pw&quot;,&quot;rtl&quot;:null,&quot;class&quot;:null,&quot;textAlign&quot;:null,&quot;suggestionId&quot;:null,&quot;suggestionKind&quot;:null,&quot;suggestionUserId&quot;:null,&quot;suggestionTimestamp&quot;:null,&quot;suggestionDiscussionId&quot;:null,&quot;suggestionOriginalAttrs&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;Chair&quot;,&quot;type&quot;:&quot;text&quot;,&quot;marks&quot;:[{&quot;type&quot;:&quot;em&quot;}]}]}]},{&quot;type&quot;:&quot;table_cell&quot;,&quot;attrs&quot;:{&quot;colspan&quot;:1,&quot;rowspan&quot;:1,&quot;colwidth&quot;:null,&quot;background&quot;:null,&quot;suggestionId&quot;:null,&quot;suggestionKind&quot;:null,&quot;suggestionUserId&quot;:null,&quot;suggestionTimestamp&quot;:null,&quot;suggestionDiscussionId&quot;:null,&quot;suggestionOriginalAttrs&quot;:null},&quot;content&quot;:[{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;nluano1hjzi&quot;,&quot;rtl&quot;:null,&quot;class&quot;:null,&quot;textAlign&quot;:null,&quot;suggestionId&quot;:null,&quot;suggestionKind&quot;:null,&quot;suggestionUserId&quot;:null,&quot;suggestionTimestamp&quot;:null,&quot;suggestionDiscussionId&quot;:null,&quot;suggestionOriginalAttrs&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;Jessica Hyde (George Mason University &amp; Hexordia)&quot;,&quot;type&quot;:&quot;text&quot;}]}]}]},{&quot;type&quot;:&quot;table_row&quot;,&quot;attrs&quot;:{&quot;suggestionId&quot;:null,&quot;suggestionKind&quot;:null,&quot;suggestionUserId&quot;:null,&quot;suggestionTimestamp&quot;:null,&quot;suggestionDiscussionId&quot;:null,&quot;suggestionOriginalAttrs&quot;:null},&quot;content&quot;:[{&quot;type&quot;:&quot;table_cell&quot;,&quot;attrs&quot;:{&quot;colspan&quot;:1,&quot;rowspan&quot;:1,&quot;colwidth&quot;:[281],&quot;background&quot;:null,&quot;suggestionId&quot;:null,&quot;suggestionKind&quot;:null,&quot;suggestionUserId&quot;:null,&quot;suggestionTimestamp&quot;:null,&quot;suggestionDiscussionId&quot;:null,&quot;suggestionOriginalAttrs&quot;:null},&quot;content&quot;:[{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;nevuw0krmqk&quot;,&quot;rtl&quot;:null,&quot;class&quot;:null,&quot;textAlign&quot;:null,&quot;suggestionId&quot;:null,&quot;suggestionKind&quot;:null,&quot;suggestionUserId&quot;:null,&quot;suggestionTimestamp&quot;:null,&quot;suggestionDiscussionId&quot;:null,&quot;suggestionOriginalAttrs&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;Vice Chair&quot;,&quot;type&quot;:&quot;text&quot;,&quot;marks&quot;:[{&quot;type&quot;:&quot;em&quot;}]}]}]},{&quot;type&quot;:&quot;table_cell&quot;,&quot;attrs&quot;:{&quot;colspan&quot;:1,&quot;rowspan&quot;:1,&quot;colwidth&quot;:null,&quot;background&quot;:null,&quot;suggestionId&quot;:null,&quot;suggestionKind&quot;:null,&quot;suggestionUserId&quot;:null,&quot;suggestionTimestamp&quot;:null,&quot;suggestionDiscussionId&quot;:null,&quot;suggestionOriginalAttrs&quot;:null},&quot;content&quot;:[{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;n9rt66lkf8r&quot;,&quot;rtl&quot;:null,&quot;class&quot;:null,&quot;textAlign&quot;:null,&quot;suggestionId&quot;:null,&quot;suggestionKind&quot;:null,&quot;suggestionUserId&quot;:null,&quot;suggestionTimestamp&quot;:null,&quot;suggestionDiscussionId&quot;:null,&quot;suggestionOriginalAttrs&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;Eoghan Casey (University of Lausanne &amp; Digital Forensics Solutions)&quot;,&quot;type&quot;:&quot;text&quot;}]}]}]},{&quot;type&quot;:&quot;table_row&quot;,&quot;attrs&quot;:{&quot;suggestionId&quot;:null,&quot;suggestionKind&quot;:null,&quot;suggestionUserId&quot;:null,&quot;suggestionTimestamp&quot;:null,&quot;suggestionDiscussionId&quot;:null,&quot;suggestionOriginalAttrs&quot;:null},&quot;content&quot;:[{&quot;type&quot;:&quot;table_cell&quot;,&quot;attrs&quot;:{&quot;colspan&quot;:1,&quot;rowspan&quot;:1,&quot;colwidth&quot;:[281],&quot;background&quot;:null,&quot;suggestionId&quot;:null,&quot;suggestionKind&quot;:null,&quot;suggestionUserId&quot;:null,&quot;suggestionTimestamp&quot;:null,&quot;suggestionDiscussionId&quot;:null,&quot;suggestionOriginalAttrs&quot;:null},&quot;content&quot;:[{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;ncp0cp7e75w&quot;,&quot;rtl&quot;:null,&quot;class&quot;:null,&quot;textAlign&quot;:null,&quot;suggestionId&quot;:null,&quot;suggestionKind&quot;:null,&quot;suggestionUserId&quot;:null,&quot;suggestionTimestamp&quot;:null,&quot;suggestionDiscussionId&quot;:null,&quot;suggestionOriginalAttrs&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;Program Chair&quot;,&quot;type&quot;:&quot;text&quot;,&quot;marks&quot;:[{&quot;type&quot;:&quot;em&quot;}]}]}]},{&quot;type&quot;:&quot;table_cell&quot;,&quot;attrs&quot;:{&quot;colspan&quot;:1,&quot;rowspan&quot;:1,&quot;colwidth&quot;:null,&quot;background&quot;:null,&quot;suggestionId&quot;:null,&quot;suggestionKind&quot;:null,&quot;suggestionUserId&quot;:null,&quot;suggestionTimestamp&quot;:null,&quot;suggestionDiscussionId&quot;:null,&quot;suggestionOriginalAttrs&quot;:null},&quot;content&quot;:[{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;njo8hz6z3fc&quot;,&quot;rtl&quot;:null,&quot;class&quot;:null,&quot;textAlign&quot;:null,&quot;suggestionId&quot;:null,&quot;suggestionKind&quot;:null,&quot;suggestionUserId&quot;:null,&quot;suggestionTimestamp&quot;:null,&quot;suggestionDiscussionId&quot;:null,&quot;suggestionOriginalAttrs&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;Elénore Ryser (University of Lausanne)&quot;,&quot;type&quot;:&quot;text&quot;}]}]}]},{&quot;type&quot;:&quot;table_row&quot;,&quot;attrs&quot;:{&quot;suggestionId&quot;:null,&quot;suggestionKind&quot;:null,&quot;suggestionUserId&quot;:null,&quot;suggestionTimestamp&quot;:null,&quot;suggestionDiscussionId&quot;:null,&quot;suggestionOriginalAttrs&quot;:null},&quot;content&quot;:[{&quot;type&quot;:&quot;table_cell&quot;,&quot;attrs&quot;:{&quot;colspan&quot;:1,&quot;rowspan&quot;:1,&quot;colwidth&quot;:[281],&quot;background&quot;:null,&quot;suggestionId&quot;:null,&quot;suggestionKind&quot;:null,&quot;suggestionUserId&quot;:null,&quot;suggestionTimestamp&quot;:null,&quot;suggestionDiscussionId&quot;:null,&quot;suggestionOriginalAttrs&quot;:null},&quot;content&quot;:[{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;n9qm9vvhvke&quot;,&quot;rtl&quot;:null,&quot;class&quot;:null,&quot;textAlign&quot;:null,&quot;suggestionId&quot;:null,&quot;suggestionKind&quot;:null,&quot;suggestionUserId&quot;:null,&quot;suggestionTimestamp&quot;:null,&quot;suggestionDiscussionId&quot;:null,&quot;suggestionOriginalAttrs&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;Program Vice Chairs&quot;,&quot;type&quot;:&quot;text&quot;,&quot;marks&quot;:[{&quot;type&quot;:&quot;em&quot;}]}]}]},{&quot;type&quot;:&quot;table_cell&quot;,&quot;attrs&quot;:{&quot;colspan&quot;:1,&quot;rowspan&quot;:1,&quot;colwidth&quot;:null,&quot;background&quot;:null,&quot;suggestionId&quot;:null,&quot;suggestionKind&quot;:null,&quot;suggestionUserId&quot;:null,&quot;suggestionTimestamp&quot;:null,&quot;suggestionDiscussionId&quot;:null,&quot;suggestionOriginalAttrs&quot;:null},&quot;content&quot;:[{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;nm0e0289thf&quot;,&quot;rtl&quot;:null,&quot;class&quot;:null,&quot;textAlign&quot;:null,&quot;suggestionId&quot;:null,&quot;suggestionKind&quot;:null,&quot;suggestionUserId&quot;:null,&quot;suggestionTimestamp&quot;:null,&quot;suggestionDiscussionId&quot;:null,&quot;suggestionOriginalAttrs&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;Holger Morgenstern (Albstadt-Sigmaringen University)&quot;,&quot;type&quot;:&quot;text&quot;}]}]}]},{&quot;type&quot;:&quot;table_row&quot;,&quot;attrs&quot;:{&quot;suggestionId&quot;:null,&quot;suggestionKind&quot;:null,&quot;suggestionUserId&quot;:null,&quot;suggestionTimestamp&quot;:null,&quot;suggestionDiscussionId&quot;:null,&quot;suggestionOriginalAttrs&quot;:null},&quot;content&quot;:[{&quot;type&quot;:&quot;table_cell&quot;,&quot;attrs&quot;:{&quot;colspan&quot;:1,&quot;rowspan&quot;:1,&quot;colwidth&quot;:[281],&quot;background&quot;:null,&quot;suggestionId&quot;:null,&quot;suggestionKind&quot;:null,&quot;suggestionUserId&quot;:null,&quot;suggestionTimestamp&quot;:null,&quot;suggestionDiscussionId&quot;:null,&quot;suggestionOriginalAttrs&quot;:null},&quot;content&quot;:[{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;nfwuwcdtt5p&quot;,&quot;rtl&quot;:null,&quot;class&quot;:null,&quot;textAlign&quot;:null,&quot;suggestionId&quot;:null,&quot;suggestionKind&quot;:null,&quot;suggestionUserId&quot;:null,&quot;suggestionTimestamp&quot;:null,&quot;suggestionDiscussionId&quot;:null,&quot;suggestionOriginalAttrs&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;Publication Co-Chairs&quot;,&quot;type&quot;:&quot;text&quot;,&quot;marks&quot;:[{&quot;type&quot;:&quot;em&quot;}]}]}]},{&quot;type&quot;:&quot;table_cell&quot;,&quot;attrs&quot;:{&quot;colspan&quot;:1,&quot;rowspan&quot;:1,&quot;colwidth&quot;:null,&quot;background&quot;:null,&quot;suggestionId&quot;:null,&quot;suggestionKind&quot;:null,&quot;suggestionUserId&quot;:null,&quot;suggestionTimestamp&quot;:null,&quot;suggestionDiscussionId&quot;:null,&quot;suggestionOriginalAttrs&quot;:null},&quot;content&quot;:[{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;n3xjynkt6hp&quot;,&quot;rtl&quot;:null,&quot;class&quot;:null,&quot;textAlign&quot;:null,&quot;suggestionId&quot;:null,&quot;suggestionKind&quot;:null,&quot;suggestionUserId&quot;:null,&quot;suggestionTimestamp&quot;:null,&quot;suggestionDiscussionId&quot;:null,&quot;suggestionOriginalAttrs&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;Joseph Walsh (DeSales University)&quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;nyue3ejt816&quot;,&quot;rtl&quot;:null,&quot;class&quot;:null,&quot;textAlign&quot;:null,&quot;suggestionId&quot;:null,&quot;suggestionKind&quot;:null,&quot;suggestionUserId&quot;:null,&quot;suggestionTimestamp&quot;:null,&quot;suggestionDiscussionId&quot;:null,&quot;suggestionOriginalAttrs&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;Johannn Polewczyk (University of Lausanne)&quot;,&quot;type&quot;:&quot;text&quot;},{&quot;type&quot;:&quot;hard_break&quot;,&quot;attrs&quot;:{&quot;suggestionId&quot;:null,&quot;suggestionKind&quot;:null,&quot;suggestionUserId&quot;:null,&quot;suggestionTimestamp&quot;:null,&quot;suggestionDiscussionId&quot;:null,&quot;suggestionOriginalAttrs&quot;:null}},{&quot;text&quot;:&quot;Stephen Boyce (Marymount University &amp; Magnet Forensics)&quot;,&quot;type&quot;:&quot;text&quot;}]}]}]},{&quot;type&quot;:&quot;table_row&quot;,&quot;attrs&quot;:{&quot;suggestionId&quot;:null,&quot;suggestionKind&quot;:null,&quot;suggestionUserId&quot;:null,&quot;suggestionTimestamp&quot;:null,&quot;suggestionDiscussionId&quot;:null,&quot;suggestionOriginalAttrs&quot;:null},&quot;content&quot;:[{&quot;type&quot;:&quot;table_cell&quot;,&quot;attrs&quot;:{&quot;colspan&quot;:1,&quot;rowspan&quot;:1,&quot;colwidth&quot;:[281],&quot;background&quot;:null,&quot;suggestionId&quot;:null,&quot;suggestionKind&quot;:null,&quot;suggestionUserId&quot;:null,&quot;suggestionTimestamp&quot;:null,&quot;suggestionDiscussionId&quot;:null,&quot;suggestionOriginalAttrs&quot;:null},&quot;content&quot;:[{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;n3z0ooxd4e9&quot;,&quot;rtl&quot;:null,&quot;class&quot;:null,&quot;textAlign&quot;:null,&quot;suggestionId&quot;:null,&quot;suggestionKind&quot;:null,&quot;suggestionUserId&quot;:null,&quot;suggestionTimestamp&quot;:null,&quot;suggestionDiscussionId&quot;:null,&quot;suggestionOriginalAttrs&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;Industry Practitioner Liaisons&quot;,&quot;type&quot;:&quot;text&quot;,&quot;marks&quot;:[{&quot;type&quot;:&quot;em&quot;}]}]}]},{&quot;type&quot;:&quot;table_cell&quot;,&quot;attrs&quot;:{&quot;colspan&quot;:1,&quot;rowspan&quot;:1,&quot;colwidth&quot;:null,&quot;background&quot;:null,&quot;suggestionId&quot;:null,&quot;suggestionKind&quot;:null,&quot;suggestionUserId&quot;:null,&quot;suggestionTimestamp&quot;:null,&quot;suggestionDiscussionId&quot;:null,&quot;suggestionOriginalAttrs&quot;:null},&quot;content&quot;:[{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;nl0vizkjnsc&quot;,&quot;rtl&quot;:null,&quot;class&quot;:null,&quot;textAlign&quot;:null,&quot;suggestionId&quot;:null,&quot;suggestionKind&quot;:null,&quot;suggestionUserId&quot;:null,&quot;suggestionTimestamp&quot;:null,&quot;suggestionDiscussionId&quot;:null,&quot;suggestionOriginalAttrs&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;Brett Shavers (DFIR Training)&quot;,&quot;type&quot;:&quot;text&quot;},{&quot;type&quot;:&quot;hard_break&quot;,&quot;attrs&quot;:{&quot;suggestionId&quot;:null,&quot;suggestionKind&quot;:null,&quot;suggestionUserId&quot;:null,&quot;suggestionTimestamp&quot;:null,&quot;suggestionDiscussionId&quot;:null,&quot;suggestionOriginalAttrs&quot;:null}},{&quot;text&quot;:&quot;Tony Knutson (SANS Institute, Kroll)&quot;,&quot;type&quot;:&quot;text&quot;}]}]}]},{&quot;type&quot;:&quot;table_row&quot;,&quot;attrs&quot;:{&quot;suggestionId&quot;:null,&quot;suggestionKind&quot;:null,&quot;suggestionUserId&quot;:null,&quot;suggestionTimestamp&quot;:null,&quot;suggestionDiscussionId&quot;:null,&quot;suggestionOriginalAttrs&quot;:null},&quot;content&quot;:[{&quot;type&quot;:&quot;table_cell&quot;,&quot;attrs&quot;:{&quot;colspan&quot;:1,&quot;rowspan&quot;:1,&quot;colwidth&quot;:[281],&quot;background&quot;:null,&quot;suggestionId&quot;:null,&quot;suggestionKind&quot;:null,&quot;suggestionUserId&quot;:null,&quot;suggestionTimestamp&quot;:null,&quot;suggestionDiscussionId&quot;:null,&quot;suggestionOriginalAttrs&quot;:null},&quot;content&quot;:[{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;nn4f52e3b48&quot;,&quot;rtl&quot;:null,&quot;class&quot;:null,&quot;textAlign&quot;:null,&quot;suggestionId&quot;:null,&quot;suggestionKind&quot;:null,&quot;suggestionUserId&quot;:null,&quot;suggestionTimestamp&quot;:null,&quot;suggestionDiscussionId&quot;:null,&quot;suggestionOriginalAttrs&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;Government Practitioner Liaison&quot;,&quot;type&quot;:&quot;text&quot;,&quot;marks&quot;:[{&quot;type&quot;:&quot;em&quot;}]}]}]},{&quot;type&quot;:&quot;table_cell&quot;,&quot;attrs&quot;:{&quot;colspan&quot;:1,&quot;rowspan&quot;:1,&quot;colwidth&quot;:null,&quot;background&quot;:null,&quot;suggestionId&quot;:null,&quot;suggestionKind&quot;:null,&quot;suggestionUserId&quot;:null,&quot;suggestionTimestamp&quot;:null,&quot;suggestionDiscussionId&quot;:null,&quot;suggestionOriginalAttrs&quot;:null},&quot;content&quot;:[{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;nsqzhip8skn&quot;,&quot;rtl&quot;:null,&quot;class&quot;:null,&quot;textAlign&quot;:null,&quot;suggestionId&quot;:null,&quot;suggestionKind&quot;:null,&quot;suggestionUserId&quot;:null,&quot;suggestionTimestamp&quot;:null,&quot;suggestionDiscussionId&quot;:null,&quot;suggestionOriginalAttrs&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;Open&quot;,&quot;type&quot;:&quot;text&quot;}]}]}]},{&quot;type&quot;:&quot;table_row&quot;,&quot;attrs&quot;:{&quot;suggestionId&quot;:null,&quot;suggestionKind&quot;:null,&quot;suggestionUserId&quot;:null,&quot;suggestionTimestamp&quot;:null,&quot;suggestionDiscussionId&quot;:null,&quot;suggestionOriginalAttrs&quot;:null},&quot;content&quot;:[{&quot;type&quot;:&quot;table_cell&quot;,&quot;attrs&quot;:{&quot;colspan&quot;:1,&quot;rowspan&quot;:1,&quot;colwidth&quot;:[281],&quot;background&quot;:null,&quot;suggestionId&quot;:null,&quot;suggestionKind&quot;:null,&quot;suggestionUserId&quot;:null,&quot;suggestionTimestamp&quot;:null,&quot;suggestionDiscussionId&quot;:null,&quot;suggestionOriginalAttrs&quot;:null},&quot;content&quot;:[{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;n7d817t277l&quot;,&quot;rtl&quot;:null,&quot;class&quot;:null,&quot;textAlign&quot;:null,&quot;suggestionId&quot;:null,&quot;suggestionKind&quot;:null,&quot;suggestionUserId&quot;:null,&quot;suggestionTimestamp&quot;:null,&quot;suggestionDiscussionId&quot;:null,&quot;suggestionOriginalAttrs&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;Communications Chair&quot;,&quot;type&quot;:&quot;text&quot;,&quot;marks&quot;:[{&quot;type&quot;:&quot;em&quot;}]}]}]},{&quot;type&quot;:&quot;table_cell&quot;,&quot;attrs&quot;:{&quot;colspan&quot;:1,&quot;rowspan&quot;:1,&quot;colwidth&quot;:null,&quot;background&quot;:null,&quot;suggestionId&quot;:null,&quot;suggestionKind&quot;:null,&quot;suggestionUserId&quot;:null,&quot;suggestionTimestamp&quot;:null,&quot;suggestionDiscussionId&quot;:null,&quot;suggestionOriginalAttrs&quot;:null},&quot;content&quot;:[{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;nlweyvguct0&quot;,&quot;rtl&quot;:null,&quot;class&quot;:null,&quot;textAlign&quot;:null,&quot;suggestionId&quot;:null,&quot;suggestionKind&quot;:null,&quot;suggestionUserId&quot;:null,&quot;suggestionTimestamp&quot;:null,&quot;suggestionDiscussionId&quot;:null,&quot;suggestionOriginalAttrs&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;Prashanth Kumar Reddy Malise (George Mason University)&quot;,&quot;type&quot;:&quot;text&quot;}]}]}]},{&quot;type&quot;:&quot;table_row&quot;,&quot;attrs&quot;:{&quot;suggestionId&quot;:null,&quot;suggestionKind&quot;:null,&quot;suggestionUserId&quot;:null,&quot;suggestionTimestamp&quot;:null,&quot;suggestionDiscussionId&quot;:null,&quot;suggestionOriginalAttrs&quot;:null},&quot;content&quot;:[{&quot;type&quot;:&quot;table_cell&quot;,&quot;attrs&quot;:{&quot;colspan&quot;:1,&quot;rowspan&quot;:1,&quot;colwidth&quot;:[281],&quot;background&quot;:null,&quot;suggestionId&quot;:null,&quot;suggestionKind&quot;:null,&quot;suggestionUserId&quot;:null,&quot;suggestionTimestamp&quot;:null,&quot;suggestionDiscussionId&quot;:null,&quot;suggestionOriginalAttrs&quot;:null},&quot;content&quot;:[{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;nb3g91k5nvm&quot;,&quot;rtl&quot;:null,&quot;class&quot;:null,&quot;textAlign&quot;:null,&quot;suggestionId&quot;:null,&quot;suggestionKind&quot;:null,&quot;suggestionUserId&quot;:null,&quot;suggestionTimestamp&quot;:null,&quot;suggestionDiscussionId&quot;:null,&quot;suggestionOriginalAttrs&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;Academia Liaison&quot;,&quot;type&quot;:&quot;text&quot;,&quot;marks&quot;:[{&quot;type&quot;:&quot;em&quot;}]}]}]},{&quot;type&quot;:&quot;table_cell&quot;,&quot;attrs&quot;:{&quot;colspan&quot;:1,&quot;rowspan&quot;:1,&quot;colwidth&quot;:null,&quot;background&quot;:null,&quot;suggestionId&quot;:null,&quot;suggestionKind&quot;:null,&quot;suggestionUserId&quot;:null,&quot;suggestionTimestamp&quot;:null,&quot;suggestionDiscussionId&quot;:null,&quot;suggestionOriginalAttrs&quot;:null},&quot;content&quot;:[{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;nvyh6n6hw1i&quot;,&quot;rtl&quot;:null,&quot;class&quot;:null,&quot;textAlign&quot;:null,&quot;suggestionId&quot;:null,&quot;suggestionKind&quot;:null,&quot;suggestionUserId&quot;:null,&quot;suggestionTimestamp&quot;:null,&quot;suggestionDiscussionId&quot;:null,&quot;suggestionOriginalAttrs&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;Mark McKinnon (Davenport University)&quot;,&quot;type&quot;:&quot;text&quot;}]}]}]},{&quot;type&quot;:&quot;table_row&quot;,&quot;attrs&quot;:{&quot;suggestionId&quot;:null,&quot;suggestionKind&quot;:null,&quot;suggestionUserId&quot;:null,&quot;suggestionTimestamp&quot;:null,&quot;suggestionDiscussionId&quot;:null,&quot;suggestionOriginalAttrs&quot;:null},&quot;content&quot;:[{&quot;type&quot;:&quot;table_cell&quot;,&quot;attrs&quot;:{&quot;colspan&quot;:1,&quot;rowspan&quot;:1,&quot;colwidth&quot;:[281],&quot;background&quot;:null,&quot;suggestionId&quot;:null,&quot;suggestionKind&quot;:null,&quot;suggestionUserId&quot;:null,&quot;suggestionTimestamp&quot;:null,&quot;suggestionDiscussionId&quot;:null,&quot;suggestionOriginalAttrs&quot;:null},&quot;content&quot;:[{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;nb8y6poo5ut&quot;,&quot;rtl&quot;:null,&quot;class&quot;:null,&quot;textAlign&quot;:null,&quot;suggestionId&quot;:null,&quot;suggestionKind&quot;:null,&quot;suggestionUserId&quot;:null,&quot;suggestionTimestamp&quot;:null,&quot;suggestionDiscussionId&quot;:null,&quot;suggestionOriginalAttrs&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;DFRWS Liaison&quot;,&quot;type&quot;:&quot;text&quot;}]}]},{&quot;type&quot;:&quot;table_cell&quot;,&quot;attrs&quot;:{&quot;colspan&quot;:1,&quot;rowspan&quot;:1,&quot;colwidth&quot;:null,&quot;background&quot;:null,&quot;suggestionId&quot;:null,&quot;suggestionKind&quot;:null,&quot;suggestionUserId&quot;:null,&quot;suggestionTimestamp&quot;:null,&quot;suggestionDiscussionId&quot;:null,&quot;suggestionOriginalAttrs&quot;:null},&quot;content&quot;:[{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;nxdbp7wyl5g&quot;,&quot;rtl&quot;:null,&quot;class&quot;:null,&quot;textAlign&quot;:null,&quot;suggestionId&quot;:null,&quot;suggestionKind&quot;:null,&quot;suggestionUserId&quot;:null,&quot;suggestionTimestamp&quot;:null,&quot;suggestionDiscussionId&quot;:null,&quot;suggestionOriginalAttrs&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;Daryl Pfeif (Digital Forensics Solutions)&quot;,&quot;type&quot;:&quot;text&quot;}]}]}]}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;nqeycm08v59&quot;,&quot;rtl&quot;:null,&quot;class&quot;:null,&quot;textAlign&quot;:null,&quot;suggestionId&quot;:null,&quot;suggestionKind&quot;:null,&quot;suggestionUserId&quot;:null,&quot;suggestionTimestamp&quot;:null,&quot;suggestionDiscussionId&quot;:null,&quot;suggestionOriginalAttrs&quot;:null}},{&quot;type&quot;:&quot;heading&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;gold-reviewers&quot;,&quot;rtl&quot;:null,&quot;level&quot;:3,&quot;fixedId&quot;:&quot;&quot;,&quot;textAlign&quot;:null,&quot;suggestionId&quot;:null,&quot;suggestionKind&quot;:null,&quot;suggestionUserId&quot;:null,&quot;suggestionTimestamp&quot;:null,&quot;suggestionDiscussionId&quot;:null,&quot;suggestionOriginalAttrs&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;Gold Reviewers&quot;,&quot;type&quot;:&quot;text&quot;,&quot;marks&quot;:[{&quot;type&quot;:&quot;strong&quot;}]}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;n8i5812w1z4&quot;,&quot;rtl&quot;:null,&quot;class&quot;:null,&quot;textAlign&quot;:null,&quot;suggestionId&quot;:null,&quot;suggestionKind&quot;:null,&quot;suggestionUserId&quot;:null,&quot;suggestionTimestamp&quot;:null,&quot;suggestionDiscussionId&quot;:null,&quot;suggestionOriginalAttrs&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;Addisu Afework Birhanu&quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;n1kh4iysins&quot;,&quot;rtl&quot;:null,&quot;class&quot;:null,&quot;textAlign&quot;:null,&quot;suggestionId&quot;:null,&quot;suggestionKind&quot;:null,&quot;suggestionUserId&quot;:null,&quot;suggestionTimestamp&quot;:null,&quot;suggestionDiscussionId&quot;:null,&quot;suggestionOriginalAttrs&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;Jessica Hyde&quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;heading&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;silver-reviewers&quot;,&quot;rtl&quot;:null,&quot;level&quot;:3,&quot;fixedId&quot;:&quot;&quot;,&quot;textAlign&quot;:null,&quot;suggestionId&quot;:null,&quot;suggestionKind&quot;:null,&quot;suggestionUserId&quot;:null,&quot;suggestionTimestamp&quot;:null,&quot;suggestionDiscussionId&quot;:null,&quot;suggestionOriginalAttrs&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;Silver Reviewers&quot;,&quot;type&quot;:&quot;text&quot;,&quot;marks&quot;:[{&quot;type&quot;:&quot;strong&quot;}]}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;n6fdc4jxn5f&quot;,&quot;rtl&quot;:null,&quot;class&quot;:null,&quot;textAlign&quot;:null,&quot;suggestionId&quot;:null,&quot;suggestionKind&quot;:null,&quot;suggestionUserId&quot;:null,&quot;suggestionTimestamp&quot;:null,&quot;suggestionDiscussionId&quot;:null,&quot;suggestionOriginalAttrs&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;Timothy Bollé&quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;n7o01htwz3d&quot;,&quot;rtl&quot;:null,&quot;class&quot;:null,&quot;textAlign&quot;:null,&quot;suggestionId&quot;:null,&quot;suggestionKind&quot;:null,&quot;suggestionUserId&quot;:null,&quot;suggestionTimestamp&quot;:null,&quot;suggestionDiscussionId&quot;:null,&quot;suggestionOriginalAttrs&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;Yohannes Yemane Brhan&quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;nj5kt6d91wk&quot;,&quot;rtl&quot;:null,&quot;class&quot;:null,&quot;textAlign&quot;:null,&quot;suggestionId&quot;:null,&quot;suggestionKind&quot;:null,&quot;suggestionUserId&quot;:null,&quot;suggestionTimestamp&quot;:null,&quot;suggestionDiscussionId&quot;:null,&quot;suggestionOriginalAttrs&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;Lisa Brown&quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;nrc1291xnwq&quot;,&quot;rtl&quot;:null,&quot;class&quot;:null,&quot;textAlign&quot;:null,&quot;suggestionId&quot;:null,&quot;suggestionKind&quot;:null,&quot;suggestionUserId&quot;:null,&quot;suggestionTimestamp&quot;:null,&quot;suggestionDiscussionId&quot;:null,&quot;suggestionOriginalAttrs&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;Eric Eppley&quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;nzkiahta6tk&quot;,&quot;rtl&quot;:null,&quot;class&quot;:null,&quot;textAlign&quot;:null,&quot;suggestionId&quot;:null,&quot;suggestionKind&quot;:null,&quot;suggestionUserId&quot;:null,&quot;suggestionTimestamp&quot;:null,&quot;suggestionDiscussionId&quot;:null,&quot;suggestionOriginalAttrs&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;Ali Hadi&quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;n8zwsae7fd4&quot;,&quot;rtl&quot;:null,&quot;class&quot;:null,&quot;textAlign&quot;:null,&quot;suggestionId&quot;:null,&quot;suggestionKind&quot;:null,&quot;suggestionUserId&quot;:null,&quot;suggestionTimestamp&quot;:null,&quot;suggestionDiscussionId&quot;:null,&quot;suggestionOriginalAttrs&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;Anthony Knutson&quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;ndqp4i8u6ib&quot;,&quot;rtl&quot;:null,&quot;class&quot;:null,&quot;textAlign&quot;:null,&quot;suggestionId&quot;:null,&quot;suggestionKind&quot;:null,&quot;suggestionUserId&quot;:null,&quot;suggestionTimestamp&quot;:null,&quot;suggestionDiscussionId&quot;:null,&quot;suggestionOriginalAttrs&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;Nickolas Ligman&quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;nebcnn9kssg&quot;,&quot;rtl&quot;:null,&quot;class&quot;:null,&quot;textAlign&quot;:null,&quot;suggestionId&quot;:null,&quot;suggestionKind&quot;:null,&quot;suggestionUserId&quot;:null,&quot;suggestionTimestamp&quot;:null,&quot;suggestionDiscussionId&quot;:null,&quot;suggestionOriginalAttrs&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;Johann Polewczyk&quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;neui5xdpmvn&quot;,&quot;rtl&quot;:null,&quot;class&quot;:null,&quot;textAlign&quot;:null,&quot;suggestionId&quot;:null,&quot;suggestionKind&quot;:null,&quot;suggestionUserId&quot;:null,&quot;suggestionTimestamp&quot;:null,&quot;suggestionDiscussionId&quot;:null,&quot;suggestionOriginalAttrs&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;Francesco Servida&quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;nk4y4uj79rp&quot;,&quot;rtl&quot;:null,&quot;class&quot;:null,&quot;textAlign&quot;:null,&quot;suggestionId&quot;:null,&quot;suggestionKind&quot;:null,&quot;suggestionUserId&quot;:null,&quot;suggestionTimestamp&quot;:null,&quot;suggestionDiscussionId&quot;:null,&quot;suggestionOriginalAttrs&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;Linda Shou&quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;heading&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;reviewers&quot;,&quot;rtl&quot;:null,&quot;level&quot;:3,&quot;fixedId&quot;:&quot;&quot;,&quot;textAlign&quot;:null,&quot;suggestionId&quot;:null,&quot;suggestionKind&quot;:null,&quot;suggestionUserId&quot;:null,&quot;suggestionTimestamp&quot;:null,&quot;suggestionDiscussionId&quot;:null,&quot;suggestionOriginalAttrs&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;Reviewers&quot;,&quot;type&quot;:&quot;text&quot;,&quot;marks&quot;:[{&quot;type&quot;:&quot;strong&quot;}]}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;n9s3lh9ajpy&quot;,&quot;rtl&quot;:null,&quot;class&quot;:null,&quot;textAlign&quot;:null,&quot;suggestionId&quot;:null,&quot;suggestionKind&quot;:null,&quot;suggestionUserId&quot;:null,&quot;suggestionTimestamp&quot;:null,&quot;suggestionDiscussionId&quot;:null,&quot;suggestionOriginalAttrs&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;Zheng Jie Chan&quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;n8elkug24sb&quot;,&quot;rtl&quot;:null,&quot;class&quot;:null,&quot;textAlign&quot;:null,&quot;suggestionId&quot;:null,&quot;suggestionKind&quot;:null,&quot;suggestionUserId&quot;:null,&quot;suggestionTimestamp&quot;:null,&quot;suggestionDiscussionId&quot;:null,&quot;suggestionOriginalAttrs&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;Amanda Chung&quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;n2aabge5wje&quot;,&quot;rtl&quot;:null,&quot;class&quot;:null,&quot;textAlign&quot;:null,&quot;suggestionId&quot;:null,&quot;suggestionKind&quot;:null,&quot;suggestionUserId&quot;:null,&quot;suggestionTimestamp&quot;:null,&quot;suggestionDiscussionId&quot;:null,&quot;suggestionOriginalAttrs&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;Manon Fischer&quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;npnfnj8l2wd&quot;,&quot;rtl&quot;:null,&quot;class&quot;:null,&quot;textAlign&quot;:null,&quot;suggestionId&quot;:null,&quot;suggestionKind&quot;:null,&quot;suggestionUserId&quot;:null,&quot;suggestionTimestamp&quot;:null,&quot;suggestionDiscussionId&quot;:null,&quot;suggestionOriginalAttrs&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;Joshua I. James&quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;no912s063do&quot;,&quot;rtl&quot;:null,&quot;class&quot;:null,&quot;textAlign&quot;:null,&quot;suggestionId&quot;:null,&quot;suggestionKind&quot;:null,&quot;suggestionUserId&quot;:null,&quot;suggestionTimestamp&quot;:null,&quot;suggestionDiscussionId&quot;:null,&quot;suggestionOriginalAttrs&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;Selena Ley&quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;njxapqpjwad&quot;,&quot;rtl&quot;:null,&quot;class&quot;:null,&quot;textAlign&quot;:null,&quot;suggestionId&quot;:null,&quot;suggestionKind&quot;:null,&quot;suggestionUserId&quot;:null,&quot;suggestionTimestamp&quot;:null,&quot;suggestionDiscussionId&quot;:null,&quot;suggestionOriginalAttrs&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;Prashanth Malise&quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;nwsmf4uk2w9&quot;,&quot;rtl&quot;:null,&quot;class&quot;:null,&quot;textAlign&quot;:null,&quot;suggestionId&quot;:null,&quot;suggestionKind&quot;:null,&quot;suggestionUserId&quot;:null,&quot;suggestionTimestamp&quot;:null,&quot;suggestionDiscussionId&quot;:null,&quot;suggestionOriginalAttrs&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;Doug Metz&quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;nxnafg3l6oq&quot;,&quot;rtl&quot;:null,&quot;class&quot;:null,&quot;textAlign&quot;:null,&quot;suggestionId&quot;:null,&quot;suggestionKind&quot;:null,&quot;suggestionUserId&quot;:null,&quot;suggestionTimestamp&quot;:null,&quot;suggestionDiscussionId&quot;:null,&quot;suggestionOriginalAttrs&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;Sungmi Park&quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;n0g52jkbwup&quot;,&quot;rtl&quot;:null,&quot;class&quot;:null,&quot;textAlign&quot;:null,&quot;suggestionId&quot;:null,&quot;suggestionKind&quot;:null,&quot;suggestionUserId&quot;:null,&quot;suggestionTimestamp&quot;:null,&quot;suggestionDiscussionId&quot;:null,&quot;suggestionOriginalAttrs&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;Elénore Ryser&quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;nggzzzcdghx&quot;,&quot;rtl&quot;:null,&quot;class&quot;:null,&quot;textAlign&quot;:null,&quot;suggestionId&quot;:null,&quot;suggestionKind&quot;:null,&quot;suggestionUserId&quot;:null,&quot;suggestionTimestamp&quot;:null,&quot;suggestionDiscussionId&quot;:null,&quot;suggestionOriginalAttrs&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;Bradley Schatz&quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;n3f48kee4la&quot;,&quot;rtl&quot;:null,&quot;class&quot;:null,&quot;textAlign&quot;:null,&quot;suggestionId&quot;:null,&quot;suggestionKind&quot;:null,&quot;suggestionUserId&quot;:null,&quot;suggestionTimestamp&quot;:null,&quot;suggestionDiscussionId&quot;:null,&quot;suggestionOriginalAttrs&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;Aurèle Scoundrianos&quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;nxfzzfjv0bj&quot;,&quot;rtl&quot;:null,&quot;class&quot;:null,&quot;textAlign&quot;:null,&quot;suggestionId&quot;:null,&quot;suggestionKind&quot;:null,&quot;suggestionUserId&quot;:null,&quot;suggestionTimestamp&quot;:null,&quot;suggestionDiscussionId&quot;:null,&quot;suggestionOriginalAttrs&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;Brett Shavers&quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;nhm88qaxmrz&quot;,&quot;rtl&quot;:null,&quot;class&quot;:null,&quot;textAlign&quot;:null,&quot;suggestionId&quot;:null,&quot;suggestionKind&quot;:null,&quot;suggestionUserId&quot;:null,&quot;suggestionTimestamp&quot;:null,&quot;suggestionDiscussionId&quot;:null,&quot;suggestionOriginalAttrs&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;Hannes Spichiger&quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;nit2iq3d23w&quot;,&quot;rtl&quot;:null,&quot;class&quot;:null,&quot;textAlign&quot;:null,&quot;suggestionId&quot;:null,&quot;suggestionKind&quot;:null,&quot;suggestionUserId&quot;:null,&quot;suggestionTimestamp&quot;:null,&quot;suggestionDiscussionId&quot;:null,&quot;suggestionOriginalAttrs&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;Adrien Vincart&quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;n4k32e401lj&quot;,&quot;rtl&quot;:null,&quot;class&quot;:null,&quot;textAlign&quot;:null,&quot;suggestionId&quot;:null,&quot;suggestionKind&quot;:null,&quot;suggestionUserId&quot;:null,&quot;suggestionTimestamp&quot;:null,&quot;suggestionDiscussionId&quot;:null,&quot;suggestionOriginalAttrs&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;Ryan Wesley&quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;nqk71vxqngp&quot;,&quot;rtl&quot;:null,&quot;class&quot;:null,&quot;textAlign&quot;:null,&quot;suggestionId&quot;:null,&quot;suggestionKind&quot;:null,&quot;suggestionUserId&quot;:null,&quot;suggestionTimestamp&quot;:null,&quot;suggestionDiscussionId&quot;:null,&quot;suggestionOriginalAttrs&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;Mike Williamson&quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;nsa2fmswdj9&quot;,&quot;rtl&quot;:null,&quot;class&quot;:null,&quot;textAlign&quot;:null,&quot;suggestionId&quot;:null,&quot;suggestionKind&quot;:null,&quot;suggestionUserId&quot;:null,&quot;suggestionTimestamp&quot;:null,&quot;suggestionDiscussionId&quot;:null,&quot;suggestionOriginalAttrs&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;Sara Pierce&quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;nq1yf68ueg1&quot;,&quot;rtl&quot;:null,&quot;class&quot;:null,&quot;textAlign&quot;:null,&quot;suggestionId&quot;:null,&quot;suggestionKind&quot;:null,&quot;suggestionUserId&quot;:null,&quot;suggestionTimestamp&quot;:null,&quot;suggestionDiscussionId&quot;:null,&quot;suggestionOriginalAttrs&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;Rishitha Reddy Munugala&quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;nbu3tm23f7c&quot;,&quot;rtl&quot;:null,&quot;class&quot;:null,&quot;textAlign&quot;:null,&quot;suggestionId&quot;:null,&quot;suggestionKind&quot;:null,&quot;suggestionUserId&quot;:null,&quot;suggestionTimestamp&quot;:null,&quot;suggestionDiscussionId&quot;:null,&quot;suggestionOriginalAttrs&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;Saarthik Tannan&quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;nrp61pupf81&quot;,&quot;rtl&quot;:null,&quot;class&quot;:null,&quot;textAlign&quot;:null,&quot;suggestionId&quot;:null,&quot;suggestionKind&quot;:null,&quot;suggestionUserId&quot;:null,&quot;suggestionTimestamp&quot;:null,&quot;suggestionDiscussionId&quot;:null,&quot;suggestionOriginalAttrs&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;Madison Brumbelow &quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;ni74qzjo8sp&quot;,&quot;rtl&quot;:null,&quot;class&quot;:null,&quot;textAlign&quot;:null,&quot;suggestionId&quot;:null,&quot;suggestionKind&quot;:null,&quot;suggestionUserId&quot;:null,&quot;suggestionTimestamp&quot;:null,&quot;suggestionDiscussionId&quot;:null,&quot;suggestionOriginalAttrs&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;Utta Von Nuremburg&quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;npl1u0vkavz&quot;,&quot;rtl&quot;:null,&quot;class&quot;:null,&quot;textAlign&quot;:null,&quot;suggestionId&quot;:null,&quot;suggestionKind&quot;:null,&quot;suggestionUserId&quot;:null,&quot;suggestionTimestamp&quot;:null,&quot;suggestionDiscussionId&quot;:null,&quot;suggestionOriginalAttrs&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;Kristin Ibanez&quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;n9qfsttvt14&quot;,&quot;rtl&quot;:null,&quot;class&quot;:null,&quot;textAlign&quot;:null,&quot;suggestionId&quot;:null,&quot;suggestionKind&quot;:null,&quot;suggestionUserId&quot;:null,&quot;suggestionTimestamp&quot;:null,&quot;suggestionDiscussionId&quot;:null,&quot;suggestionOriginalAttrs&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;Charina Marrion&quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;nud0ag5mn1t&quot;,&quot;rtl&quot;:null,&quot;class&quot;:null,&quot;textAlign&quot;:null,&quot;suggestionId&quot;:null,&quot;suggestionKind&quot;:null,&quot;suggestionUserId&quot;:null,&quot;suggestionTimestamp&quot;:null,&quot;suggestionDiscussionId&quot;:null,&quot;suggestionOriginalAttrs&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;Jad Saliba&quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;nao5nk4co3i&quot;,&quot;rtl&quot;:null,&quot;class&quot;:null,&quot;textAlign&quot;:null,&quot;suggestionId&quot;:null,&quot;suggestionKind&quot;:null,&quot;suggestionUserId&quot;:null,&quot;suggestionTimestamp&quot;:null,&quot;suggestionDiscussionId&quot;:null,&quot;suggestionOriginalAttrs&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;Alexander Brunner&quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;nyr4o65w4ru&quot;,&quot;rtl&quot;:null,&quot;class&quot;:null,&quot;textAlign&quot;:null,&quot;suggestionId&quot;:null,&quot;suggestionKind&quot;:null,&quot;suggestionUserId&quot;:null,&quot;suggestionTimestamp&quot;:null,&quot;suggestionDiscussionId&quot;:null,&quot;suggestionOriginalAttrs&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;Rishi Krishnan&quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;n108kjc0y31&quot;,&quot;rtl&quot;:null,&quot;class&quot;:null,&quot;textAlign&quot;:null,&quot;suggestionId&quot;:null,&quot;suggestionKind&quot;:null,&quot;suggestionUserId&quot;:null,&quot;suggestionTimestamp&quot;:null,&quot;suggestionDiscussionId&quot;:null,&quot;suggestionOriginalAttrs&quot;:null}},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;ndtssgtyvl1&quot;,&quot;rtl&quot;:null,&quot;class&quot;:null,&quot;textAlign&quot;:null,&quot;suggestionId&quot;:null,&quot;suggestionKind&quot;:null,&quot;suggestionUserId&quot;:null,&quot;suggestionTimestamp&quot;:null,&quot;suggestionDiscussionId&quot;:null,&quot;suggestionOriginalAttrs&quot;:null}}]},&quot;align&quot;:&quot;left&quot;}}],&quot;layoutAllowsDuplicatePubs&quot;:false,&quot;createdAt&quot;:&quot;2019-03-30T18:15:15.380Z&quot;},{&quot;id&quot;:&quot;2bd22226-03c8-4300-b555-73eb1d6a582d&quot;,&quot;title&quot;:&quot;Review Guidance&quot;,&quot;slug&quot;:&quot;review-guidance&quot;,&quot;description&quot;:&quot;Criteria and guidelines for evaluating DFIR Review submissions.&quot;,&quot;avatar&quot;:null,&quot;isPublic&quot;:true,&quot;isNarrowWidth&quot;:null,&quot;viewHash&quot;:&quot;pbpqub3l&quot;,&quot;layout&quot;:[{&quot;id&quot;:&quot;d93kbyyg&quot;,&quot;type&quot;:&quot;text&quot;,&quot;content&quot;:{&quot;text&quot;:{&quot;type&quot;:&quot;doc&quot;,&quot;attrs&quot;:{&quot;meta&quot;:{},&quot;suggestionId&quot;:null,&quot;suggestionKind&quot;:null,&quot;suggestionUserId&quot;:null,&quot;suggestionTimestamp&quot;:null,&quot;suggestionDiscussionId&quot;:null,&quot;suggestionOriginalAttrs&quot;:null},&quot;content&quot;:[{&quot;type&quot;:&quot;heading&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;dfir-review---guidance&quot;,&quot;rtl&quot;:null,&quot;level&quot;:1,&quot;fixedId&quot;:&quot;&quot;,&quot;textAlign&quot;:null,&quot;suggestionId&quot;:null,&quot;suggestionKind&quot;:null,&quot;suggestionUserId&quot;:null,&quot;suggestionTimestamp&quot;:null,&quot;suggestionDiscussionId&quot;:null,&quot;suggestionOriginalAttrs&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;DFIR Review - Guidance&quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;ic90m4lbu1&quot;,&quot;rtl&quot;:null,&quot;class&quot;:null,&quot;textAlign&quot;:null,&quot;suggestionId&quot;:null,&quot;suggestionKind&quot;:null,&quot;suggestionUserId&quot;:null,&quot;suggestionTimestamp&quot;:null,&quot;suggestionDiscussionId&quot;:null,&quot;suggestionOriginalAttrs&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;The following guidance is intended for reviewers to use in both assessing and drafting their review. Please be cognizant that comments will be included in the publication of the submission. If upon assignment you recognize that you are not suited to perform the review (i.e. schedule conflicts, not an area of expertise, etc.), please send an email to the TPC as soon as possible so that another reviewer may be assigned.&quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;x3lj85fcgz&quot;,&quot;rtl&quot;:null,&quot;class&quot;:null,&quot;textAlign&quot;:null,&quot;suggestionId&quot;:null,&quot;suggestionKind&quot;:null,&quot;suggestionUserId&quot;:null,&quot;suggestionTimestamp&quot;:null,&quot;suggestionDiscussionId&quot;:null,&quot;suggestionOriginalAttrs&quot;:null}},{&quot;type&quot;:&quot;heading&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;categories-of-review&quot;,&quot;rtl&quot;:null,&quot;level&quot;:4,&quot;fixedId&quot;:&quot;&quot;,&quot;textAlign&quot;:null,&quot;suggestionId&quot;:null,&quot;suggestionKind&quot;:null,&quot;suggestionUserId&quot;:null,&quot;suggestionTimestamp&quot;:null,&quot;suggestionDiscussionId&quot;:null,&quot;suggestionOriginalAttrs&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;Categories of Review&quot;,&quot;type&quot;:&quot;text&quot;,&quot;marks&quot;:[{&quot;type&quot;:&quot;strong&quot;}]}]},{&quot;type&quot;:&quot;table&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;4ru0p1lqtj&quot;,&quot;size&quot;:null,&quot;align&quot;:null,&quot;hideLabel&quot;:false,&quot;smallerFont&quot;:false,&quot;suggestionId&quot;:null,&quot;suggestionKind&quot;:null,&quot;suggestionUserId&quot;:null,&quot;suggestionTimestamp&quot;:null,&quot;suggestionDiscussionId&quot;:null,&quot;suggestionOriginalAttrs&quot;:null},&quot;content&quot;:[{&quot;type&quot;:&quot;table_row&quot;,&quot;attrs&quot;:{&quot;suggestionId&quot;:null,&quot;suggestionKind&quot;:null,&quot;suggestionUserId&quot;:null,&quot;suggestionTimestamp&quot;:null,&quot;suggestionDiscussionId&quot;:null,&quot;suggestionOriginalAttrs&quot;:null},&quot;content&quot;:[{&quot;type&quot;:&quot;table_cell&quot;,&quot;attrs&quot;:{&quot;colspan&quot;:1,&quot;rowspan&quot;:1,&quot;colwidth&quot;:[183],&quot;background&quot;:null,&quot;suggestionId&quot;:null,&quot;suggestionKind&quot;:null,&quot;suggestionUserId&quot;:null,&quot;suggestionTimestamp&quot;:null,&quot;suggestionDiscussionId&quot;:null,&quot;suggestionOriginalAttrs&quot;:null},&quot;content&quot;:[{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;h48sq7n1wm&quot;,&quot;rtl&quot;:null,&quot;class&quot;:null,&quot;textAlign&quot;:null,&quot;suggestionId&quot;:null,&quot;suggestionKind&quot;:null,&quot;suggestionUserId&quot;:null,&quot;suggestionTimestamp&quot;:null,&quot;suggestionDiscussionId&quot;:null,&quot;suggestionOriginalAttrs&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;Methodology Review&quot;,&quot;type&quot;:&quot;text&quot;,&quot;marks&quot;:[{&quot;type&quot;:&quot;em&quot;}]}]}]},{&quot;type&quot;:&quot;table_cell&quot;,&quot;attrs&quot;:{&quot;colspan&quot;:1,&quot;rowspan&quot;:1,&quot;colwidth&quot;:[369],&quot;background&quot;:null,&quot;suggestionId&quot;:null,&quot;suggestionKind&quot;:null,&quot;suggestionUserId&quot;:null,&quot;suggestionTimestamp&quot;:null,&quot;suggestionDiscussionId&quot;:null,&quot;suggestionOriginalAttrs&quot;:null},&quot;content&quot;:[{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;ipmaixvsto&quot;,&quot;rtl&quot;:null,&quot;class&quot;:null,&quot;textAlign&quot;:null,&quot;suggestionId&quot;:null,&quot;suggestionKind&quot;:null,&quot;suggestionUserId&quot;:null,&quot;suggestionTimestamp&quot;:null,&quot;suggestionDiscussionId&quot;:null,&quot;suggestionOriginalAttrs&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;This review is a read through and verification that the concepts and methods expressed in the submission are sound. This is the lowest level review. This method should only be used when it is the only available method to the reviewer or the content is not suitable for a higher level review.&quot;,&quot;type&quot;:&quot;text&quot;}]}]},{&quot;type&quot;:&quot;table_cell&quot;,&quot;attrs&quot;:{&quot;colspan&quot;:1,&quot;rowspan&quot;:1,&quot;colwidth&quot;:null,&quot;background&quot;:null,&quot;suggestionId&quot;:null,&quot;suggestionKind&quot;:null,&quot;suggestionUserId&quot;:null,&quot;suggestionTimestamp&quot;:null,&quot;suggestionDiscussionId&quot;:null,&quot;suggestionOriginalAttrs&quot;:null},&quot;content&quot;:[{&quot;type&quot;:&quot;image&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;qcaisrdf1j&quot;,&quot;url&quot;:&quot;https://assets.pubpub.org/0osmcztc/31554327656996.png&quot;,&quot;href&quot;:null,&quot;size&quot;:49,&quot;align&quot;:&quot;center&quot;,&quot;altText&quot;:&quot;&quot;,&quot;caption&quot;:&quot;&quot;,&quot;hideLabel&quot;:false,&quot;suggestionId&quot;:null,&quot;fullResolution&quot;:false,&quot;suggestionKind&quot;:null,&quot;suggestionUserId&quot;:null,&quot;suggestionTimestamp&quot;:null,&quot;suggestionDiscussionId&quot;:null,&quot;suggestionOriginalAttrs&quot;:null}}]}]},{&quot;type&quot;:&quot;table_row&quot;,&quot;attrs&quot;:{&quot;suggestionId&quot;:null,&quot;suggestionKind&quot;:null,&quot;suggestionUserId&quot;:null,&quot;suggestionTimestamp&quot;:null,&quot;suggestionDiscussionId&quot;:null,&quot;suggestionOriginalAttrs&quot;:null},&quot;content&quot;:[{&quot;type&quot;:&quot;table_cell&quot;,&quot;attrs&quot;:{&quot;colspan&quot;:1,&quot;rowspan&quot;:1,&quot;colwidth&quot;:[183],&quot;background&quot;:null,&quot;suggestionId&quot;:null,&quot;suggestionKind&quot;:null,&quot;suggestionUserId&quot;:null,&quot;suggestionTimestamp&quot;:null,&quot;suggestionDiscussionId&quot;:null,&quot;suggestionOriginalAttrs&quot;:null},&quot;content&quot;:[{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;w1yn0ety3k&quot;,&quot;rtl&quot;:null,&quot;class&quot;:null,&quot;textAlign&quot;:null,&quot;suggestionId&quot;:null,&quot;suggestionKind&quot;:null,&quot;suggestionUserId&quot;:null,&quot;suggestionTimestamp&quot;:null,&quot;suggestionDiscussionId&quot;:null,&quot;suggestionOriginalAttrs&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;Verified Review using Author Provided Datasets&quot;,&quot;type&quot;:&quot;text&quot;,&quot;marks&quot;:[{&quot;type&quot;:&quot;em&quot;}]}]}]},{&quot;type&quot;:&quot;table_cell&quot;,&quot;attrs&quot;:{&quot;colspan&quot;:1,&quot;rowspan&quot;:1,&quot;colwidth&quot;:[369],&quot;background&quot;:null,&quot;suggestionId&quot;:null,&quot;suggestionKind&quot;:null,&quot;suggestionUserId&quot;:null,&quot;suggestionTimestamp&quot;:null,&quot;suggestionDiscussionId&quot;:null,&quot;suggestionOriginalAttrs&quot;:null},&quot;content&quot;:[{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;wh4ugfxa51&quot;,&quot;rtl&quot;:null,&quot;class&quot;:null,&quot;textAlign&quot;:null,&quot;suggestionId&quot;:null,&quot;suggestionKind&quot;:null,&quot;suggestionUserId&quot;:null,&quot;suggestionTimestamp&quot;:null,&quot;suggestionDiscussionId&quot;:null,&quot;suggestionOriginalAttrs&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;This review requires verifying the technical details of the submission with a set of data provided by the author. It is expected that this review category is the minimum requirement when data is provided by the author.&quot;,&quot;type&quot;:&quot;text&quot;}]}]},{&quot;type&quot;:&quot;table_cell&quot;,&quot;attrs&quot;:{&quot;colspan&quot;:1,&quot;rowspan&quot;:1,&quot;colwidth&quot;:null,&quot;background&quot;:null,&quot;suggestionId&quot;:null,&quot;suggestionKind&quot;:null,&quot;suggestionUserId&quot;:null,&quot;suggestionTimestamp&quot;:null,&quot;suggestionDiscussionId&quot;:null,&quot;suggestionOriginalAttrs&quot;:null},&quot;content&quot;:[{&quot;type&quot;:&quot;image&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;6h80l2c4aj&quot;,&quot;url&quot;:&quot;https://assets.pubpub.org/n6fvj3o0/71554327672214.png&quot;,&quot;href&quot;:null,&quot;size&quot;:49,&quot;align&quot;:&quot;center&quot;,&quot;altText&quot;:&quot;&quot;,&quot;caption&quot;:&quot;&quot;,&quot;hideLabel&quot;:false,&quot;suggestionId&quot;:null,&quot;fullResolution&quot;:false,&quot;suggestionKind&quot;:null,&quot;suggestionUserId&quot;:null,&quot;suggestionTimestamp&quot;:null,&quot;suggestionDiscussionId&quot;:null,&quot;suggestionOriginalAttrs&quot;:null}}]}]},{&quot;type&quot;:&quot;table_row&quot;,&quot;attrs&quot;:{&quot;suggestionId&quot;:null,&quot;suggestionKind&quot;:null,&quot;suggestionUserId&quot;:null,&quot;suggestionTimestamp&quot;:null,&quot;suggestionDiscussionId&quot;:null,&quot;suggestionOriginalAttrs&quot;:null},&quot;content&quot;:[{&quot;type&quot;:&quot;table_cell&quot;,&quot;attrs&quot;:{&quot;colspan&quot;:1,&quot;rowspan&quot;:1,&quot;colwidth&quot;:[183],&quot;background&quot;:null,&quot;suggestionId&quot;:null,&quot;suggestionKind&quot;:null,&quot;suggestionUserId&quot;:null,&quot;suggestionTimestamp&quot;:null,&quot;suggestionDiscussionId&quot;:null,&quot;suggestionOriginalAttrs&quot;:null},&quot;content&quot;:[{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;3hzixhujhp&quot;,&quot;rtl&quot;:null,&quot;class&quot;:null,&quot;textAlign&quot;:null,&quot;suggestionId&quot;:null,&quot;suggestionKind&quot;:null,&quot;suggestionUserId&quot;:null,&quot;suggestionTimestamp&quot;:null,&quot;suggestionDiscussionId&quot;:null,&quot;suggestionOriginalAttrs&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;Validated Review using Reviewer Generated Datasets&quot;,&quot;type&quot;:&quot;text&quot;,&quot;marks&quot;:[{&quot;type&quot;:&quot;em&quot;}]}]}]},{&quot;type&quot;:&quot;table_cell&quot;,&quot;attrs&quot;:{&quot;colspan&quot;:1,&quot;rowspan&quot;:1,&quot;colwidth&quot;:[369],&quot;background&quot;:null,&quot;suggestionId&quot;:null,&quot;suggestionKind&quot;:null,&quot;suggestionUserId&quot;:null,&quot;suggestionTimestamp&quot;:null,&quot;suggestionDiscussionId&quot;:null,&quot;suggestionOriginalAttrs&quot;:null},&quot;content&quot;:[{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;32ay6jab2m&quot;,&quot;rtl&quot;:null,&quot;class&quot;:null,&quot;textAlign&quot;:null,&quot;suggestionId&quot;:null,&quot;suggestionKind&quot;:null,&quot;suggestionUserId&quot;:null,&quot;suggestionTimestamp&quot;:null,&quot;suggestionDiscussionId&quot;:null,&quot;suggestionOriginalAttrs&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;This is the “gold standard” for DFIR Review. When possible, this is the preferred method of review. When conducting this type of review, please ensure you include the OS/app/HW versions you are validating with in your review. It is completely acceptable to extend beyond the initial review with your learnings.&quot;,&quot;type&quot;:&quot;text&quot;}]}]},{&quot;type&quot;:&quot;table_cell&quot;,&quot;attrs&quot;:{&quot;colspan&quot;:1,&quot;rowspan&quot;:1,&quot;colwidth&quot;:null,&quot;background&quot;:null,&quot;suggestionId&quot;:null,&quot;suggestionKind&quot;:null,&quot;suggestionUserId&quot;:null,&quot;suggestionTimestamp&quot;:null,&quot;suggestionDiscussionId&quot;:null,&quot;suggestionOriginalAttrs&quot;:null},&quot;content&quot;:[{&quot;type&quot;:&quot;image&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;phzkvuu9h9&quot;,&quot;url&quot;:&quot;https://assets.pubpub.org/3q7iw5tx/21554327684657.png&quot;,&quot;href&quot;:null,&quot;size&quot;:49,&quot;align&quot;:&quot;center&quot;,&quot;altText&quot;:&quot;&quot;,&quot;caption&quot;:&quot;&quot;,&quot;hideLabel&quot;:false,&quot;suggestionId&quot;:null,&quot;fullResolution&quot;:false,&quot;suggestionKind&quot;:null,&quot;suggestionUserId&quot;:null,&quot;suggestionTimestamp&quot;:null,&quot;suggestionDiscussionId&quot;:null,&quot;suggestionOriginalAttrs&quot;:null}}]}]}]},{&quot;type&quot;:&quot;heading&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;reviewer-confidence&quot;,&quot;rtl&quot;:null,&quot;level&quot;:4,&quot;fixedId&quot;:&quot;&quot;,&quot;textAlign&quot;:null,&quot;suggestionId&quot;:null,&quot;suggestionKind&quot;:null,&quot;suggestionUserId&quot;:null,&quot;suggestionTimestamp&quot;:null,&quot;suggestionDiscussionId&quot;:null,&quot;suggestionOriginalAttrs&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;Reviewer Confidence&quot;,&quot;type&quot;:&quot;text&quot;,&quot;marks&quot;:[{&quot;type&quot;:&quot;strong&quot;}]}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;nf351r1fcb&quot;,&quot;rtl&quot;:null,&quot;class&quot;:null,&quot;textAlign&quot;:null,&quot;suggestionId&quot;:null,&quot;suggestionKind&quot;:null,&quot;suggestionUserId&quot;:null,&quot;suggestionTimestamp&quot;:null,&quot;suggestionDiscussionId&quot;:null,&quot;suggestionOriginalAttrs&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;This is where the reviewer states their confidence with the material under review and their ability to provide a review. If you feel that you are a 1 or a 2, it is suggested that you email the Technical Program Committee and inform them that you are not comfortable performing the review so someone with more experience in that area of forensics can be assigned the review.&quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;sldjxeoggf&quot;,&quot;rtl&quot;:null,&quot;class&quot;:null,&quot;textAlign&quot;:null,&quot;suggestionId&quot;:null,&quot;suggestionKind&quot;:null,&quot;suggestionUserId&quot;:null,&quot;suggestionTimestamp&quot;:null,&quot;suggestionDiscussionId&quot;:null,&quot;suggestionOriginalAttrs&quot;:null}},{&quot;type&quot;:&quot;heading&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;review-guidelines&quot;,&quot;rtl&quot;:null,&quot;level&quot;:4,&quot;fixedId&quot;:&quot;&quot;,&quot;textAlign&quot;:null,&quot;suggestionId&quot;:null,&quot;suggestionKind&quot;:null,&quot;suggestionUserId&quot;:null,&quot;suggestionTimestamp&quot;:null,&quot;suggestionDiscussionId&quot;:null,&quot;suggestionOriginalAttrs&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;Review Guidelines&quot;,&quot;type&quot;:&quot;text&quot;,&quot;marks&quot;:[{&quot;type&quot;:&quot;strong&quot;}]}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;w6q8pl05jo&quot;,&quot;rtl&quot;:null,&quot;class&quot;:null,&quot;textAlign&quot;:null,&quot;suggestionId&quot;:null,&quot;suggestionKind&quot;:null,&quot;suggestionUserId&quot;:null,&quot;suggestionTimestamp&quot;:null,&quot;suggestionDiscussionId&quot;:null,&quot;suggestionOriginalAttrs&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;Reviews will be published along with the accepted article in addition to the name of the reviewer and the category or review performed.&quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;bullet_list&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;gcirgi18cz&quot;,&quot;rtl&quot;:null,&quot;suggestionId&quot;:null,&quot;suggestionKind&quot;:null,&quot;suggestionUserId&quot;:null,&quot;suggestionTimestamp&quot;:null,&quot;suggestionDiscussionId&quot;:null,&quot;suggestionOriginalAttrs&quot;:null},&quot;content&quot;:[{&quot;type&quot;:&quot;list_item&quot;,&quot;attrs&quot;:{&quot;suggestionId&quot;:null,&quot;suggestionKind&quot;:null,&quot;suggestionUserId&quot;:null,&quot;suggestionTimestamp&quot;:null,&quot;suggestionDiscussionId&quot;:null,&quot;suggestionOriginalAttrs&quot;:null},&quot;content&quot;:[{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;7bgjwn9p5u&quot;,&quot;rtl&quot;:null,&quot;class&quot;:null,&quot;textAlign&quot;:null,&quot;suggestionId&quot;:null,&quot;suggestionKind&quot;:null,&quot;suggestionUserId&quot;:null,&quot;suggestionTimestamp&quot;:null,&quot;suggestionDiscussionId&quot;:null,&quot;suggestionOriginalAttrs&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;Reviews should be comprehensive and should highlight the reviewer&#x27;s knowledge of the subject matter in the article.&quot;,&quot;type&quot;:&quot;text&quot;}]}]},{&quot;type&quot;:&quot;list_item&quot;,&quot;attrs&quot;:{&quot;suggestionId&quot;:null,&quot;suggestionKind&quot;:null,&quot;suggestionUserId&quot;:null,&quot;suggestionTimestamp&quot;:null,&quot;suggestionDiscussionId&quot;:null,&quot;suggestionOriginalAttrs&quot;:null},&quot;content&quot;:[{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;zv1bwwy5vu&quot;,&quot;rtl&quot;:null,&quot;class&quot;:null,&quot;textAlign&quot;:null,&quot;suggestionId&quot;:null,&quot;suggestionKind&quot;:null,&quot;suggestionUserId&quot;:null,&quot;suggestionTimestamp&quot;:null,&quot;suggestionDiscussionId&quot;:null,&quot;suggestionOriginalAttrs&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;Reviews should provide practitioners, lawyers, and judges with assurance that the article is reliable and complete.&quot;,&quot;type&quot;:&quot;text&quot;}]}]},{&quot;type&quot;:&quot;list_item&quot;,&quot;attrs&quot;:{&quot;suggestionId&quot;:null,&quot;suggestionKind&quot;:null,&quot;suggestionUserId&quot;:null,&quot;suggestionTimestamp&quot;:null,&quot;suggestionDiscussionId&quot;:null,&quot;suggestionOriginalAttrs&quot;:null},&quot;content&quot;:[{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;89jgh2k4o2&quot;,&quot;rtl&quot;:null,&quot;class&quot;:null,&quot;textAlign&quot;:null,&quot;suggestionId&quot;:null,&quot;suggestionKind&quot;:null,&quot;suggestionUserId&quot;:null,&quot;suggestionTimestamp&quot;:null,&quot;suggestionDiscussionId&quot;:null,&quot;suggestionOriginalAttrs&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;Reviews can state how the article can be useful in a digital investigation, and any associated limitations or risks.&quot;,&quot;type&quot;:&quot;text&quot;}]}]},{&quot;type&quot;:&quot;list_item&quot;,&quot;attrs&quot;:{&quot;suggestionId&quot;:null,&quot;suggestionKind&quot;:null,&quot;suggestionUserId&quot;:null,&quot;suggestionTimestamp&quot;:null,&quot;suggestionDiscussionId&quot;:null,&quot;suggestionOriginalAttrs&quot;:null},&quot;content&quot;:[{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;eghi9j8xnu&quot;,&quot;rtl&quot;:null,&quot;class&quot;:null,&quot;textAlign&quot;:null,&quot;suggestionId&quot;:null,&quot;suggestionKind&quot;:null,&quot;suggestionUserId&quot;:null,&quot;suggestionTimestamp&quot;:null,&quot;suggestionDiscussionId&quot;:null,&quot;suggestionOriginalAttrs&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;Reviews should state if an article is trivial or not useful for addressing questions in a digital investigation.&quot;,&quot;type&quot;:&quot;text&quot;}]}]},{&quot;type&quot;:&quot;list_item&quot;,&quot;attrs&quot;:{&quot;suggestionId&quot;:null,&quot;suggestionKind&quot;:null,&quot;suggestionUserId&quot;:null,&quot;suggestionTimestamp&quot;:null,&quot;suggestionDiscussionId&quot;:null,&quot;suggestionOriginalAttrs&quot;:null},&quot;content&quot;:[{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;t5p53ll9u1&quot;,&quot;rtl&quot;:null,&quot;class&quot;:null,&quot;textAlign&quot;:null,&quot;suggestionId&quot;:null,&quot;suggestionKind&quot;:null,&quot;suggestionUserId&quot;:null,&quot;suggestionTimestamp&quot;:null,&quot;suggestionDiscussionId&quot;:null,&quot;suggestionOriginalAttrs&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;Reviews should state if the article misses important details.&quot;,&quot;type&quot;:&quot;text&quot;}]}]},{&quot;type&quot;:&quot;list_item&quot;,&quot;attrs&quot;:{&quot;suggestionId&quot;:null,&quot;suggestionKind&quot;:null,&quot;suggestionUserId&quot;:null,&quot;suggestionTimestamp&quot;:null,&quot;suggestionDiscussionId&quot;:null,&quot;suggestionOriginalAttrs&quot;:null},&quot;content&quot;:[{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;5ekmydmqjo&quot;,&quot;rtl&quot;:null,&quot;class&quot;:null,&quot;textAlign&quot;:null,&quot;suggestionId&quot;:null,&quot;suggestionKind&quot;:null,&quot;suggestionUserId&quot;:null,&quot;suggestionTimestamp&quot;:null,&quot;suggestionDiscussionId&quot;:null,&quot;suggestionOriginalAttrs&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;Reviews should explain the basis of the review (testing performed, prior knowledge from a case, etc.) including details regarding verification/validation via use of the author provided data sets or creation of data sets by the reviewer. When validating with reviewer generated data, please provide details as to OS, app, hardware used for the testing as applicable.&quot;,&quot;type&quot;:&quot;text&quot;}]}]},{&quot;type&quot;:&quot;list_item&quot;,&quot;attrs&quot;:{&quot;suggestionId&quot;:null,&quot;suggestionKind&quot;:null,&quot;suggestionUserId&quot;:null,&quot;suggestionTimestamp&quot;:null,&quot;suggestionDiscussionId&quot;:null,&quot;suggestionOriginalAttrs&quot;:null},&quot;content&quot;:[{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;z6ky625z73&quot;,&quot;rtl&quot;:null,&quot;class&quot;:null,&quot;textAlign&quot;:null,&quot;suggestionId&quot;:null,&quot;suggestionKind&quot;:null,&quot;suggestionUserId&quot;:null,&quot;suggestionTimestamp&quot;:null,&quot;suggestionDiscussionId&quot;:null,&quot;suggestionOriginalAttrs&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;Reviews should highlight related questions that could be explored in future research.&quot;,&quot;type&quot;:&quot;text&quot;}]}]},{&quot;type&quot;:&quot;list_item&quot;,&quot;attrs&quot;:{&quot;suggestionId&quot;:null,&quot;suggestionKind&quot;:null,&quot;suggestionUserId&quot;:null,&quot;suggestionTimestamp&quot;:null,&quot;suggestionDiscussionId&quot;:null,&quot;suggestionOriginalAttrs&quot;:null},&quot;content&quot;:[{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;7lh03rosl2&quot;,&quot;rtl&quot;:null,&quot;class&quot;:null,&quot;textAlign&quot;:null,&quot;suggestionId&quot;:null,&quot;suggestionKind&quot;:null,&quot;suggestionUserId&quot;:null,&quot;suggestionTimestamp&quot;:null,&quot;suggestionDiscussionId&quot;:null,&quot;suggestionOriginalAttrs&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;Reviews should describe technical details of any testing performed, such as:&quot;,&quot;type&quot;:&quot;text&quot;}]}]}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;swk3tzi33s&quot;,&quot;rtl&quot;:null,&quot;class&quot;:null,&quot;textAlign&quot;:null,&quot;suggestionId&quot;:null,&quot;suggestionKind&quot;:null,&quot;suggestionUserId&quot;:null,&quot;suggestionTimestamp&quot;:null,&quot;suggestionDiscussionId&quot;:null,&quot;suggestionOriginalAttrs&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;\&quot;&quot;,&quot;type&quot;:&quot;text&quot;},{&quot;text&quot;:&quot;Using Autopsy version 4.10, I confirmed that the digital trace described in this article was present on Windows 10. In addition, I confirmed that the trace was compatible with the activity/interpretation presented in this article.&quot;,&quot;type&quot;:&quot;text&quot;,&quot;marks&quot;:[{&quot;type&quot;:&quot;em&quot;}]},{&quot;text&quot;:&quot;\&quot;&quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;udcf2whdll&quot;,&quot;rtl&quot;:null,&quot;class&quot;:null,&quot;textAlign&quot;:null,&quot;suggestionId&quot;:null,&quot;suggestionKind&quot;:null,&quot;suggestionUserId&quot;:null,&quot;suggestionTimestamp&quot;:null,&quot;suggestionDiscussionId&quot;:null,&quot;suggestionOriginalAttrs&quot;:null}},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;iqbm1mbg29&quot;,&quot;rtl&quot;:null,&quot;class&quot;:null,&quot;textAlign&quot;:null,&quot;suggestionId&quot;:null,&quot;suggestionKind&quot;:null,&quot;suggestionUserId&quot;:null,&quot;suggestionTimestamp&quot;:null,&quot;suggestionDiscussionId&quot;:null,&quot;suggestionOriginalAttrs&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;If we cannot repeat the steps that are presented in the article, we should state this, such as:&quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;4dh6aj6gdw&quot;,&quot;rtl&quot;:null,&quot;class&quot;:null,&quot;textAlign&quot;:null,&quot;suggestionId&quot;:null,&quot;suggestionKind&quot;:null,&quot;suggestionUserId&quot;:null,&quot;suggestionTimestamp&quot;:null,&quot;suggestionDiscussionId&quot;:null,&quot;suggestionOriginalAttrs&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;\&quot;&quot;,&quot;type&quot;:&quot;text&quot;},{&quot;text&quot;:&quot;After performing the specified action in the article on a Windows 10 system, I examined the XYZ.dat file using a hex viewer but did not find the digital traces described in this article. However, I did not observe the digital traces described in this article. The traces I observed showed that the specified action occurred, but did not include additional details presented in the article (consider providing a screenshot of observed trace).&quot;,&quot;type&quot;:&quot;text&quot;,&quot;marks&quot;:[{&quot;type&quot;:&quot;em&quot;}]},{&quot;text&quot;:&quot;\&quot;&quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;1kc9evklwj&quot;,&quot;rtl&quot;:null,&quot;class&quot;:null,&quot;textAlign&quot;:null,&quot;suggestionId&quot;:null,&quot;suggestionKind&quot;:null,&quot;suggestionUserId&quot;:null,&quot;suggestionTimestamp&quot;:null,&quot;suggestionDiscussionId&quot;:null,&quot;suggestionOriginalAttrs&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;OR&quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;psxmh1n0vy&quot;,&quot;rtl&quot;:null,&quot;class&quot;:null,&quot;textAlign&quot;:null,&quot;suggestionId&quot;:null,&quot;suggestionKind&quot;:null,&quot;suggestionUserId&quot;:null,&quot;suggestionTimestamp&quot;:null,&quot;suggestionDiscussionId&quot;:null,&quot;suggestionOriginalAttrs&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;\&quot;&quot;,&quot;type&quot;:&quot;text&quot;},{&quot;text&quot;:&quot;Although it was not possible to perform testing on the same type of system (vehicle), I tested the XYZ application independently on an Android ABC device and obtained results that were compatible with those presented in this article&quot;,&quot;type&quot;:&quot;text&quot;,&quot;marks&quot;:[{&quot;type&quot;:&quot;em&quot;}]},{&quot;text&quot;:&quot;\&quot;&quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;bullet_list&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;m8ullauqum&quot;,&quot;rtl&quot;:null,&quot;suggestionId&quot;:null,&quot;suggestionKind&quot;:null,&quot;suggestionUserId&quot;:null,&quot;suggestionTimestamp&quot;:null,&quot;suggestionDiscussionId&quot;:null,&quot;suggestionOriginalAttrs&quot;:null},&quot;content&quot;:[{&quot;type&quot;:&quot;list_item&quot;,&quot;attrs&quot;:{&quot;suggestionId&quot;:null,&quot;suggestionKind&quot;:null,&quot;suggestionUserId&quot;:null,&quot;suggestionTimestamp&quot;:null,&quot;suggestionDiscussionId&quot;:null,&quot;suggestionOriginalAttrs&quot;:null},&quot;content&quot;:[{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;ce971rvguk&quot;,&quot;rtl&quot;:null,&quot;class&quot;:null,&quot;textAlign&quot;:null,&quot;suggestionId&quot;:null,&quot;suggestionKind&quot;:null,&quot;suggestionUserId&quot;:null,&quot;suggestionTimestamp&quot;:null,&quot;suggestionDiscussionId&quot;:null,&quot;suggestionOriginalAttrs&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;Reviews should highlight related questions that could be explored in future research.&quot;,&quot;type&quot;:&quot;text&quot;}]}]}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;s0guqkqk5o&quot;,&quot;rtl&quot;:null,&quot;class&quot;:null,&quot;textAlign&quot;:null,&quot;suggestionId&quot;:null,&quot;suggestionKind&quot;:null,&quot;suggestionUserId&quot;:null,&quot;suggestionTimestamp&quot;:null,&quot;suggestionDiscussionId&quot;:null,&quot;suggestionOriginalAttrs&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;An explanation video covering reviewer guidance and process is available here: &quot;,&quot;type&quot;:&quot;text&quot;},{&quot;text&quot;:&quot;https://bit.ly/DFIRReviewGuidance&quot;,&quot;type&quot;:&quot;text&quot;,&quot;marks&quot;:[{&quot;type&quot;:&quot;link&quot;,&quot;attrs&quot;:{&quot;href&quot;:&quot;https://bit.ly/DFIRReviewGuidance&quot;,&quot;title&quot;:null,&quot;target&quot;:null,&quot;pubEdgeId&quot;:null}}]}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;fjuk3m4tav&quot;,&quot;rtl&quot;:null,&quot;class&quot;:null,&quot;textAlign&quot;:null,&quot;suggestionId&quot;:null,&quot;suggestionKind&quot;:null,&quot;suggestionUserId&quot;:null,&quot;suggestionTimestamp&quot;:null,&quot;suggestionDiscussionId&quot;:null,&quot;suggestionOriginalAttrs&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;Review Rubric&quot;,&quot;type&quot;:&quot;text&quot;,&quot;marks&quot;:[{&quot;type&quot;:&quot;strong&quot;}]}]},{&quot;type&quot;:&quot;table&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;qnvm4c1qr7&quot;,&quot;size&quot;:null,&quot;align&quot;:null,&quot;hideLabel&quot;:false,&quot;smallerFont&quot;:false,&quot;suggestionId&quot;:null,&quot;suggestionKind&quot;:null,&quot;suggestionUserId&quot;:null,&quot;suggestionTimestamp&quot;:null,&quot;suggestionDiscussionId&quot;:null,&quot;suggestionOriginalAttrs&quot;:null},&quot;content&quot;:[{&quot;type&quot;:&quot;table_row&quot;,&quot;attrs&quot;:{&quot;suggestionId&quot;:null,&quot;suggestionKind&quot;:null,&quot;suggestionUserId&quot;:null,&quot;suggestionTimestamp&quot;:null,&quot;suggestionDiscussionId&quot;:null,&quot;suggestionOriginalAttrs&quot;:null},&quot;content&quot;:[{&quot;type&quot;:&quot;table_cell&quot;,&quot;attrs&quot;:{&quot;colspan&quot;:1,&quot;rowspan&quot;:1,&quot;colwidth&quot;:[127],&quot;background&quot;:null,&quot;suggestionId&quot;:null,&quot;suggestionKind&quot;:null,&quot;suggestionUserId&quot;:null,&quot;suggestionTimestamp&quot;:null,&quot;suggestionDiscussionId&quot;:null,&quot;suggestionOriginalAttrs&quot;:null},&quot;content&quot;:[{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;cbj5z74dxf&quot;,&quot;rtl&quot;:null,&quot;class&quot;:null,&quot;textAlign&quot;:null,&quot;suggestionId&quot;:null,&quot;suggestionKind&quot;:null,&quot;suggestionUserId&quot;:null,&quot;suggestionTimestamp&quot;:null,&quot;suggestionDiscussionId&quot;:null,&quot;suggestionOriginalAttrs&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;Criteria&quot;,&quot;type&quot;:&quot;text&quot;,&quot;marks&quot;:[{&quot;type&quot;:&quot;em&quot;},{&quot;type&quot;:&quot;strong&quot;}]}]}]},{&quot;type&quot;:&quot;table_cell&quot;,&quot;attrs&quot;:{&quot;colspan&quot;:1,&quot;rowspan&quot;:1,&quot;colwidth&quot;:null,&quot;background&quot;:null,&quot;suggestionId&quot;:null,&quot;suggestionKind&quot;:null,&quot;suggestionUserId&quot;:null,&quot;suggestionTimestamp&quot;:null,&quot;suggestionDiscussionId&quot;:null,&quot;suggestionOriginalAttrs&quot;:null},&quot;content&quot;:[{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;cs0j5hsmz9&quot;,&quot;rtl&quot;:null,&quot;class&quot;:null,&quot;textAlign&quot;:null,&quot;suggestionId&quot;:null,&quot;suggestionKind&quot;:null,&quot;suggestionUserId&quot;:null,&quot;suggestionTimestamp&quot;:null,&quot;suggestionDiscussionId&quot;:null,&quot;suggestionOriginalAttrs&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;Reject&quot;,&quot;type&quot;:&quot;text&quot;,&quot;marks&quot;:[{&quot;type&quot;:&quot;em&quot;},{&quot;type&quot;:&quot;strong&quot;}]}]}]},{&quot;type&quot;:&quot;table_cell&quot;,&quot;attrs&quot;:{&quot;colspan&quot;:1,&quot;rowspan&quot;:1,&quot;colwidth&quot;:null,&quot;background&quot;:null,&quot;suggestionId&quot;:null,&quot;suggestionKind&quot;:null,&quot;suggestionUserId&quot;:null,&quot;suggestionTimestamp&quot;:null,&quot;suggestionDiscussionId&quot;:null,&quot;suggestionOriginalAttrs&quot;:null},&quot;content&quot;:[{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;nw5poar7ge&quot;,&quot;rtl&quot;:null,&quot;class&quot;:null,&quot;textAlign&quot;:null,&quot;suggestionId&quot;:null,&quot;suggestionKind&quot;:null,&quot;suggestionUserId&quot;:null,&quot;suggestionTimestamp&quot;:null,&quot;suggestionDiscussionId&quot;:null,&quot;suggestionOriginalAttrs&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;Revise&quot;,&quot;type&quot;:&quot;text&quot;,&quot;marks&quot;:[{&quot;type&quot;:&quot;em&quot;},{&quot;type&quot;:&quot;strong&quot;}]}]}]},{&quot;type&quot;:&quot;table_cell&quot;,&quot;attrs&quot;:{&quot;colspan&quot;:1,&quot;rowspan&quot;:1,&quot;colwidth&quot;:null,&quot;background&quot;:null,&quot;suggestionId&quot;:null,&quot;suggestionKind&quot;:null,&quot;suggestionUserId&quot;:null,&quot;suggestionTimestamp&quot;:null,&quot;suggestionDiscussionId&quot;:null,&quot;suggestionOriginalAttrs&quot;:null},&quot;content&quot;:[{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;qx7lgaafyc&quot;,&quot;rtl&quot;:null,&quot;class&quot;:null,&quot;textAlign&quot;:null,&quot;suggestionId&quot;:null,&quot;suggestionKind&quot;:null,&quot;suggestionUserId&quot;:null,&quot;suggestionTimestamp&quot;:null,&quot;suggestionDiscussionId&quot;:null,&quot;suggestionOriginalAttrs&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;Accept&quot;,&quot;type&quot;:&quot;text&quot;,&quot;marks&quot;:[{&quot;type&quot;:&quot;em&quot;},{&quot;type&quot;:&quot;strong&quot;}]}]}]}]},{&quot;type&quot;:&quot;table_row&quot;,&quot;attrs&quot;:{&quot;suggestionId&quot;:null,&quot;suggestionKind&quot;:null,&quot;suggestionUserId&quot;:null,&quot;suggestionTimestamp&quot;:null,&quot;suggestionDiscussionId&quot;:null,&quot;suggestionOriginalAttrs&quot;:null},&quot;content&quot;:[{&quot;type&quot;:&quot;table_cell&quot;,&quot;attrs&quot;:{&quot;colspan&quot;:1,&quot;rowspan&quot;:1,&quot;colwidth&quot;:[127],&quot;background&quot;:null,&quot;suggestionId&quot;:null,&quot;suggestionKind&quot;:null,&quot;suggestionUserId&quot;:null,&quot;suggestionTimestamp&quot;:null,&quot;suggestionDiscussionId&quot;:null,&quot;suggestionOriginalAttrs&quot;:null},&quot;content&quot;:[{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;wluzvqh811&quot;,&quot;rtl&quot;:null,&quot;class&quot;:null,&quot;textAlign&quot;:null,&quot;suggestionId&quot;:null,&quot;suggestionKind&quot;:null,&quot;suggestionUserId&quot;:null,&quot;suggestionTimestamp&quot;:null,&quot;suggestionDiscussionId&quot;:null,&quot;suggestionOriginalAttrs&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;Content and Organization &quot;,&quot;type&quot;:&quot;text&quot;,&quot;marks&quot;:[{&quot;type&quot;:&quot;strong&quot;}]},{&quot;type&quot;:&quot;hard_break&quot;,&quot;attrs&quot;:{&quot;suggestionId&quot;:null,&quot;suggestionKind&quot;:null,&quot;suggestionUserId&quot;:null,&quot;suggestionTimestamp&quot;:null,&quot;suggestionDiscussionId&quot;:null,&quot;suggestionOriginalAttrs&quot;:null},&quot;marks&quot;:[{&quot;type&quot;:&quot;strong&quot;}]},{&quot;text&quot;:&quot;(Weight 60%)&quot;,&quot;type&quot;:&quot;text&quot;}]}]},{&quot;type&quot;:&quot;table_cell&quot;,&quot;attrs&quot;:{&quot;colspan&quot;:1,&quot;rowspan&quot;:1,&quot;colwidth&quot;:null,&quot;background&quot;:null,&quot;suggestionId&quot;:null,&quot;suggestionKind&quot;:null,&quot;suggestionUserId&quot;:null,&quot;suggestionTimestamp&quot;:null,&quot;suggestionDiscussionId&quot;:null,&quot;suggestionOriginalAttrs&quot;:null},&quot;content&quot;:[{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;0ega3gnx7y&quot;,&quot;rtl&quot;:null,&quot;class&quot;:null,&quot;textAlign&quot;:null,&quot;suggestionId&quot;:null,&quot;suggestionKind&quot;:null,&quot;suggestionUserId&quot;:null,&quot;suggestionTimestamp&quot;:null,&quot;suggestionDiscussionId&quot;:null,&quot;suggestionOriginalAttrs&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;Substantial omission of details. Serious factual errors. Poorly organized.&quot;,&quot;type&quot;:&quot;text&quot;}]}]},{&quot;type&quot;:&quot;table_cell&quot;,&quot;attrs&quot;:{&quot;colspan&quot;:1,&quot;rowspan&quot;:1,&quot;colwidth&quot;:null,&quot;background&quot;:null,&quot;suggestionId&quot;:null,&quot;suggestionKind&quot;:null,&quot;suggestionUserId&quot;:null,&quot;suggestionTimestamp&quot;:null,&quot;suggestionDiscussionId&quot;:null,&quot;suggestionOriginalAttrs&quot;:null},&quot;content&quot;:[{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;avvu5uu7a0&quot;,&quot;rtl&quot;:null,&quot;class&quot;:null,&quot;textAlign&quot;:null,&quot;suggestionId&quot;:null,&quot;suggestionKind&quot;:null,&quot;suggestionUserId&quot;:null,&quot;suggestionTimestamp&quot;:null,&quot;suggestionDiscussionId&quot;:null,&quot;suggestionOriginalAttrs&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;Omission of minor pertinent details. Small factual errors. Overall organization good, but individual sections lack coherence/ depth or good content presented in a disorganized fashion. Excessive information not pertinent to subject.&quot;,&quot;type&quot;:&quot;text&quot;}]}]},{&quot;type&quot;:&quot;table_cell&quot;,&quot;attrs&quot;:{&quot;colspan&quot;:1,&quot;rowspan&quot;:1,&quot;colwidth&quot;:null,&quot;background&quot;:null,&quot;suggestionId&quot;:null,&quot;suggestionKind&quot;:null,&quot;suggestionUserId&quot;:null,&quot;suggestionTimestamp&quot;:null,&quot;suggestionDiscussionId&quot;:null,&quot;suggestionOriginalAttrs&quot;:null},&quot;content&quot;:[{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;yfqnghf4xm&quot;,&quot;rtl&quot;:null,&quot;class&quot;:null,&quot;textAlign&quot;:null,&quot;suggestionId&quot;:null,&quot;suggestionKind&quot;:null,&quot;suggestionUserId&quot;:null,&quot;suggestionTimestamp&quot;:null,&quot;suggestionDiscussionId&quot;:null,&quot;suggestionOriginalAttrs&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;Follows the submission guidelines, providing all pertinent details. No factual errors. Well organized in pursuit of a clearly defined objectives.&quot;,&quot;type&quot;:&quot;text&quot;}]}]}]},{&quot;type&quot;:&quot;table_row&quot;,&quot;attrs&quot;:{&quot;suggestionId&quot;:null,&quot;suggestionKind&quot;:null,&quot;suggestionUserId&quot;:null,&quot;suggestionTimestamp&quot;:null,&quot;suggestionDiscussionId&quot;:null,&quot;suggestionOriginalAttrs&quot;:null},&quot;content&quot;:[{&quot;type&quot;:&quot;table_cell&quot;,&quot;attrs&quot;:{&quot;colspan&quot;:1,&quot;rowspan&quot;:1,&quot;colwidth&quot;:[127],&quot;background&quot;:null,&quot;suggestionId&quot;:null,&quot;suggestionKind&quot;:null,&quot;suggestionUserId&quot;:null,&quot;suggestionTimestamp&quot;:null,&quot;suggestionDiscussionId&quot;:null,&quot;suggestionOriginalAttrs&quot;:null},&quot;content&quot;:[{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;1rss3h1sxg&quot;,&quot;rtl&quot;:null,&quot;class&quot;:null,&quot;textAlign&quot;:null,&quot;suggestionId&quot;:null,&quot;suggestionKind&quot;:null,&quot;suggestionUserId&quot;:null,&quot;suggestionTimestamp&quot;:null,&quot;suggestionDiscussionId&quot;:null,&quot;suggestionOriginalAttrs&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;Use of Sources* &quot;,&quot;type&quot;:&quot;text&quot;,&quot;marks&quot;:[{&quot;type&quot;:&quot;strong&quot;}]},{&quot;type&quot;:&quot;hard_break&quot;,&quot;attrs&quot;:{&quot;suggestionId&quot;:null,&quot;suggestionKind&quot;:null,&quot;suggestionUserId&quot;:null,&quot;suggestionTimestamp&quot;:null,&quot;suggestionDiscussionId&quot;:null,&quot;suggestionOriginalAttrs&quot;:null},&quot;marks&quot;:[{&quot;type&quot;:&quot;strong&quot;}]},{&quot;text&quot;:&quot;(Weight 30%)&quot;,&quot;type&quot;:&quot;text&quot;}]}]},{&quot;type&quot;:&quot;table_cell&quot;,&quot;attrs&quot;:{&quot;colspan&quot;:1,&quot;rowspan&quot;:1,&quot;colwidth&quot;:null,&quot;background&quot;:null,&quot;suggestionId&quot;:null,&quot;suggestionKind&quot;:null,&quot;suggestionUserId&quot;:null,&quot;suggestionTimestamp&quot;:null,&quot;suggestionDiscussionId&quot;:null,&quot;suggestionOriginalAttrs&quot;:null},&quot;content&quot;:[{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;991l6a92jl&quot;,&quot;rtl&quot;:null,&quot;class&quot;:null,&quot;textAlign&quot;:null,&quot;suggestionId&quot;:null,&quot;suggestionKind&quot;:null,&quot;suggestionUserId&quot;:null,&quot;suggestionTimestamp&quot;:null,&quot;suggestionDiscussionId&quot;:null,&quot;suggestionOriginalAttrs&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;Little use of supporting sources, mostly generalities. Overuse of links to or quotations from other texts/websites.&quot;,&quot;type&quot;:&quot;text&quot;}]}]},{&quot;type&quot;:&quot;table_cell&quot;,&quot;attrs&quot;:{&quot;colspan&quot;:1,&quot;rowspan&quot;:1,&quot;colwidth&quot;:null,&quot;background&quot;:null,&quot;suggestionId&quot;:null,&quot;suggestionKind&quot;:null,&quot;suggestionUserId&quot;:null,&quot;suggestionTimestamp&quot;:null,&quot;suggestionDiscussionId&quot;:null,&quot;suggestionOriginalAttrs&quot;:null},&quot;content&quot;:[{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;yudc6vs551&quot;,&quot;rtl&quot;:null,&quot;class&quot;:null,&quot;textAlign&quot;:null,&quot;suggestionId&quot;:null,&quot;suggestionKind&quot;:null,&quot;suggestionUserId&quot;:null,&quot;suggestionTimestamp&quot;:null,&quot;suggestionDiscussionId&quot;:null,&quot;suggestionOriginalAttrs&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;Scanty use of supporting sources. Minor misuse of sources, or selection of inappropriate sources. Incomplete details.&quot;,&quot;type&quot;:&quot;text&quot;}]}]},{&quot;type&quot;:&quot;table_cell&quot;,&quot;attrs&quot;:{&quot;colspan&quot;:1,&quot;rowspan&quot;:1,&quot;colwidth&quot;:null,&quot;background&quot;:null,&quot;suggestionId&quot;:null,&quot;suggestionKind&quot;:null,&quot;suggestionUserId&quot;:null,&quot;suggestionTimestamp&quot;:null,&quot;suggestionDiscussionId&quot;:null,&quot;suggestionOriginalAttrs&quot;:null},&quot;content&quot;:[{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;d6vk3vkb08&quot;,&quot;rtl&quot;:null,&quot;class&quot;:null,&quot;textAlign&quot;:null,&quot;suggestionId&quot;:null,&quot;suggestionKind&quot;:null,&quot;suggestionUserId&quot;:null,&quot;suggestionTimestamp&quot;:null,&quot;suggestionDiscussionId&quot;:null,&quot;suggestionOriginalAttrs&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;Drawing on several details from sources (rather than general concepts) and/or multiple sources. Appropriate use and choice of sources.&quot;,&quot;type&quot;:&quot;text&quot;}]}]}]},{&quot;type&quot;:&quot;table_row&quot;,&quot;attrs&quot;:{&quot;suggestionId&quot;:null,&quot;suggestionKind&quot;:null,&quot;suggestionUserId&quot;:null,&quot;suggestionTimestamp&quot;:null,&quot;suggestionDiscussionId&quot;:null,&quot;suggestionOriginalAttrs&quot;:null},&quot;content&quot;:[{&quot;type&quot;:&quot;table_cell&quot;,&quot;attrs&quot;:{&quot;colspan&quot;:1,&quot;rowspan&quot;:1,&quot;colwidth&quot;:[127],&quot;background&quot;:null,&quot;suggestionId&quot;:null,&quot;suggestionKind&quot;:null,&quot;suggestionUserId&quot;:null,&quot;suggestionTimestamp&quot;:null,&quot;suggestionDiscussionId&quot;:null,&quot;suggestionOriginalAttrs&quot;:null},&quot;content&quot;:[{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;4kgfimc5z6&quot;,&quot;rtl&quot;:null,&quot;class&quot;:null,&quot;textAlign&quot;:null,&quot;suggestionId&quot;:null,&quot;suggestionKind&quot;:null,&quot;suggestionUserId&quot;:null,&quot;suggestionTimestamp&quot;:null,&quot;suggestionDiscussionId&quot;:null,&quot;suggestionOriginalAttrs&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;Grammar and Language &quot;,&quot;type&quot;:&quot;text&quot;,&quot;marks&quot;:[{&quot;type&quot;:&quot;strong&quot;}]},{&quot;type&quot;:&quot;hard_break&quot;,&quot;attrs&quot;:{&quot;suggestionId&quot;:null,&quot;suggestionKind&quot;:null,&quot;suggestionUserId&quot;:null,&quot;suggestionTimestamp&quot;:null,&quot;suggestionDiscussionId&quot;:null,&quot;suggestionOriginalAttrs&quot;:null},&quot;marks&quot;:[{&quot;type&quot;:&quot;strong&quot;}]},{&quot;text&quot;:&quot;(Weight 10%)&quot;,&quot;type&quot;:&quot;text&quot;}]}]},{&quot;type&quot;:&quot;table_cell&quot;,&quot;attrs&quot;:{&quot;colspan&quot;:1,&quot;rowspan&quot;:1,&quot;colwidth&quot;:null,&quot;background&quot;:null,&quot;suggestionId&quot;:null,&quot;suggestionKind&quot;:null,&quot;suggestionUserId&quot;:null,&quot;suggestionTimestamp&quot;:null,&quot;suggestionDiscussionId&quot;:null,&quot;suggestionOriginalAttrs&quot;:null},&quot;content&quot;:[{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;ou57jqf397&quot;,&quot;rtl&quot;:null,&quot;class&quot;:null,&quot;textAlign&quot;:null,&quot;suggestionId&quot;:null,&quot;suggestionKind&quot;:null,&quot;suggestionUserId&quot;:null,&quot;suggestionTimestamp&quot;:null,&quot;suggestionDiscussionId&quot;:null,&quot;suggestionOriginalAttrs&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;Substantial grammar and/or typographical errors that confuse clarity and sense. Misuse of vocabulary; excessive repetition in expression.&quot;,&quot;type&quot;:&quot;text&quot;}]}]},{&quot;type&quot;:&quot;table_cell&quot;,&quot;attrs&quot;:{&quot;colspan&quot;:1,&quot;rowspan&quot;:1,&quot;colwidth&quot;:null,&quot;background&quot;:null,&quot;suggestionId&quot;:null,&quot;suggestionKind&quot;:null,&quot;suggestionUserId&quot;:null,&quot;suggestionTimestamp&quot;:null,&quot;suggestionDiscussionId&quot;:null,&quot;suggestionOriginalAttrs&quot;:null},&quot;content&quot;:[{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;c4txjy47gu&quot;,&quot;rtl&quot;:null,&quot;class&quot;:null,&quot;textAlign&quot;:null,&quot;suggestionId&quot;:null,&quot;suggestionKind&quot;:null,&quot;suggestionUserId&quot;:null,&quot;suggestionTimestamp&quot;:null,&quot;suggestionDiscussionId&quot;:null,&quot;suggestionOriginalAttrs&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;Some grammatical/ typographical errors, but without effect on sense. Repetitious use of vocabulary or expression.&quot;,&quot;type&quot;:&quot;text&quot;}]}]},{&quot;type&quot;:&quot;table_cell&quot;,&quot;attrs&quot;:{&quot;colspan&quot;:1,&quot;rowspan&quot;:1,&quot;colwidth&quot;:null,&quot;background&quot;:null,&quot;suggestionId&quot;:null,&quot;suggestionKind&quot;:null,&quot;suggestionUserId&quot;:null,&quot;suggestionTimestamp&quot;:null,&quot;suggestionDiscussionId&quot;:null,&quot;suggestionOriginalAttrs&quot;:null},&quot;content&quot;:[{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;x6tw7j8ey8&quot;,&quot;rtl&quot;:null,&quot;class&quot;:null,&quot;textAlign&quot;:null,&quot;suggestionId&quot;:null,&quot;suggestionKind&quot;:null,&quot;suggestionUserId&quot;:null,&quot;suggestionTimestamp&quot;:null,&quot;suggestionDiscussionId&quot;:null,&quot;suggestionOriginalAttrs&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;Few to no grammatical errors or typos.&quot;,&quot;type&quot;:&quot;text&quot;}]}]}]}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;4sabm68tbt&quot;,&quot;rtl&quot;:null,&quot;class&quot;:null,&quot;textAlign&quot;:null,&quot;suggestionId&quot;:null,&quot;suggestionKind&quot;:null,&quot;suggestionUserId&quot;:null,&quot;suggestionTimestamp&quot;:null,&quot;suggestionDiscussionId&quot;:null,&quot;suggestionOriginalAttrs&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;* Submissions should contain sufficient details to repeat the process and determine whether or not the results are compatible with those described in the submission. All testing or other sources should be described in the review. Sources includes not just citations but testing that is thoroughly described. Author created testing is a source.&quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;38b1mux24u&quot;,&quot;rtl&quot;:null,&quot;class&quot;:null,&quot;textAlign&quot;:null,&quot;suggestionId&quot;:null,&quot;suggestionKind&quot;:null,&quot;suggestionUserId&quot;:null,&quot;suggestionTimestamp&quot;:null,&quot;suggestionDiscussionId&quot;:null,&quot;suggestionOriginalAttrs&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;Review Timelines&quot;,&quot;type&quot;:&quot;text&quot;,&quot;marks&quot;:[{&quot;type&quot;:&quot;strong&quot;}]}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;y4f99cyjje&quot;,&quot;rtl&quot;:null,&quot;class&quot;:null,&quot;textAlign&quot;:null,&quot;suggestionId&quot;:null,&quot;suggestionKind&quot;:null,&quot;suggestionUserId&quot;:null,&quot;suggestionTimestamp&quot;:null,&quot;suggestionDiscussionId&quot;:null,&quot;suggestionOriginalAttrs&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;Submissions are accepted on a per month basis and reviewed in the next month. For example submissions between Feb 1st and 28th will be assigned in early March for review completion by mid-March. If you are unable to provide a timely review, please notify the Program Chair(s) as quickly as possible so the review may be re-assigned. &quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;1nzt6o5m4i&quot;,&quot;rtl&quot;:null,&quot;class&quot;:null,&quot;textAlign&quot;:null,&quot;suggestionId&quot;:null,&quot;suggestionKind&quot;:null,&quot;suggestionUserId&quot;:null,&quot;suggestionTimestamp&quot;:null,&quot;suggestionDiscussionId&quot;:null,&quot;suggestionOriginalAttrs&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;Format for text block of review&quot;,&quot;type&quot;:&quot;text&quot;,&quot;marks&quot;:[{&quot;type&quot;:&quot;strong&quot;}]}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;mk4xniq6no&quot;,&quot;rtl&quot;:null,&quot;class&quot;:null,&quot;textAlign&quot;:null,&quot;suggestionId&quot;:null,&quot;suggestionKind&quot;:null,&quot;suggestionUserId&quot;:null,&quot;suggestionTimestamp&quot;:null,&quot;suggestionDiscussionId&quot;:null,&quot;suggestionOriginalAttrs&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;Please format your comments such that you indicate the type(s) of reviews followed by comments in 3 categories.&quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;whauqposzg&quot;,&quot;rtl&quot;:null,&quot;class&quot;:null,&quot;textAlign&quot;:null,&quot;suggestionId&quot;:null,&quot;suggestionKind&quot;:null,&quot;suggestionUserId&quot;:null,&quot;suggestionTimestamp&quot;:null,&quot;suggestionDiscussionId&quot;:null,&quot;suggestionOriginalAttrs&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;Type of Review: &quot;,&quot;type&quot;:&quot;text&quot;,&quot;marks&quot;:[{&quot;type&quot;:&quot;em&quot;}]},{&quot;text&quot;:&quot;Methodology Review and Verified Review using Author Provided Datasets (Please indicate if this is a Methodology Review, Verified Review using Author Provided Datasets, or Validated using Reviewer Generated Datasets).&quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;sh8nj7v7jg&quot;,&quot;rtl&quot;:null,&quot;class&quot;:null,&quot;textAlign&quot;:null,&quot;suggestionId&quot;:null,&quot;suggestionKind&quot;:null,&quot;suggestionUserId&quot;:null,&quot;suggestionTimestamp&quot;:null,&quot;suggestionDiscussionId&quot;:null,&quot;suggestionOriginalAttrs&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;Omissions and Questions about the work:&quot;,&quot;type&quot;:&quot;text&quot;,&quot;marks&quot;:[{&quot;type&quot;:&quot;em&quot;}]}]},{&quot;type&quot;:&quot;ordered_list&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;wi04ywbezr&quot;,&quot;rtl&quot;:null,&quot;order&quot;:1,&quot;suggestionId&quot;:null,&quot;suggestionKind&quot;:null,&quot;suggestionUserId&quot;:null,&quot;suggestionTimestamp&quot;:null,&quot;suggestionDiscussionId&quot;:null,&quot;suggestionOriginalAttrs&quot;:null},&quot;content&quot;:[{&quot;type&quot;:&quot;list_item&quot;,&quot;attrs&quot;:{&quot;suggestionId&quot;:null,&quot;suggestionKind&quot;:null,&quot;suggestionUserId&quot;:null,&quot;suggestionTimestamp&quot;:null,&quot;suggestionDiscussionId&quot;:null,&quot;suggestionOriginalAttrs&quot;:null},&quot;content&quot;:[{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;xf0lyd67r1&quot;,&quot;rtl&quot;:null,&quot;class&quot;:null,&quot;textAlign&quot;:null,&quot;suggestionId&quot;:null,&quot;suggestionKind&quot;:null,&quot;suggestionUserId&quot;:null,&quot;suggestionTimestamp&quot;:null,&quot;suggestionDiscussionId&quot;:null,&quot;suggestionOriginalAttrs&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;What is meant by x?&quot;,&quot;type&quot;:&quot;text&quot;}]}]},{&quot;type&quot;:&quot;list_item&quot;,&quot;attrs&quot;:{&quot;suggestionId&quot;:null,&quot;suggestionKind&quot;:null,&quot;suggestionUserId&quot;:null,&quot;suggestionTimestamp&quot;:null,&quot;suggestionDiscussionId&quot;:null,&quot;suggestionOriginalAttrs&quot;:null},&quot;content&quot;:[{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;ks3ok21n17&quot;,&quot;rtl&quot;:null,&quot;class&quot;:null,&quot;textAlign&quot;:null,&quot;suggestionId&quot;:null,&quot;suggestionKind&quot;:null,&quot;suggestionUserId&quot;:null,&quot;suggestionTimestamp&quot;:null,&quot;suggestionDiscussionId&quot;:null,&quot;suggestionOriginalAttrs&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;Was y tested?&quot;,&quot;type&quot;:&quot;text&quot;}]}]}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;6xmhxxtf0m&quot;,&quot;rtl&quot;:null,&quot;class&quot;:null,&quot;textAlign&quot;:null,&quot;suggestionId&quot;:null,&quot;suggestionKind&quot;:null,&quot;suggestionUserId&quot;:null,&quot;suggestionTimestamp&quot;:null,&quot;suggestionDiscussionId&quot;:null,&quot;suggestionOriginalAttrs&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;Future work:&quot;,&quot;type&quot;:&quot;text&quot;,&quot;marks&quot;:[{&quot;type&quot;:&quot;em&quot;}]}]},{&quot;type&quot;:&quot;ordered_list&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;x9fzln9kcl&quot;,&quot;rtl&quot;:null,&quot;order&quot;:1,&quot;suggestionId&quot;:null,&quot;suggestionKind&quot;:null,&quot;suggestionUserId&quot;:null,&quot;suggestionTimestamp&quot;:null,&quot;suggestionDiscussionId&quot;:null,&quot;suggestionOriginalAttrs&quot;:null},&quot;content&quot;:[{&quot;type&quot;:&quot;list_item&quot;,&quot;attrs&quot;:{&quot;suggestionId&quot;:null,&quot;suggestionKind&quot;:null,&quot;suggestionUserId&quot;:null,&quot;suggestionTimestamp&quot;:null,&quot;suggestionDiscussionId&quot;:null,&quot;suggestionOriginalAttrs&quot;:null},&quot;content&quot;:[{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;m1r3g3hsla&quot;,&quot;rtl&quot;:null,&quot;class&quot;:null,&quot;textAlign&quot;:null,&quot;suggestionId&quot;:null,&quot;suggestionKind&quot;:null,&quot;suggestionUserId&quot;:null,&quot;suggestionTimestamp&quot;:null,&quot;suggestionDiscussionId&quot;:null,&quot;suggestionOriginalAttrs&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;Future work could include validation on z platform&quot;,&quot;type&quot;:&quot;text&quot;}]}]}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;a0v8xdv8ll&quot;,&quot;rtl&quot;:null,&quot;class&quot;:null,&quot;textAlign&quot;:null,&quot;suggestionId&quot;:null,&quot;suggestionKind&quot;:null,&quot;suggestionUserId&quot;:null,&quot;suggestionTimestamp&quot;:null,&quot;suggestionDiscussionId&quot;:null,&quot;suggestionOriginalAttrs&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;Formatting suggestions and typographical errors:&quot;,&quot;type&quot;:&quot;text&quot;,&quot;marks&quot;:[{&quot;type&quot;:&quot;em&quot;}]}]},{&quot;type&quot;:&quot;ordered_list&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;e48yaa32ms&quot;,&quot;rtl&quot;:null,&quot;order&quot;:1,&quot;suggestionId&quot;:null,&quot;suggestionKind&quot;:null,&quot;suggestionUserId&quot;:null,&quot;suggestionTimestamp&quot;:null,&quot;suggestionDiscussionId&quot;:null,&quot;suggestionOriginalAttrs&quot;:null},&quot;content&quot;:[{&quot;type&quot;:&quot;list_item&quot;,&quot;attrs&quot;:{&quot;suggestionId&quot;:null,&quot;suggestionKind&quot;:null,&quot;suggestionUserId&quot;:null,&quot;suggestionTimestamp&quot;:null,&quot;suggestionDiscussionId&quot;:null,&quot;suggestionOriginalAttrs&quot;:null},&quot;content&quot;:[{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;ad5eow1jiq&quot;,&quot;rtl&quot;:null,&quot;class&quot;:null,&quot;textAlign&quot;:null,&quot;suggestionId&quot;:null,&quot;suggestionKind&quot;:null,&quot;suggestionUserId&quot;:null,&quot;suggestionTimestamp&quot;:null,&quot;suggestionDiscussionId&quot;:null,&quot;suggestionOriginalAttrs&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;Figure 3 is labeled incorrectly as Figure 4&quot;,&quot;type&quot;:&quot;text&quot;}]}]},{&quot;type&quot;:&quot;list_item&quot;,&quot;attrs&quot;:{&quot;suggestionId&quot;:null,&quot;suggestionKind&quot;:null,&quot;suggestionUserId&quot;:null,&quot;suggestionTimestamp&quot;:null,&quot;suggestionDiscussionId&quot;:null,&quot;suggestionOriginalAttrs&quot;:null},&quot;content&quot;:[{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;bve6ohp2en&quot;,&quot;rtl&quot;:null,&quot;class&quot;:null,&quot;textAlign&quot;:null,&quot;suggestionId&quot;:null,&quot;suggestionKind&quot;:null,&quot;suggestionUserId&quot;:null,&quot;suggestionTimestamp&quot;:null,&quot;suggestionDiscussionId&quot;:null,&quot;suggestionOriginalAttrs&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;community is misspelled on page 3&quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;2d4e4d9mo2&quot;,&quot;rtl&quot;:null,&quot;class&quot;:null,&quot;textAlign&quot;:null,&quot;suggestionId&quot;:null,&quot;suggestionKind&quot;:null,&quot;suggestionUserId&quot;:null,&quot;suggestionTimestamp&quot;:null,&quot;suggestionDiscussionId&quot;:null,&quot;suggestionOriginalAttrs&quot;:null}}]}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;t3gknsknon&quot;,&quot;rtl&quot;:null,&quot;class&quot;:null,&quot;textAlign&quot;:null,&quot;suggestionId&quot;:null,&quot;suggestionKind&quot;:null,&quot;suggestionUserId&quot;:null,&quot;suggestionTimestamp&quot;:null,&quot;suggestionDiscussionId&quot;:null,&quot;suggestionOriginalAttrs&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;Questions?&quot;,&quot;type&quot;:&quot;text&quot;,&quot;marks&quot;:[{&quot;type&quot;:&quot;strong&quot;}]}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;xvrj74tpko&quot;,&quot;rtl&quot;:null,&quot;class&quot;:null,&quot;textAlign&quot;:null,&quot;suggestionId&quot;:null,&quot;suggestionKind&quot;:null,&quot;suggestionUserId&quot;:null,&quot;suggestionTimestamp&quot;:null,&quot;suggestionDiscussionId&quot;:null,&quot;suggestionOriginalAttrs&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;Contact us at dfirreview@dfrws.org&quot;,&quot;type&quot;:&quot;text&quot;}]}]},&quot;align&quot;:&quot;left&quot;}}],&quot;layoutAllowsDuplicatePubs&quot;:false,&quot;createdAt&quot;:&quot;2019-03-30T17:24:56.535Z&quot;},{&quot;id&quot;:&quot;b4ba8d5a-2328-4d86-ad66-f8c2c76a506f&quot;,&quot;title&quot;:&quot;Stats&quot;,&quot;slug&quot;:&quot;blog&quot;,&quot;description&quot;:&quot;Blog post with stats for DFIR Review&quot;,&quot;avatar&quot;:null,&quot;isPublic&quot;:true,&quot;isNarrowWidth&quot;:null,&quot;viewHash&quot;:&quot;fnjtgcsg&quot;,&quot;layout&quot;:[{&quot;id&quot;:&quot;xpwsx1ff&quot;,&quot;type&quot;:&quot;text&quot;,&quot;content&quot;:{&quot;text&quot;:{&quot;type&quot;:&quot;doc&quot;,&quot;attrs&quot;:{&quot;meta&quot;:{}},&quot;content&quot;:[{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;n3uvj3mojvp&quot;,&quot;class&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;DFIR Review – Year in Review 2020 Statistics&quot;,&quot;type&quot;:&quot;text&quot;,&quot;marks&quot;:[{&quot;type&quot;:&quot;strong&quot;}]},{&quot;text&quot;:&quot; (cross-posted from https://www.dfir.training/dfir-blog/dfir-review-year-in-review)&quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;n6juf9nhy7l&quot;,&quot;class&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;Feb 7, 2021&quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;nylv7n651m3&quot;,&quot;class&quot;:&quot;MsoNormal&quot;},&quot;content&quot;:[{&quot;text&quot;:&quot;Hi!  We at DFIR Review wanted to take a moment to share some of the great things all the volunteers at DFIR Review have been doing over the last year and all the great peer-reviewed posts available at &quot;,&quot;type&quot;:&quot;text&quot;},{&quot;text&quot;:&quot;dfir.pubpub.org&quot;,&quot;type&quot;:&quot;text&quot;,&quot;marks&quot;:[{&quot;type&quot;:&quot;link&quot;,&quot;attrs&quot;:{&quot;href&quot;:&quot;https://dfir.pubpub.org/&quot;,&quot;title&quot;:null,&quot;target&quot;:null}}]},{&quot;text&quot;:&quot;.&quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;nq2vfwvfnix&quot;,&quot;class&quot;:&quot;MsoNormal&quot;},&quot;content&quot;:[{&quot;text&quot;:&quot;For those who are unfamiliar, DFIR Review is a project under &quot;,&quot;type&quot;:&quot;text&quot;},{&quot;text&quot;:&quot;DFRWS&quot;,&quot;type&quot;:&quot;text&quot;,&quot;marks&quot;:[{&quot;type&quot;:&quot;link&quot;,&quot;attrs&quot;:{&quot;href&quot;:&quot;https://dfrws.org/&quot;,&quot;title&quot;:null,&quot;target&quot;:null}}]},{&quot;text&quot;:&quot; that conducts peer review of content and blogs, regardless of if they have already been posted. The goal of this project is to provide verification, validation, and review of digital forensics content that is rapidly shared by practitioners. This allows for the review process to take place while the content is still available to the community.&quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;n630v13lo3j&quot;,&quot;class&quot;:&quot;MsoNormal&quot;},&quot;content&quot;:[{&quot;text&quot;:&quot;In 2020, DFIR Review published 11 pieces including the following:&quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;njquwnpvnyq&quot;,&quot;class&quot;:&quot;MsoListParagraphCxSpFirst&quot;},&quot;content&quot;:[{&quot;text&quot;:&quot;·        &quot;,&quot;type&quot;:&quot;text&quot;},{&quot;text&quot;:&quot;Google Search Bar &amp; Search Term History – Are You Finding Everything by Joshua Hickman&quot;,&quot;type&quot;:&quot;text&quot;,&quot;marks&quot;:[{&quot;type&quot;:&quot;link&quot;,&quot;attrs&quot;:{&quot;href&quot;:&quot;https://dfir.pubpub.org/pub/wpbdig8l&quot;,&quot;title&quot;:null,&quot;target&quot;:null}}]}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;nw3nmuneafp&quot;,&quot;class&quot;:&quot;MsoListParagraphCxSpMiddle&quot;},&quot;content&quot;:[{&quot;text&quot;:&quot;·        &quot;,&quot;type&quot;:&quot;text&quot;},{&quot;text&quot;:&quot;OK Computer…er…Google. Dissecting Google Assistant (Part 1) by Joshua Hickman&quot;,&quot;type&quot;:&quot;text&quot;,&quot;marks&quot;:[{&quot;type&quot;:&quot;link&quot;,&quot;attrs&quot;:{&quot;href&quot;:&quot;https://dfir.pubpub.org/pub/eivkytr1&quot;,&quot;title&quot;:null,&quot;target&quot;:null}}]}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;nuqku8khss8&quot;,&quot;class&quot;:&quot;MsoListParagraphCxSpMiddle&quot;},&quot;content&quot;:[{&quot;text&quot;:&quot;·        &quot;,&quot;type&quot;:&quot;text&quot;},{&quot;text&quot;:&quot;OK Computer…er…Google. Dissecting Google Assistant (Part Deux) by Joshua Hickman&quot;,&quot;type&quot;:&quot;text&quot;,&quot;marks&quot;:[{&quot;type&quot;:&quot;link&quot;,&quot;attrs&quot;:{&quot;href&quot;:&quot;https://dfir.pubpub.org/pub/eivkytr1&quot;,&quot;title&quot;:null,&quot;target&quot;:null}}]}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;np1z3kyai28&quot;,&quot;class&quot;:&quot;MsoListParagraphCxSpMiddle&quot;},&quot;content&quot;:[{&quot;text&quot;:&quot;·        &quot;,&quot;type&quot;:&quot;text&quot;},{&quot;text&quot;:&quot;Chromebook Forensic Acquisition by Daniel Dickerman&quot;,&quot;type&quot;:&quot;text&quot;,&quot;marks&quot;:[{&quot;type&quot;:&quot;link&quot;,&quot;attrs&quot;:{&quot;href&quot;:&quot;https://dfir.pubpub.org/pub/inkjsqrh&quot;,&quot;title&quot;:null,&quot;target&quot;:null}}]}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;na2dtd9t866&quot;,&quot;class&quot;:&quot;MsoListParagraphCxSpMiddle&quot;},&quot;content&quot;:[{&quot;text&quot;:&quot;·        &quot;,&quot;type&quot;:&quot;text&quot;},{&quot;text&quot;:&quot;Parsing Google’s Now Playing History on Pixel Devices by Kevin Pagano&quot;,&quot;type&quot;:&quot;text&quot;,&quot;marks&quot;:[{&quot;type&quot;:&quot;link&quot;,&quot;attrs&quot;:{&quot;href&quot;:&quot;https://dfir.pubpub.org/pub/xbvsrjt5&quot;,&quot;title&quot;:null,&quot;target&quot;:null}}]}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;n827jpi13ne&quot;,&quot;class&quot;:&quot;MsoListParagraphCxSpMiddle&quot;},&quot;content&quot;:[{&quot;text&quot;:&quot;·        &quot;,&quot;type&quot;:&quot;text&quot;},{&quot;text&quot;:&quot;Windows 10 Jump List and Link File Artifacts – Saved, Copied, and Moved by Larry Jones&quot;,&quot;type&quot;:&quot;text&quot;,&quot;marks&quot;:[{&quot;type&quot;:&quot;link&quot;,&quot;attrs&quot;:{&quot;href&quot;:&quot;https://dfir.pubpub.org/pub/wfuxlu9v&quot;,&quot;title&quot;:null,&quot;target&quot;:null}}]}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;nmw1m3fbfx8&quot;,&quot;class&quot;:&quot;MsoListParagraphCxSpMiddle&quot;},&quot;content&quot;:[{&quot;text&quot;:&quot;·        &quot;,&quot;type&quot;:&quot;text&quot;},{&quot;text&quot;:&quot;Tinkering with TikTok Timestamps by Ryan Benson&quot;,&quot;type&quot;:&quot;text&quot;,&quot;marks&quot;:[{&quot;type&quot;:&quot;link&quot;,&quot;attrs&quot;:{&quot;href&quot;:&quot;https://dfir.pubpub.org/pub/9llea7yp&quot;,&quot;title&quot;:null,&quot;target&quot;:null}}]}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;nzabtw21n2t&quot;,&quot;class&quot;:&quot;MsoListParagraphCxSpMiddle&quot;},&quot;content&quot;:[{&quot;text&quot;:&quot;·        &quot;,&quot;type&quot;:&quot;text&quot;},{&quot;text&quot;:&quot;How Android Bluetooth Connections Can Determine if a Driver had Their Hands on the Wheel During an Accident by Heather Mahalik&quot;,&quot;type&quot;:&quot;text&quot;,&quot;marks&quot;:[{&quot;type&quot;:&quot;link&quot;,&quot;attrs&quot;:{&quot;href&quot;:&quot;https://dfir.pubpub.org/pub/6ysxvhvc&quot;,&quot;title&quot;:null,&quot;target&quot;:null}}]}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;nty3qc3v9ab&quot;,&quot;class&quot;:&quot;MsoListParagraphCxSpMiddle&quot;},&quot;content&quot;:[{&quot;text&quot;:&quot;·        &quot;,&quot;type&quot;:&quot;text&quot;},{&quot;text&quot;:&quot;Can Google Takeout Location Data Be Trusted? By Ross Donnelly&quot;,&quot;type&quot;:&quot;text&quot;,&quot;marks&quot;:[{&quot;type&quot;:&quot;link&quot;,&quot;attrs&quot;:{&quot;href&quot;:&quot;https://dfir.pubpub.org/pub/d39u7lg1&quot;,&quot;title&quot;:null,&quot;target&quot;:null}}]}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;nyi40hf6d43&quot;,&quot;class&quot;:&quot;MsoListParagraphCxSpMiddle&quot;},&quot;content&quot;:[{&quot;text&quot;:&quot;·        &quot;,&quot;type&quot;:&quot;text&quot;},{&quot;text&quot;:&quot;How to Use iOS Bluetooth Connections to Solve Crimes Faster by Heather Mahalik and Matt Goeckel&quot;,&quot;type&quot;:&quot;text&quot;,&quot;marks&quot;:[{&quot;type&quot;:&quot;link&quot;,&quot;attrs&quot;:{&quot;href&quot;:&quot;https://dfir.pubpub.org/pub/frknihlg&quot;,&quot;title&quot;:null,&quot;target&quot;:null}}]}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;njuk6qfjsy8&quot;,&quot;class&quot;:&quot;MsoListParagraphCxSpLast&quot;},&quot;content&quot;:[{&quot;text&quot;:&quot;·        &quot;,&quot;type&quot;:&quot;text&quot;},{&quot;text&quot;:&quot;Can You Track Processes Accessing the Camera and Microphone on Windows 10? By Zachary Stanford&quot;,&quot;type&quot;:&quot;text&quot;,&quot;marks&quot;:[{&quot;type&quot;:&quot;link&quot;,&quot;attrs&quot;:{&quot;href&quot;:&quot;https://dfir.pubpub.org/pub/nm5b39ae&quot;,&quot;title&quot;:null,&quot;target&quot;:null}}]}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;ng9zp1lfo6h&quot;,&quot;class&quot;:&quot;MsoNormal&quot;},&quot;content&quot;:[{&quot;text&quot;:&quot;The magic behind this cadre of publications is the &quot;,&quot;type&quot;:&quot;text&quot;},{&quot;text&quot;:&quot;DFIR Review Community&quot;,&quot;type&quot;:&quot;text&quot;,&quot;marks&quot;:[{&quot;type&quot;:&quot;link&quot;,&quot;attrs&quot;:{&quot;href&quot;:&quot;https://dfir.pubpub.org/community&quot;,&quot;title&quot;:null,&quot;target&quot;:null}}]},{&quot;text&quot;:&quot; and &quot;,&quot;type&quot;:&quot;text&quot;},{&quot;text&quot;:&quot;reviewers&quot;,&quot;type&quot;:&quot;text&quot;,&quot;marks&quot;:[{&quot;type&quot;:&quot;link&quot;,&quot;attrs&quot;:{&quot;href&quot;:&quot;https://dfir.pubpub.org/reviewers&quot;,&quot;title&quot;:null,&quot;target&quot;:null}}]},{&quot;text&quot;:&quot;. We have a community of over 30 reviewers who have completed 100 reviews. Our community is truly global with contributions from 15 countries across 4 continents!&quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;noi6sl2ie5l&quot;,&quot;class&quot;:&quot;MsoNormal&quot;}},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;ngkvtiqievw&quot;,&quot;class&quot;:&quot;MsoNormal&quot;},&quot;content&quot;:[{&quot;text&quot;:&quot;Thank you to everyone who has contributed be it as an author, reviewer, or organizing committee. We hope to be able to share even more throughout 2021. Have content you want to submit to DFIR Review? Check out our &quot;,&quot;type&quot;:&quot;text&quot;},{&quot;text&quot;:&quot;submission guidance&quot;,&quot;type&quot;:&quot;text&quot;,&quot;marks&quot;:[{&quot;type&quot;:&quot;link&quot;,&quot;attrs&quot;:{&quot;href&quot;:&quot;https://dfir.pubpub.org/submission-guidance&quot;,&quot;title&quot;:null,&quot;target&quot;:null}}]},{&quot;text&quot;:&quot;. If you are interested in being a reviewer, please feel free to email us at &quot;,&quot;type&quot;:&quot;text&quot;},{&quot;text&quot;:&quot;dfirreview@dfrws.org&quot;,&quot;type&quot;:&quot;text&quot;,&quot;marks&quot;:[{&quot;type&quot;:&quot;link&quot;,&quot;attrs&quot;:{&quot;href&quot;:&quot;mailto:dfirreview@dfrws.org&quot;,&quot;title&quot;:null,&quot;target&quot;:null}}]}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;nm5w5cylpe4&quot;,&quot;class&quot;:null}},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;nply4zgf0ih&quot;,&quot;class&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;Slide-deck of the stats&quot;,&quot;type&quot;:&quot;text&quot;,&quot;marks&quot;:[{&quot;type&quot;:&quot;link&quot;,&quot;attrs&quot;:{&quot;href&quot;:&quot;https://www.dfir.training/dfir-review-year-in-review-2020/file&quot;,&quot;title&quot;:null,&quot;target&quot;:null}}]}]}]},&quot;align&quot;:&quot;left&quot;}}],&quot;layoutAllowsDuplicatePubs&quot;:false,&quot;createdAt&quot;:&quot;2021-02-07T19:35:12.262Z&quot;},{&quot;id&quot;:&quot;6a7dd0ce-1852-4aa8-b858-dd9e4fcc23e7&quot;,&quot;title&quot;:&quot;Submission Guidance&quot;,&quot;slug&quot;:&quot;submission-guidance&quot;,&quot;description&quot;:&quot;&quot;,&quot;avatar&quot;:null,&quot;isPublic&quot;:true,&quot;isNarrowWidth&quot;:null,&quot;viewHash&quot;:&quot;2o9h9at6&quot;,&quot;layout&quot;:[{&quot;id&quot;:&quot;zd5ru333&quot;,&quot;type&quot;:&quot;text&quot;,&quot;content&quot;:{&quot;text&quot;:{&quot;type&quot;:&quot;doc&quot;,&quot;attrs&quot;:{&quot;meta&quot;:{}},&quot;content&quot;:[{&quot;type&quot;:&quot;heading&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;dfir-review---submission-guidance&quot;,&quot;rtl&quot;:null,&quot;level&quot;:1,&quot;fixedId&quot;:&quot;&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;DFIR Review - Submission Guidance&quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;mpox5nedvm&quot;,&quot;rtl&quot;:null,&quot;class&quot;:null,&quot;textAlign&quot;:null}},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;333wqr8yd8&quot;,&quot;rtl&quot;:null,&quot;class&quot;:null,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;Thank you for your interest in submitting to DFIRReview. Please submit via &quot;,&quot;type&quot;:&quot;text&quot;},{&quot;text&quot;:&quot;https://easychair.org/conferences/?conf=dfirr2023&quot;,&quot;type&quot;:&quot;text&quot;,&quot;marks&quot;:[{&quot;type&quot;:&quot;link&quot;,&quot;attrs&quot;:{&quot;href&quot;:&quot;https://easychair.org/conferences/?conf=dfirr2023&quot;,&quot;title&quot;:null,&quot;target&quot;:null}}]},{&quot;text&quot;:&quot; &quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;ni3c4l2wcr&quot;,&quot;rtl&quot;:null,&quot;class&quot;:null,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;The following guidance is intended for submitters to utilize in formatting their files submitted to DFIR Review. As DFIR Review is designed for the review of already relieved works, it is suggested that articles be posted in advance as blogs. Author names are not blind to reviewers as submissions for this project are typically already in the public view.&quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;34xpelqcy8&quot;,&quot;rtl&quot;:null,&quot;class&quot;:null,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;DFIRReview accepts submissions for an entire month at a time. At the beginning of the next month those papers are assigned for a review period. For example, Reviews submitted between Jan 1 and Jan 31 will be reviewed in February with a decision to the author expected by the end of February&quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;e6jc08o2jj&quot;,&quot;rtl&quot;:null,&quot;class&quot;:null,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;Please add the following headers to your blog post with the content filled in and submit your attachment as a .docx file. This will help ensure the best possible publication of your content:&quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;t9p2x2zcx4&quot;,&quot;rtl&quot;:null,&quot;class&quot;:null,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;Synopsis:&quot;,&quot;type&quot;:&quot;text&quot;,&quot;marks&quot;:[{&quot;type&quot;:&quot;strong&quot;}]}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;ljaq43noa3&quot;,&quot;rtl&quot;:null,&quot;class&quot;:null,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;Forensics Question: &quot;,&quot;type&quot;:&quot;text&quot;,&quot;marks&quot;:[{&quot;type&quot;:&quot;strong&quot;}]},{&quot;text&quot;:&quot;What is the goal of your paper? What are you trying to answer?&quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;alb8fp1l75&quot;,&quot;rtl&quot;:null,&quot;class&quot;:null,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;OS Version:&quot;,&quot;type&quot;:&quot;text&quot;,&quot;marks&quot;:[{&quot;type&quot;:&quot;strong&quot;}]},{&quot;text&quot;:&quot; Include the applicable Operating System and/or Application versions applies to your content&quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;8l222dkh42&quot;,&quot;rtl&quot;:null,&quot;class&quot;:null,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;Tools:&quot;,&quot;type&quot;:&quot;text&quot;,&quot;marks&quot;:[{&quot;type&quot;:&quot;strong&quot;}]},{&quot;text&quot;:&quot; Please list any and all tools used to create, test, and/or validate your content.&quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;gk0ulcc0n9&quot;,&quot;rtl&quot;:null,&quot;class&quot;:null,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;Thank you!&quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;lr8118ce91&quot;,&quot;rtl&quot;:null,&quot;class&quot;:null,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;Questions?&quot;,&quot;type&quot;:&quot;text&quot;,&quot;marks&quot;:[{&quot;type&quot;:&quot;strong&quot;}]}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;z50oi5bfgm&quot;,&quot;rtl&quot;:null,&quot;class&quot;:null,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;Contact us at dfirreview@dfrws.org&quot;,&quot;type&quot;:&quot;text&quot;}]}]},&quot;align&quot;:&quot;left&quot;}}],&quot;layoutAllowsDuplicatePubs&quot;:false,&quot;createdAt&quot;:&quot;2020-05-28T21:59:19.835Z&quot;},{&quot;id&quot;:&quot;0f373a2c-c88d-4615-901f-9f3007392c8a&quot;,&quot;title&quot;:&quot;DFIR Review&quot;,&quot;slug&quot;:&quot;&quot;,&quot;description&quot;:&quot;DFIR Review responds to the need for a focal point for up-to-date community-reviewed applied research and testing in digital forensics and incident response. DFIR Review concentrates on targeted studies of specific devices, digital traces, analysis methods, and criminal activity.&quot;,&quot;avatar&quot;:&quot;https://assets.pubpub.org/3ej3id6s/11553968629226.png&quot;,&quot;isPublic&quot;:true,&quot;isNarrowWidth&quot;:null,&quot;viewHash&quot;:&quot;dfgao2b3&quot;,&quot;layout&quot;:[{&quot;id&quot;:&quot;yjymbe9d&quot;,&quot;type&quot;:&quot;banner&quot;,&quot;content&quot;:{&quot;text&quot;:&quot;We are actively seeking reviewers! Interested? Email us at dfirreview@dfrws.org &quot;,&quot;align&quot;:&quot;center&quot;,&quot;buttonUrl&quot;:&quot;&quot;,&quot;buttonText&quot;:&quot;&quot;,&quot;buttonType&quot;:&quot;none&quot;,&quot;showButton&quot;:false,&quot;backgroundSize&quot;:&quot;full&quot;,&quot;backgroundColor&quot;:&quot;#3275d8&quot;,&quot;backgroundImage&quot;:&quot;&quot;,&quot;backgroundHeight&quot;:&quot;narrow&quot;,&quot;defaultCollectionIds&quot;:[]}},{&quot;id&quot;:&quot;kqa6nus3&quot;,&quot;type&quot;:&quot;banner&quot;,&quot;content&quot;:{&quot;text&quot;:&quot;Submit topics of interest for research&quot;,&quot;align&quot;:&quot;center&quot;,&quot;buttonUrl&quot;:&quot;https://bit.ly/DFIRReviewRequests&quot;,&quot;buttonText&quot;:&quot;Research Request&quot;,&quot;buttonType&quot;:&quot;link&quot;,&quot;showButton&quot;:true,&quot;backgroundSize&quot;:&quot;full&quot;,&quot;backgroundColor&quot;:&quot;#3275d8&quot;,&quot;backgroundImage&quot;:&quot;&quot;,&quot;backgroundHeight&quot;:&quot;narrow&quot;,&quot;defaultCollectionIds&quot;:[]}},{&quot;id&quot;:&quot;bzmjons3&quot;,&quot;type&quot;:&quot;pubs&quot;,&quot;content&quot;:{&quot;sort&quot;:&quot;creation-date&quot;,&quot;limit&quot;:0,&quot;title&quot;:&quot;&quot;,&quot;pubIds&quot;:[],&quot;collectionIds&quot;:[],&quot;pubPreviewType&quot;:&quot;medium&quot;}},{&quot;id&quot;:&quot;xw3itri0&quot;,&quot;type&quot;:&quot;pubs&quot;,&quot;content&quot;:{&quot;limit&quot;:8,&quot;title&quot;:&quot;Featured Posts&quot;,&quot;pubIds&quot;:[],&quot;collectionIds&quot;:[],&quot;pubPreviewType&quot;:&quot;medium&quot;}}],&quot;layoutAllowsDuplicatePubs&quot;:false,&quot;createdAt&quot;:&quot;2019-03-23T18:09:32.990Z&quot;}]},&quot;loginData&quot;:{&quot;id&quot;:null},&quot;locationData&quot;:{&quot;hostname&quot;:&quot;dfir.pubpub.org&quot;,&quot;path&quot;:&quot;/pub/g2v1z97i/release/1&quot;,&quot;params&quot;:{&quot;pubSlug&quot;:&quot;g2v1z97i&quot;,&quot;releaseNumber&quot;:&quot;1&quot;},&quot;query&quot;:{},&quot;queryString&quot;:&quot;?&quot;,&quot;isDashboard&quot;:false,&quot;isBasePubPub&quot;:false,&quot;isProd&quot;:true,&quot;isDuqDuq&quot;:false,&quot;isQubQub&quot;:false,&quot;appCommit&quot;:&quot;6d87aaeef578ba6bd8c8ce36fb866b505dd22469&quot;},&quot;scopeData&quot;:{&quot;elements&quot;:{&quot;activeTargetType&quot;:&quot;pub&quot;,&quot;activeTargetName&quot;:&quot;Pub&quot;,&quot;activeTarget&quot;:{&quot;id&quot;:&quot;b2d0adf2-a290-4094-804c-c9eac7297bc9&quot;,&quot;slug&quot;:&quot;g2v1z97i&quot;,&quot;title&quot;:&quot;iOS KnowledgeC.db Notifications&quot;,&quot;htmlTitle&quot;:null,&quot;description&quot;:null,&quot;htmlDescription&quot;:null,&quot;avatar&quot;:null,&quot;customPublishedAt&quot;:null,&quot;doi&quot;:null,&quot;labels&quot;:null,&quot;downloads&quot;:null,&quot;metadata&quot;:null,&quot;viewHash&quot;:&quot;uumywdhz&quot;,&quot;editHash&quot;:&quot;90hd8nib&quot;,&quot;reviewHash&quot;:&quot;muvdiwos&quot;,&quot;commentHash&quot;:&quot;ry21hvpc&quot;,&quot;draftId&quot;:&quot;da208dc1-c175-4dc3-a7c9-19556046fe84&quot;,&quot;communityId&quot;:&quot;b0ac9c28-479a-496c-884c-7ae8fc26e385&quot;,&quot;crossrefDepositRecordId&quot;:null,&quot;scopeSummaryId&quot;:&quot;80404ffd-e950-4360-9a02-44679dacf8c6&quot;,&quot;createdAt&quot;:&quot;2022-04-11T17:27:40.839Z&quot;,&quot;updatedAt&quot;:&quot;2022-11-17T22:41:03.381Z&quot;,&quot;collectionPubs&quot;:[],&quot;releases&quot;:[{&quot;id&quot;:&quot;c4147c98-309b-462c-ada4-9b70ff4b4e85&quot;,&quot;historyKey&quot;:1415}],&quot;submission&quot;:null},&quot;activePub&quot;:{&quot;id&quot;:&quot;b2d0adf2-a290-4094-804c-c9eac7297bc9&quot;,&quot;slug&quot;:&quot;g2v1z97i&quot;,&quot;title&quot;:&quot;iOS KnowledgeC.db Notifications&quot;,&quot;htmlTitle&quot;:null,&quot;description&quot;:null,&quot;htmlDescription&quot;:null,&quot;avatar&quot;:null,&quot;customPublishedAt&quot;:null,&quot;doi&quot;:null,&quot;labels&quot;:null,&quot;downloads&quot;:null,&quot;metadata&quot;:null,&quot;viewHash&quot;:&quot;uumywdhz&quot;,&quot;editHash&quot;:&quot;90hd8nib&quot;,&quot;reviewHash&quot;:&quot;muvdiwos&quot;,&quot;commentHash&quot;:&quot;ry21hvpc&quot;,&quot;draftId&quot;:&quot;da208dc1-c175-4dc3-a7c9-19556046fe84&quot;,&quot;communityId&quot;:&quot;b0ac9c28-479a-496c-884c-7ae8fc26e385&quot;,&quot;crossrefDepositRecordId&quot;:null,&quot;scopeSummaryId&quot;:&quot;80404ffd-e950-4360-9a02-44679dacf8c6&quot;,&quot;createdAt&quot;:&quot;2022-04-11T17:27:40.839Z&quot;,&quot;updatedAt&quot;:&quot;2022-11-17T22:41:03.381Z&quot;,&quot;collectionPubs&quot;:[],&quot;releases&quot;:[{&quot;id&quot;:&quot;c4147c98-309b-462c-ada4-9b70ff4b4e85&quot;,&quot;historyKey&quot;:1415}],&quot;submission&quot;:null},&quot;activeCollection&quot;:null,&quot;activeIds&quot;:{&quot;pubId&quot;:&quot;b2d0adf2-a290-4094-804c-c9eac7297bc9&quot;,&quot;collectionId&quot;:null,&quot;communityId&quot;:&quot;b0ac9c28-479a-496c-884c-7ae8fc26e385&quot;},&quot;inactiveCollections&quot;:[],&quot;activeCommunity&quot;:{&quot;id&quot;:&quot;b0ac9c28-479a-496c-884c-7ae8fc26e385&quot;,&quot;subdomain&quot;:&quot;dfir&quot;,&quot;domain&quot;:null,&quot;title&quot;:&quot;DFIR Review&quot;,&quot;citeAs&quot;:null,&quot;publishAs&quot;:null,&quot;description&quot;:&quot;DFIR Review responds to the need for a focal point for up-to-date community-reviewed applied research and testing in digital forensics and incident response. DFIR Review concentrates on targeted studies of specific devices, digital traces, analysis methods, and criminal activity&quot;,&quot;avatar&quot;:&quot;https://assets.pubpub.org/3yqqvtl4/71553968763873.png&quot;,&quot;favicon&quot;:&quot;https://assets.pubpub.org/c8g3oakn/41553968740088.png&quot;,&quot;accentColorLight&quot;:&quot;#FFFFFF&quot;,&quot;accentColorDark&quot;:&quot;#2D2E2F&quot;,&quot;hideCreatePubButton&quot;:true,&quot;headerLogo&quot;:&quot;https://assets.pubpub.org/hndwo003/61675374631049.png&quot;,&quot;headerLinks&quot;:null,&quot;headerColorType&quot;:&quot;dark&quot;,&quot;useHeaderTextAccent&quot;:false,&quot;hideHero&quot;:false,&quot;hideHeaderLogo&quot;:false,&quot;heroLogo&quot;:null,&quot;heroBackgroundImage&quot;:null,&quot;heroBackgroundColor&quot;:&quot;#0558b3&quot;,&quot;heroTextColor&quot;:null,&quot;useHeaderGradient&quot;:true,&quot;heroImage&quot;:null,&quot;heroTitle&quot;:&quot;DFIR Review&quot;,&quot;heroText&quot;:&quot;DFIR Review responds to the need for a focal point for up-to-date community-reviewed applied research and testing in digital forensics and incident response. DFIR Review concentrates on targeted studies of specific devices, digital traces, analysis methods, and criminal activity&quot;,&quot;heroPrimaryButton&quot;:{},&quot;heroSecondaryButton&quot;:{},&quot;heroAlign&quot;:&quot;left&quot;,&quot;navigation&quot;:[{&quot;id&quot;:&quot;0f373a2c-c88d-4615-901f-9f3007392c8a&quot;,&quot;type&quot;:&quot;page&quot;},{&quot;id&quot;:&quot;b4ba8d5a-2328-4d86-ad66-f8c2c76a506f&quot;,&quot;type&quot;:&quot;page&quot;},{&quot;id&quot;:&quot;a8a6a998-952b-45ac-9dde-1e1fef976417&quot;,&quot;type&quot;:&quot;page&quot;},{&quot;id&quot;:&quot;6a7dd0ce-1852-4aa8-b858-dd9e4fcc23e7&quot;,&quot;type&quot;:&quot;page&quot;},{&quot;id&quot;:&quot;c9d33e1b-70ca-4f00-935e-8b048a2db8aa&quot;,&quot;type&quot;:&quot;page&quot;},{&quot;id&quot;:&quot;b1a5d079-3ee0-4434-a65f-c1b0cc624b45&quot;,&quot;type&quot;:&quot;page&quot;},{&quot;id&quot;:&quot;2bd22226-03c8-4300-b555-73eb1d6a582d&quot;,&quot;type&quot;:&quot;page&quot;},{&quot;id&quot;:&quot;9a0a763a-139f-4380-8620-47bf9e307106&quot;,&quot;type&quot;:&quot;page&quot;},{&quot;id&quot;:&quot;a7126096-fe0b-49af-a377-e69d372934d0&quot;,&quot;type&quot;:&quot;page&quot;}],&quot;hideNav&quot;:false,&quot;navLinks&quot;:null,&quot;footerLinks&quot;:null,&quot;footerLogoLink&quot;:null,&quot;footerTitle&quot;:null,&quot;footerImage&quot;:null,&quot;website&quot;:&quot;&quot;,&quot;facebook&quot;:&quot;&quot;,&quot;twitter&quot;:&quot;&quot;,&quot;instagram&quot;:null,&quot;mastodon&quot;:null,&quot;linkedin&quot;:null,&quot;bluesky&quot;:null,&quot;github&quot;:null,&quot;email&quot;:&quot;&quot;,&quot;socialLinksLocation&quot;:null,&quot;issn&quot;:null,&quot;isFeatured&quot;:null,&quot;viewHash&quot;:&quot;qz0cilrt&quot;,&quot;editHash&quot;:&quot;bqi37oih&quot;,&quot;premiumLicenseFlag&quot;:false,&quot;defaultPubCollections&quot;:[],&quot;analyticsSettings&quot;:null,&quot;spamTagId&quot;:&quot;16a43a5f-d437-4a0a-9721-4781fc993f4e&quot;,&quot;organizationId&quot;:null,&quot;scopeSummaryId&quot;:&quot;aa45c5c8-46a9-480c-912b-0ace04e252d4&quot;,&quot;createdAt&quot;:&quot;2019-03-23T18:09:32.984Z&quot;,&quot;updatedAt&quot;:&quot;2023-02-02T21:50:33.149Z&quot;}},&quot;memberData&quot;:[],&quot;activePermissions&quot;:{&quot;activePermission&quot;:null,&quot;canView&quot;:false,&quot;canEdit&quot;:false,&quot;canManage&quot;:false,&quot;canAdmin&quot;:false,&quot;canAdminCommunity&quot;:false,&quot;canManageCommunity&quot;:false,&quot;canViewCommunity&quot;:false,&quot;canEditCommunity&quot;:false,&quot;isSuperAdmin&quot;:false,&quot;canCreateReviews&quot;:false,&quot;canCreateDiscussions&quot;:true,&quot;canViewDraft&quot;:false,&quot;canEditDraft&quot;:false},&quot;activeCounts&quot;:{&quot;reviews&quot;:0,&quot;submissions&quot;:0},&quot;scope&quot;:{&quot;pubId&quot;:&quot;b2d0adf2-a290-4094-804c-c9eac7297bc9&quot;,&quot;communityId&quot;:&quot;b0ac9c28-479a-496c-884c-7ae8fc26e385&quot;},&quot;facets&quot;:{&quot;CitationStyle&quot;:{&quot;props&quot;:{&quot;citationStyle&quot;:{&quot;sources&quot;:[{&quot;scope&quot;:{&quot;kind&quot;:&quot;root&quot;},&quot;value&quot;:&quot;apa&quot;,&quot;facetBindingId&quot;:null},{&quot;scope&quot;:{&quot;kind&quot;:&quot;pub&quot;,&quot;id&quot;:&quot;b2d0adf2-a290-4094-804c-c9eac7297bc9&quot;},&quot;facetBindingId&quot;:&quot;83f6269e-9991-4638-9c35-fe33e4e64b66&quot;,&quot;value&quot;:&quot;apa&quot;}],&quot;value&quot;:&quot;apa&quot;},&quot;inlineCitationStyle&quot;:{&quot;sources&quot;:[{&quot;scope&quot;:{&quot;kind&quot;:&quot;root&quot;},&quot;value&quot;:&quot;count&quot;,&quot;facetBindingId&quot;:null},{&quot;scope&quot;:{&quot;kind&quot;:&quot;pub&quot;,&quot;id&quot;:&quot;b2d0adf2-a290-4094-804c-c9eac7297bc9&quot;},&quot;facetBindingId&quot;:&quot;83f6269e-9991-4638-9c35-fe33e4e64b66&quot;,&quot;value&quot;:&quot;count&quot;}],&quot;value&quot;:&quot;count&quot;}},&quot;value&quot;:{&quot;citationStyle&quot;:&quot;apa&quot;,&quot;inlineCitationStyle&quot;:&quot;count&quot;},&quot;stack&quot;:[{&quot;scope&quot;:{&quot;kind&quot;:&quot;pub&quot;,&quot;id&quot;:&quot;b2d0adf2-a290-4094-804c-c9eac7297bc9&quot;},&quot;value&quot;:{&quot;citationStyle&quot;:&quot;apa&quot;,&quot;inlineCitationStyle&quot;:&quot;count&quot;},&quot;facetBindingId&quot;:&quot;83f6269e-9991-4638-9c35-fe33e4e64b66&quot;}]},&quot;License&quot;:{&quot;props&quot;:{&quot;kind&quot;:{&quot;sources&quot;:[{&quot;scope&quot;:{&quot;kind&quot;:&quot;root&quot;},&quot;value&quot;:&quot;cc-by&quot;,&quot;facetBindingId&quot;:null},{&quot;scope&quot;:{&quot;kind&quot;:&quot;pub&quot;,&quot;id&quot;:&quot;b2d0adf2-a290-4094-804c-c9eac7297bc9&quot;},&quot;facetBindingId&quot;:&quot;db28dd45-5551-433b-8c3c-21632d7b7516&quot;,&quot;value&quot;:&quot;cc-by&quot;}],&quot;value&quot;:&quot;cc-by&quot;},&quot;copyrightSelection&quot;:{&quot;sources&quot;:[{&quot;scope&quot;:{&quot;kind&quot;:&quot;root&quot;},&quot;value&quot;:{&quot;choice&quot;:&quot;infer-from-scope&quot;,&quot;year&quot;:null},&quot;facetBindingId&quot;:null},{&quot;scope&quot;:{&quot;kind&quot;:&quot;pub&quot;,&quot;id&quot;:&quot;b2d0adf2-a290-4094-804c-c9eac7297bc9&quot;},&quot;facetBindingId&quot;:&quot;db28dd45-5551-433b-8c3c-21632d7b7516&quot;,&quot;value&quot;:{&quot;choice&quot;:&quot;infer-from-scope&quot;,&quot;year&quot;:null}}],&quot;value&quot;:{&quot;choice&quot;:&quot;infer-from-scope&quot;,&quot;year&quot;:null}}},&quot;value&quot;:{&quot;kind&quot;:&quot;cc-by&quot;,&quot;copyrightSelection&quot;:{&quot;choice&quot;:&quot;infer-from-scope&quot;,&quot;year&quot;:null}},&quot;stack&quot;:[{&quot;scope&quot;:{&quot;kind&quot;:&quot;pub&quot;,&quot;id&quot;:&quot;b2d0adf2-a290-4094-804c-c9eac7297bc9&quot;},&quot;value&quot;:{&quot;kind&quot;:&quot;cc-by&quot;,&quot;copyrightSelection&quot;:{&quot;choice&quot;:&quot;infer-from-scope&quot;,&quot;year&quot;:null}},&quot;facetBindingId&quot;:&quot;db28dd45-5551-433b-8c3c-21632d7b7516&quot;}]},&quot;NodeLabels&quot;:{&quot;props&quot;:{&quot;image&quot;:{&quot;sources&quot;:[{&quot;scope&quot;:{&quot;kind&quot;:&quot;root&quot;},&quot;value&quot;:{&quot;enabled&quot;:false,&quot;text&quot;:&quot;Image&quot;},&quot;facetBindingId&quot;:null},{&quot;scope&quot;:{&quot;kind&quot;:&quot;pub&quot;,&quot;id&quot;:&quot;b2d0adf2-a290-4094-804c-c9eac7297bc9&quot;},&quot;facetBindingId&quot;:&quot;65fda716-3a80-4fff-990e-d083a0a5f50b&quot;,&quot;value&quot;:{&quot;enabled&quot;:false,&quot;text&quot;:&quot;Figure&quot;}}],&quot;value&quot;:{&quot;enabled&quot;:false,&quot;text&quot;:&quot;Figure&quot;}},&quot;video&quot;:{&quot;sources&quot;:[{&quot;scope&quot;:{&quot;kind&quot;:&quot;root&quot;},&quot;value&quot;:{&quot;enabled&quot;:false,&quot;text&quot;:&quot;Video&quot;},&quot;facetBindingId&quot;:null},{&quot;scope&quot;:{&quot;kind&quot;:&quot;pub&quot;,&quot;id&quot;:&quot;b2d0adf2-a290-4094-804c-c9eac7297bc9&quot;},&quot;facetBindingId&quot;:&quot;65fda716-3a80-4fff-990e-d083a0a5f50b&quot;,&quot;value&quot;:{&quot;enabled&quot;:false,&quot;text&quot;:&quot;Video&quot;}}],&quot;value&quot;:{&quot;enabled&quot;:false,&quot;text&quot;:&quot;Video&quot;}},&quot;audio&quot;:{&quot;sources&quot;:[{&quot;scope&quot;:{&quot;kind&quot;:&quot;root&quot;},&quot;value&quot;:{&quot;enabled&quot;:false,&quot;text&quot;:&quot;Audio&quot;},&quot;facetBindingId&quot;:null},{&quot;scope&quot;:{&quot;kind&quot;:&quot;pub&quot;,&quot;id&quot;:&quot;b2d0adf2-a290-4094-804c-c9eac7297bc9&quot;},&quot;facetBindingId&quot;:&quot;65fda716-3a80-4fff-990e-d083a0a5f50b&quot;,&quot;value&quot;:{&quot;enabled&quot;:false,&quot;text&quot;:&quot;Audio&quot;}}],&quot;value&quot;:{&quot;enabled&quot;:false,&quot;text&quot;:&quot;Audio&quot;}},&quot;table&quot;:{&quot;sources&quot;:[{&quot;scope&quot;:{&quot;kind&quot;:&quot;root&quot;},&quot;value&quot;:{&quot;enabled&quot;:false,&quot;text&quot;:&quot;Table&quot;},&quot;facetBindingId&quot;:null},{&quot;scope&quot;:{&quot;kind&quot;:&quot;pub&quot;,&quot;id&quot;:&quot;b2d0adf2-a290-4094-804c-c9eac7297bc9&quot;},&quot;facetBindingId&quot;:&quot;65fda716-3a80-4fff-990e-d083a0a5f50b&quot;,&quot;value&quot;:{&quot;enabled&quot;:false,&quot;text&quot;:&quot;Table&quot;}}],&quot;value&quot;:{&quot;enabled&quot;:false,&quot;text&quot;:&quot;Table&quot;}},&quot;math&quot;:{&quot;sources&quot;:[{&quot;scope&quot;:{&quot;kind&quot;:&quot;root&quot;},&quot;value&quot;:{&quot;enabled&quot;:false,&quot;text&quot;:&quot;Equation&quot;},&quot;facetBindingId&quot;:null},{&quot;scope&quot;:{&quot;kind&quot;:&quot;pub&quot;,&quot;id&quot;:&quot;b2d0adf2-a290-4094-804c-c9eac7297bc9&quot;},&quot;facetBindingId&quot;:&quot;65fda716-3a80-4fff-990e-d083a0a5f50b&quot;,&quot;value&quot;:{&quot;enabled&quot;:false,&quot;text&quot;:&quot;Equation&quot;}}],&quot;value&quot;:{&quot;enabled&quot;:false,&quot;text&quot;:&quot;Equation&quot;}},&quot;iframe&quot;:{&quot;sources&quot;:[{&quot;scope&quot;:{&quot;kind&quot;:&quot;root&quot;},&quot;value&quot;:{&quot;enabled&quot;:false,&quot;text&quot;:&quot;Iframe&quot;},&quot;facetBindingId&quot;:null},{&quot;scope&quot;:{&quot;kind&quot;:&quot;pub&quot;,&quot;id&quot;:&quot;b2d0adf2-a290-4094-804c-c9eac7297bc9&quot;},&quot;facetBindingId&quot;:&quot;65fda716-3a80-4fff-990e-d083a0a5f50b&quot;,&quot;value&quot;:{&quot;enabled&quot;:false,&quot;text&quot;:&quot;Iframe&quot;}}],&quot;value&quot;:{&quot;enabled&quot;:false,&quot;text&quot;:&quot;Iframe&quot;}}},&quot;value&quot;:{&quot;image&quot;:{&quot;enabled&quot;:false,&quot;text&quot;:&quot;Figure&quot;},&quot;video&quot;:{&quot;enabled&quot;:false,&quot;text&quot;:&quot;Video&quot;},&quot;audio&quot;:{&quot;enabled&quot;:false,&quot;text&quot;:&quot;Audio&quot;},&quot;table&quot;:{&quot;enabled&quot;:false,&quot;text&quot;:&quot;Table&quot;},&quot;math&quot;:{&quot;enabled&quot;:false,&quot;text&quot;:&quot;Equation&quot;},&quot;iframe&quot;:{&quot;enabled&quot;:false,&quot;text&quot;:&quot;Iframe&quot;}},&quot;stack&quot;:[{&quot;scope&quot;:{&quot;kind&quot;:&quot;pub&quot;,&quot;id&quot;:&quot;b2d0adf2-a290-4094-804c-c9eac7297bc9&quot;},&quot;value&quot;:{&quot;image&quot;:{&quot;enabled&quot;:false,&quot;text&quot;:&quot;Figure&quot;},&quot;video&quot;:{&quot;enabled&quot;:false,&quot;text&quot;:&quot;Video&quot;},&quot;audio&quot;:{&quot;enabled&quot;:false,&quot;text&quot;:&quot;Audio&quot;},&quot;table&quot;:{&quot;enabled&quot;:false,&quot;text&quot;:&quot;Table&quot;},&quot;math&quot;:{&quot;enabled&quot;:false,&quot;text&quot;:&quot;Equation&quot;},&quot;iframe&quot;:{&quot;enabled&quot;:false,&quot;text&quot;:&quot;Iframe&quot;}},&quot;facetBindingId&quot;:&quot;65fda716-3a80-4fff-990e-d083a0a5f50b&quot;}]},&quot;PubEdgeDisplay&quot;:{&quot;props&quot;:{&quot;defaultsToCarousel&quot;:{&quot;sources&quot;:[{&quot;scope&quot;:{&quot;kind&quot;:&quot;root&quot;},&quot;value&quot;:true,&quot;facetBindingId&quot;:null},{&quot;scope&quot;:{&quot;kind&quot;:&quot;pub&quot;,&quot;id&quot;:&quot;b2d0adf2-a290-4094-804c-c9eac7297bc9&quot;},&quot;facetBindingId&quot;:&quot;3fdd11f1-c1a0-40f5-9d83-2edc54e9228f&quot;,&quot;value&quot;:true}],&quot;value&quot;:true},&quot;descriptionIsVisible&quot;:{&quot;sources&quot;:[{&quot;scope&quot;:{&quot;kind&quot;:&quot;root&quot;},&quot;value&quot;:true,&quot;facetBindingId&quot;:null},{&quot;scope&quot;:{&quot;kind&quot;:&quot;pub&quot;,&quot;id&quot;:&quot;b2d0adf2-a290-4094-804c-c9eac7297bc9&quot;},&quot;facetBindingId&quot;:&quot;3fdd11f1-c1a0-40f5-9d83-2edc54e9228f&quot;,&quot;value&quot;:true}],&quot;value&quot;:true}},&quot;value&quot;:{&quot;defaultsToCarousel&quot;:true,&quot;descriptionIsVisible&quot;:true},&quot;stack&quot;:[{&quot;scope&quot;:{&quot;kind&quot;:&quot;pub&quot;,&quot;id&quot;:&quot;b2d0adf2-a290-4094-804c-c9eac7297bc9&quot;},&quot;value&quot;:{&quot;defaultsToCarousel&quot;:true,&quot;descriptionIsVisible&quot;:true},&quot;facetBindingId&quot;:&quot;3fdd11f1-c1a0-40f5-9d83-2edc54e9228f&quot;}]},&quot;PubHeaderTheme&quot;:{&quot;props&quot;:{&quot;backgroundImage&quot;:{&quot;sources&quot;:[{&quot;scope&quot;:{&quot;kind&quot;:&quot;root&quot;},&quot;value&quot;:null,&quot;facetBindingId&quot;:null},{&quot;scope&quot;:{&quot;kind&quot;:&quot;pub&quot;,&quot;id&quot;:&quot;b2d0adf2-a290-4094-804c-c9eac7297bc9&quot;},&quot;facetBindingId&quot;:&quot;ebbddf8d-ad8c-49db-9ac2-193f7687e596&quot;,&quot;value&quot;:&quot;&quot;}],&quot;value&quot;:&quot;&quot;},&quot;backgroundColor&quot;:{&quot;sources&quot;:[{&quot;scope&quot;:{&quot;kind&quot;:&quot;root&quot;},&quot;value&quot;:&quot;community&quot;,&quot;facetBindingId&quot;:null},{&quot;scope&quot;:{&quot;kind&quot;:&quot;pub&quot;,&quot;id&quot;:&quot;b2d0adf2-a290-4094-804c-c9eac7297bc9&quot;},&quot;facetBindingId&quot;:&quot;ebbddf8d-ad8c-49db-9ac2-193f7687e596&quot;,&quot;value&quot;:&quot;light&quot;}],&quot;value&quot;:&quot;light&quot;},&quot;textStyle&quot;:{&quot;sources&quot;:[{&quot;scope&quot;:{&quot;kind&quot;:&quot;root&quot;},&quot;value&quot;:&quot;light&quot;,&quot;facetBindingId&quot;:null},{&quot;scope&quot;:{&quot;kind&quot;:&quot;pub&quot;,&quot;id&quot;:&quot;b2d0adf2-a290-4094-804c-c9eac7297bc9&quot;},&quot;facetBindingId&quot;:&quot;ebbddf8d-ad8c-49db-9ac2-193f7687e596&quot;,&quot;value&quot;:&quot;dark&quot;}],&quot;value&quot;:&quot;dark&quot;}},&quot;value&quot;:{&quot;backgroundImage&quot;:&quot;&quot;,&quot;backgroundColor&quot;:&quot;light&quot;,&quot;textStyle&quot;:&quot;dark&quot;},&quot;stack&quot;:[{&quot;scope&quot;:{&quot;kind&quot;:&quot;pub&quot;,&quot;id&quot;:&quot;b2d0adf2-a290-4094-804c-c9eac7297bc9&quot;},&quot;value&quot;:{&quot;backgroundImage&quot;:&quot;&quot;,&quot;backgroundColor&quot;:&quot;light&quot;,&quot;textStyle&quot;:&quot;dark&quot;},&quot;facetBindingId&quot;:&quot;ebbddf8d-ad8c-49db-9ac2-193f7687e596&quot;}]}}},&quot;featureFlags&quot;:{&quot;releaseDiscussionsDialog&quot;:false,&quot;activityDigestSubscribeToggle&quot;:true,&quot;notifications&quot;:true,&quot;submissions&quot;:true,&quot;surveySummer22&quot;:false,&quot;reviews&quot;:false,&quot;comments&quot;:false,&quot;htmlPubHeaderValues&quot;:false,&quot;minimal-header&quot;:false,&quot;minimal-footer&quot;:false,&quot;customScripts&quot;:false,&quot;collapsible-header&quot;:false,&quot;two-column-footer&quot;:false,&quot;suggestedEdits&quot;:false,&quot;collapsible-header-bpc&quot;:false,&quot;customAnalyticsProvider&quot;:false,&quot;newAnalytics&quot;:true,&quot;bodyContributors&quot;:false,&quot;noCookieBanner&quot;:false},&quot;initialNotificationsData&quot;:{&quot;hasNotifications&quot;:false,&quot;hasUnreadNotifications&quot;:false},&quot;dismissedUserDismissables&quot;:{}}"></script><script id="view-data" type="text/plain" data-json="{&quot;pubData&quot;:{&quot;subscription&quot;:null,&quot;id&quot;:&quot;b2d0adf2-a290-4094-804c-c9eac7297bc9&quot;,&quot;slug&quot;:&quot;g2v1z97i&quot;,&quot;title&quot;:&quot;iOS KnowledgeC.db Notifications&quot;,&quot;htmlTitle&quot;:null,&quot;description&quot;:null,&quot;htmlDescription&quot;:null,&quot;avatar&quot;:null,&quot;customPublishedAt&quot;:null,&quot;doi&quot;:null,&quot;labels&quot;:null,&quot;downloads&quot;:null,&quot;metadata&quot;:null,&quot;viewHash&quot;:null,&quot;editHash&quot;:null,&quot;reviewHash&quot;:null,&quot;commentHash&quot;:null,&quot;draftId&quot;:&quot;da208dc1-c175-4dc3-a7c9-19556046fe84&quot;,&quot;communityId&quot;:&quot;b0ac9c28-479a-496c-884c-7ae8fc26e385&quot;,&quot;crossrefDepositRecordId&quot;:null,&quot;scopeSummaryId&quot;:&quot;80404ffd-e950-4360-9a02-44679dacf8c6&quot;,&quot;createdAt&quot;:&quot;2022-04-11T17:27:40.839Z&quot;,&quot;updatedAt&quot;:&quot;2022-11-17T22:41:03.381Z&quot;,&quot;members&quot;:[{&quot;id&quot;:&quot;176a3ecf-b9d6-48d2-b1f9-9c88d01bbd13&quot;,&quot;permissions&quot;:&quot;manage&quot;,&quot;isOwner&quot;:true,&quot;subscribedToActivityDigest&quot;:false,&quot;userId&quot;:&quot;adb58dcd-f040-4ef1-98de-ba664b2246fa&quot;,&quot;pubId&quot;:&quot;b2d0adf2-a290-4094-804c-c9eac7297bc9&quot;,&quot;collectionId&quot;:null,&quot;communityId&quot;:null,&quot;organizationId&quot;:null,&quot;createdAt&quot;:&quot;2022-04-11T17:27:40.883Z&quot;,&quot;updatedAt&quot;:&quot;2022-04-11T17:27:40.883Z&quot;}],&quot;draft&quot;:null,&quot;submission&quot;:null,&quot;crossrefDepositRecord&quot;:null,&quot;scopeSummary&quot;:{&quot;id&quot;:&quot;80404ffd-e950-4360-9a02-44679dacf8c6&quot;,&quot;collections&quot;:0,&quot;pubs&quot;:0,&quot;discussions&quot;:0,&quot;reviews&quot;:0,&quot;submissions&quot;:0,&quot;createdAt&quot;:&quot;2022-04-11T17:27:40.853Z&quot;,&quot;updatedAt&quot;:&quot;2022-04-11T17:27:40.853Z&quot;},&quot;inboundEdges&quot;:[],&quot;outboundEdges&quot;:[],&quot;discussions&quot;:[],&quot;releases&quot;:[{&quot;id&quot;:&quot;c4147c98-309b-462c-ada4-9b70ff4b4e85&quot;,&quot;noteContent&quot;:null,&quot;noteText&quot;:null,&quot;pubId&quot;:&quot;b2d0adf2-a290-4094-804c-c9eac7297bc9&quot;,&quot;userId&quot;:&quot;30aa145b-85e3-45f0-af37-2431daffd78a&quot;,&quot;docId&quot;:&quot;c4e95f31-2a68-49e0-bec4-5ea5b72bc8d4&quot;,&quot;historyKey&quot;:1415,&quot;historyKeyMissing&quot;:false,&quot;createdAt&quot;:&quot;2022-11-03T11:43:49.132Z&quot;,&quot;updatedAt&quot;:&quot;2022-11-03T11:43:49.132Z&quot;}],&quot;reviews&quot;:[],&quot;collectionPubs&quot;:[],&quot;attributions&quot;:[{&quot;id&quot;:&quot;c7cdbdf9-6d0f-4ce6-b83b-3fbd75ecebb1&quot;,&quot;name&quot;:null,&quot;avatar&quot;:null,&quot;title&quot;:null,&quot;order&quot;:0.5,&quot;isAuthor&quot;:true,&quot;roles&quot;:null,&quot;affiliation&quot;:null,&quot;orcid&quot;:null,&quot;userId&quot;:&quot;2b028128-c5e1-47da-8c59-af7b26d83970&quot;,&quot;pubId&quot;:&quot;b2d0adf2-a290-4094-804c-c9eac7297bc9&quot;,&quot;createdAt&quot;:&quot;2022-04-11T17:29:37.997Z&quot;,&quot;updatedAt&quot;:&quot;2022-04-11T17:29:37.997Z&quot;,&quot;user&quot;:{&quot;id&quot;:&quot;2b028128-c5e1-47da-8c59-af7b26d83970&quot;,&quot;firstName&quot;:&quot;Scott&quot;,&quot;lastName&quot;:&quot;Koenig&quot;,&quot;fullName&quot;:&quot;Scott Koenig&quot;,&quot;avatar&quot;:&quot;https://assets.pubpub.org/f088ur44/01599601723720.jpg&quot;,&quot;slug&quot;:&quot;scott-koenig&quot;,&quot;initials&quot;:&quot;SK&quot;,&quot;title&quot;:&quot;DFIR Examiner&quot;,&quot;orcid&quot;:&quot;&quot;}}],&quot;exports&quot;:[{&quot;id&quot;:&quot;ecd0ddae-cdc7-4319-b6fe-4a6d2337502e&quot;,&quot;format&quot;:&quot;epub&quot;,&quot;url&quot;:&quot;https://assets.pubpub.org/l533bwtn/b2d0adf2-a290-4094-804c-c9eac7297bc9.epub&quot;,&quot;historyKey&quot;:1415,&quot;pubId&quot;:&quot;b2d0adf2-a290-4094-804c-c9eac7297bc9&quot;,&quot;workerTaskId&quot;:&quot;0993e005-1803-4114-9113-93cddeede790&quot;,&quot;createdAt&quot;:&quot;2022-11-03T11:43:49.769Z&quot;,&quot;updatedAt&quot;:&quot;2022-11-03T11:44:14.481Z&quot;},{&quot;id&quot;:&quot;2911a13d-c7cc-4b09-a35e-ee3042d7f483&quot;,&quot;format&quot;:&quot;docx&quot;,&quot;url&quot;:&quot;https://assets.pubpub.org/b72k9c3c/b2d0adf2-a290-4094-804c-c9eac7297bc9.docx&quot;,&quot;historyKey&quot;:1415,&quot;pubId&quot;:&quot;b2d0adf2-a290-4094-804c-c9eac7297bc9&quot;,&quot;workerTaskId&quot;:&quot;472d0793-409d-42d9-95b5-c0cfbb63c02a&quot;,&quot;createdAt&quot;:&quot;2022-11-03T11:43:49.770Z&quot;,&quot;updatedAt&quot;:&quot;2022-11-03T11:44:15.967Z&quot;},{&quot;id&quot;:&quot;52c1a70c-24bd-41de-b854-bc3bfb369ebc&quot;,&quot;format&quot;:&quot;odt&quot;,&quot;url&quot;:&quot;https://assets.pubpub.org/k0a3lwgr/b2d0adf2-a290-4094-804c-c9eac7297bc9.odt&quot;,&quot;historyKey&quot;:1415,&quot;pubId&quot;:&quot;b2d0adf2-a290-4094-804c-c9eac7297bc9&quot;,&quot;workerTaskId&quot;:&quot;7a8c3da1-6701-4e6f-90c7-4e1f74222475&quot;,&quot;createdAt&quot;:&quot;2022-11-03T11:43:50.164Z&quot;,&quot;updatedAt&quot;:&quot;2022-11-03T11:44:16.098Z&quot;},{&quot;id&quot;:&quot;d3a71496-0c38-49a3-bcb4-0844baa8f2ac&quot;,&quot;format&quot;:&quot;html&quot;,&quot;url&quot;:&quot;https://assets.pubpub.org/8oixmger/b2d0adf2-a290-4094-804c-c9eac7297bc9.html&quot;,&quot;historyKey&quot;:1415,&quot;pubId&quot;:&quot;b2d0adf2-a290-4094-804c-c9eac7297bc9&quot;,&quot;workerTaskId&quot;:&quot;136fb4b5-d143-4081-b6ff-a3469ded0fa8&quot;,&quot;createdAt&quot;:&quot;2022-11-03T11:43:49.767Z&quot;,&quot;updatedAt&quot;:&quot;2022-11-03T11:44:09.761Z&quot;},{&quot;id&quot;:&quot;4291c1a4-be44-48e6-a262-a85364dfbfc4&quot;,&quot;format&quot;:&quot;json&quot;,&quot;url&quot;:&quot;https://assets.pubpub.org/4tl1p4rx/b2d0adf2-a290-4094-804c-c9eac7297bc9.json&quot;,&quot;historyKey&quot;:1415,&quot;pubId&quot;:&quot;b2d0adf2-a290-4094-804c-c9eac7297bc9&quot;,&quot;workerTaskId&quot;:&quot;32a07912-5299-4f6d-88bd-564e0e2c729d&quot;,&quot;createdAt&quot;:&quot;2022-11-03T11:43:50.131Z&quot;,&quot;updatedAt&quot;:&quot;2022-11-03T11:44:10.055Z&quot;},{&quot;id&quot;:&quot;921d4a25-ee6b-47f9-834a-c99bffba7a4d&quot;,&quot;format&quot;:&quot;plain&quot;,&quot;url&quot;:&quot;https://assets.pubpub.org/ybtzg5an/b2d0adf2-a290-4094-804c-c9eac7297bc9.txt&quot;,&quot;historyKey&quot;:1415,&quot;pubId&quot;:&quot;b2d0adf2-a290-4094-804c-c9eac7297bc9&quot;,&quot;workerTaskId&quot;:&quot;1cb64280-cc82-4a0a-b243-8a895387c594&quot;,&quot;createdAt&quot;:&quot;2022-11-03T11:43:50.164Z&quot;,&quot;updatedAt&quot;:&quot;2022-11-03T11:44:11.077Z&quot;},{&quot;id&quot;:&quot;a324a518-0fb2-48a2-ac78-3867f8dd65f4&quot;,&quot;format&quot;:&quot;markdown&quot;,&quot;url&quot;:&quot;https://assets.pubpub.org/9p2fqxsb/b2d0adf2-a290-4094-804c-c9eac7297bc9.md&quot;,&quot;historyKey&quot;:1415,&quot;pubId&quot;:&quot;b2d0adf2-a290-4094-804c-c9eac7297bc9&quot;,&quot;workerTaskId&quot;:&quot;9a3829bd-eee6-4e65-949c-eab01691a16b&quot;,&quot;createdAt&quot;:&quot;2022-11-03T11:43:49.767Z&quot;,&quot;updatedAt&quot;:&quot;2022-11-03T11:44:11.497Z&quot;},{&quot;id&quot;:&quot;59197573-daae-43fe-a3d9-a673965da4ad&quot;,&quot;format&quot;:&quot;tex&quot;,&quot;url&quot;:&quot;https://assets.pubpub.org/fadqgydj/b2d0adf2-a290-4094-804c-c9eac7297bc9.tex&quot;,&quot;historyKey&quot;:1415,&quot;pubId&quot;:&quot;b2d0adf2-a290-4094-804c-c9eac7297bc9&quot;,&quot;workerTaskId&quot;:&quot;8784e277-5044-4489-918a-596b19bbe581&quot;,&quot;createdAt&quot;:&quot;2022-11-03T11:43:50.126Z&quot;,&quot;updatedAt&quot;:&quot;2022-11-03T11:44:11.748Z&quot;},{&quot;id&quot;:&quot;cc71c962-066f-462e-bda9-5bc213bfdd36&quot;,&quot;format&quot;:&quot;jats&quot;,&quot;url&quot;:&quot;https://assets.pubpub.org/2f19h3ii/b2d0adf2-a290-4094-804c-c9eac7297bc9.xml&quot;,&quot;historyKey&quot;:1415,&quot;pubId&quot;:&quot;b2d0adf2-a290-4094-804c-c9eac7297bc9&quot;,&quot;workerTaskId&quot;:&quot;9ef53a39-e6e2-451b-96c3-67ade2e6dfc5&quot;,&quot;createdAt&quot;:&quot;2022-11-03T11:43:50.175Z&quot;,&quot;updatedAt&quot;:&quot;2022-11-03T11:44:16.850Z&quot;},{&quot;id&quot;:&quot;f300b55d-4fc7-404f-8da9-bacf92f24186&quot;,&quot;format&quot;:&quot;pdf&quot;,&quot;url&quot;:&quot;https://s3.amazonaws.com/assets.pubpub.org/8plrdb64p0xjvy9xb8zj7aiha5mwp3q0.pdf&quot;,&quot;historyKey&quot;:1415,&quot;pubId&quot;:&quot;b2d0adf2-a290-4094-804c-c9eac7297bc9&quot;,&quot;workerTaskId&quot;:&quot;88e95829-d123-4a2b-9161-58d86290d633&quot;,&quot;createdAt&quot;:&quot;2022-11-03T11:43:49.770Z&quot;,&quot;updatedAt&quot;:&quot;2022-11-03T11:44:21.076Z&quot;}],&quot;isRelease&quot;:true,&quot;releaseNumber&quot;:1,&quot;initialStructuredCitations&quot;:{},&quot;citationData&quot;:{&quot;pub&quot;:{&quot;default&quot;:&quot;&lt;div class=\&quot;csl-bib-body\&quot;&gt; &lt;div data-csl-entry-id=\&quot;temp_id_12530990288487698\&quot; class=\&quot;csl-entry\&quot;&gt;Koenig, S. (2022). iOS KnowledgeC.db Notifications. &lt;i&gt;DFIR Review&lt;/i&gt;. Retrieved from https://dfir.pubpub.org/pub/g2v1z97i&lt;/div&gt;&lt;/div&gt;&quot;,&quot;apa&quot;:&quot;&lt;div class=\&quot;csl-bib-body\&quot;&gt; &lt;div data-csl-entry-id=\&quot;temp_id_12530990288487698\&quot; class=\&quot;csl-entry\&quot;&gt;Koenig, S. (2022). iOS KnowledgeC.db Notifications. &lt;i&gt;DFIR Review&lt;/i&gt;. https://dfir.pubpub.org/pub/g2v1z97i&lt;/div&gt;&lt;/div&gt;&quot;,&quot;harvard&quot;:&quot;&lt;div class=\&quot;csl-bib-body\&quot;&gt; &lt;div data-csl-entry-id=\&quot;temp_id_12530990288487698\&quot; class=\&quot;csl-entry\&quot;&gt;Koenig, S. (2022) &#x27;iOS KnowledgeC.db Notifications&#x27;, &lt;i&gt;DFIR Review&lt;/i&gt; [Preprint]. Available at: https://dfir.pubpub.org/pub/g2v1z97i.&lt;/div&gt;&lt;/div&gt;&quot;,&quot;vancouver&quot;:&quot;&lt;div class=\&quot;csl-bib-body\&quot;&gt; &lt;div data-csl-entry-id=\&quot;temp_id_12530990288487698\&quot; class=\&quot;csl-entry\&quot;&gt; &lt;div class=\&quot;csl-left-margin\&quot;&gt;1. &lt;/div&gt;&lt;div class=\&quot;csl-right-inline\&quot;&gt;Koenig S. iOS KnowledgeC.db Notifications. DFIR Review [Internet]. 2022 Nov 3; Available from: https://dfir.pubpub.org/pub/g2v1z97i&lt;/div&gt; &lt;/div&gt;&lt;/div&gt;&quot;,&quot;bibtex&quot;:&quot;@article{Koenig2022iOS,\n\tauthor = {Koenig, Scott},\n\tjournal = {DFIR Review},\n\tyear = {2022},\n\tmonth = {nov 3},\n\tnote = {https://dfir.pubpub.org/pub/g2v1z97i},\n\tpublisher = {},\n\ttitle = {iOS {KnowledgeC}.db {Notifications}},\n}\n\n&quot;}},&quot;siblingEdges&quot;:[],&quot;initialDoc&quot;:{&quot;type&quot;:&quot;doc&quot;,&quot;attrs&quot;:{&quot;meta&quot;:{}},&quot;content&quot;:[{&quot;type&quot;:&quot;heading&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;synopsis&quot;,&quot;rtl&quot;:null,&quot;level&quot;:1,&quot;fixedId&quot;:&quot;&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;Synopsis&quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;table&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;7pnvpve7ye&quot;,&quot;hideLabel&quot;:false},&quot;content&quot;:[{&quot;type&quot;:&quot;table_row&quot;,&quot;content&quot;:[{&quot;type&quot;:&quot;table_cell&quot;,&quot;attrs&quot;:{&quot;colspan&quot;:1,&quot;rowspan&quot;:1,&quot;colwidth&quot;:null,&quot;background&quot;:null},&quot;content&quot;:[{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;ca09dpu7kq&quot;,&quot;rtl&quot;:null,&quot;class&quot;:null,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;Forensics Question:&quot;,&quot;type&quot;:&quot;text&quot;,&quot;marks&quot;:[{&quot;type&quot;:&quot;strong&quot;}]},{&quot;text&quot;:&quot; &quot;,&quot;type&quot;:&quot;text&quot;},{&quot;type&quot;:&quot;hard_break&quot;},{&quot;text&quot;:&quot;What are the different types of notifications we will have from the KnowledgeC.db and what do they mean? &quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;ncf47u53que&quot;,&quot;rtl&quot;:null,&quot;class&quot;:null,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;Can we determine if the user interacted with device after a notification was received and displayed on an iPhone?&quot;,&quot;type&quot;:&quot;text&quot;}]}]},{&quot;type&quot;:&quot;table_cell&quot;,&quot;attrs&quot;:{&quot;colspan&quot;:1,&quot;rowspan&quot;:1,&quot;colwidth&quot;:null,&quot;background&quot;:null},&quot;content&quot;:[{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;n4x03e4rspv&quot;,&quot;rtl&quot;:null,&quot;class&quot;:null,&quot;textAlign&quot;:null}},{&quot;type&quot;:&quot;image&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;3z7uqe08aw&quot;,&quot;url&quot;:&quot;https://assets.pubpub.org/otm7hspl/01604324623084.png&quot;,&quot;href&quot;:null,&quot;size&quot;:50,&quot;align&quot;:&quot;center&quot;,&quot;altText&quot;:&quot;&quot;,&quot;caption&quot;:&quot;&quot;,&quot;hideLabel&quot;:false,&quot;fullResolution&quot;:false}}]}]},{&quot;type&quot;:&quot;table_row&quot;,&quot;content&quot;:[{&quot;type&quot;:&quot;table_cell&quot;,&quot;attrs&quot;:{&quot;colspan&quot;:1,&quot;rowspan&quot;:1,&quot;colwidth&quot;:null,&quot;background&quot;:null},&quot;content&quot;:[{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;tapzxzhb9k&quot;,&quot;rtl&quot;:null,&quot;class&quot;:null,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;OS Version:&quot;,&quot;type&quot;:&quot;text&quot;,&quot;marks&quot;:[{&quot;type&quot;:&quot;strong&quot;}]},{&quot;text&quot;:&quot; &quot;,&quot;type&quot;:&quot;text&quot;},{&quot;type&quot;:&quot;hard_break&quot;},{&quot;text&quot;:&quot;iOS 14.7.1 (18G82)&quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;n591ehow3km&quot;,&quot;rtl&quot;:null,&quot;class&quot;:null,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;iOS 14.4.2 (18D70)&quot;,&quot;type&quot;:&quot;text&quot;},{&quot;type&quot;:&quot;hard_break&quot;}]}]},{&quot;type&quot;:&quot;table_cell&quot;,&quot;attrs&quot;:{&quot;colspan&quot;:1,&quot;rowspan&quot;:1,&quot;colwidth&quot;:null,&quot;background&quot;:null},&quot;content&quot;:[{&quot;type&quot;:&quot;image&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;nlkqjkuo9y6&quot;,&quot;url&quot;:&quot;https://assets.pubpub.org/9636kems/61615840870473.png&quot;,&quot;href&quot;:null,&quot;size&quot;:50,&quot;align&quot;:&quot;center&quot;,&quot;altText&quot;:&quot;&quot;,&quot;caption&quot;:&quot;&quot;,&quot;hideLabel&quot;:false,&quot;fullResolution&quot;:false}}]}]},{&quot;type&quot;:&quot;table_row&quot;,&quot;content&quot;:[{&quot;type&quot;:&quot;table_cell&quot;,&quot;attrs&quot;:{&quot;colspan&quot;:1,&quot;rowspan&quot;:1,&quot;colwidth&quot;:null,&quot;background&quot;:null},&quot;content&quot;:[{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;zc8ryi5sxh&quot;,&quot;rtl&quot;:null,&quot;class&quot;:null,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;Tools:&quot;,&quot;type&quot;:&quot;text&quot;,&quot;marks&quot;:[{&quot;type&quot;:&quot;strong&quot;}]},{&quot;text&quot;:&quot; &quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;nvoaf3co3p6&quot;,&quot;rtl&quot;:null,&quot;class&quot;:null,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;Cellebrite UFED 4PC 7.47.0.247&quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;ncw27heev64&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;Cellebrite Physical Analyzer 7.48.1.3 – Does not decode KnowledgeC.db /notification/usage&quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;nckft86vwnj&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;Magnet AXIOM 5.4.0.26185&quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;nceajwn8y1k&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;ArtEx 2.0.0.4&quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;nbjt1sjuitt&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;iLEAPP 1.9.4 – Does not decode KnowledgeC.db /notification/usage&quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;nbuqnlrxgak&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;APOLLO 1.4&quot;,&quot;type&quot;:&quot;text&quot;}]}]},{&quot;type&quot;:&quot;table_cell&quot;,&quot;attrs&quot;:{&quot;colspan&quot;:1,&quot;rowspan&quot;:1,&quot;colwidth&quot;:null,&quot;background&quot;:null},&quot;content&quot;:[{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;n7fsdfw313q&quot;,&quot;rtl&quot;:null,&quot;class&quot;:null,&quot;textAlign&quot;:null}}]}]}]},{&quot;type&quot;:&quot;heading&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;introduction&quot;,&quot;rtl&quot;:null,&quot;level&quot;:1,&quot;fixedId&quot;:&quot;&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;Introduction&quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;nl0q2rww66z&quot;,&quot;rtl&quot;:null,&quot;class&quot;:null,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;Cell phone use is routine. Our cell phones are really an extension of ourselves. We carry them around not only to make calls and messages, but they are also our daily planners, to-do lists, and entertainment resources. We use them at all times of the day – the alarms in the morning, email and social media all day, listening to music, and even reading books at night in bed. They can be a distraction, but does that stop us from checking them all day, especially when a notification pops up? Sometimes we just look to see what the notification is and move on with our business. Sometimes, a notification needs to be handled right away. How do iPhones, or at least those running iOS 14, store notifications, and what happened with those notifications?&quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;nrwcv8qmnd4&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot; While using some commercial and some free forensic tools, I noticed very few of them decode the &quot;,&quot;type&quot;:&quot;text&quot;},{&quot;text&quot;:&quot;KnowledgeC.db/notification/usage&quot;,&quot;type&quot;:&quot;text&quot;,&quot;marks&quot;:[{&quot;type&quot;:&quot;em&quot;},{&quot;type&quot;:&quot;strong&quot;}]},{&quot;text&quot;:&quot; data. The ones that do provide very little information about what the notification types mean.&quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;nkdnqwptlml&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot; Thanks to Sarah Edwards and several others who previously researched the &quot;,&quot;type&quot;:&quot;text&quot;},{&quot;text&quot;:&quot;KnowledgeC.db, &quot;,&quot;type&quot;:&quot;text&quot;,&quot;marks&quot;:[{&quot;type&quot;:&quot;em&quot;},{&quot;type&quot;:&quot;strong&quot;}]},{&quot;text&quot;:&quot;we know it to be a great artifact. It can be used to determine a lot of device activities and a user’s pattern of life, but can we use that data to determine if a user interacted with the device after it received a notification?&quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;nimj8k7ahy7&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot; Based on previous research and publications, in conjunction this research, I believe not only can we determine if a user interacted with the device after receiving a notification, but I also believe we can determine how and when that interaction occurred.&quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;ndb9vfz2fs4&quot;,&quot;rtl&quot;:null,&quot;class&quot;:null,&quot;textAlign&quot;:null}},{&quot;type&quot;:&quot;heading&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;artifact-location&quot;,&quot;rtl&quot;:null,&quot;level&quot;:2,&quot;fixedId&quot;:&quot;&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;Artifact Location:&quot;,&quot;type&quot;:&quot;text&quot;,&quot;marks&quot;:[{&quot;type&quot;:&quot;strong&quot;}]}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;nvib9kmh5zf&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;·       &quot;,&quot;type&quot;:&quot;text&quot;},{&quot;text&quot;:&quot;private\\var\\mobile\\Library\\CoreDuet\\Knowledge\\&quot;,&quot;type&quot;:&quot;text&quot;,&quot;marks&quot;:[{&quot;type&quot;:&quot;em&quot;},{&quot;type&quot;:&quot;strong&quot;}]}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;no3ykjo5d3i&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;The notification data I will be discussing is stored in the &quot;,&quot;type&quot;:&quot;text&quot;},{&quot;text&quot;:&quot;KnowledgeC.db ZOBJECTS &quot;,&quot;type&quot;:&quot;text&quot;,&quot;marks&quot;:[{&quot;type&quot;:&quot;em&quot;},{&quot;type&quot;:&quot;strong&quot;}]},{&quot;text&quot;:&quot;table and&quot;,&quot;type&quot;:&quot;text&quot;},{&quot;text&quot;:&quot;ZSTRUCTUREDMETADATA &quot;,&quot;type&quot;:&quot;text&quot;,&quot;marks&quot;:[{&quot;type&quot;:&quot;em&quot;},{&quot;type&quot;:&quot;strong&quot;}]},{&quot;text&quot;:&quot;table&quot;,&quot;type&quot;:&quot;text&quot;},{&quot;text&quot;:&quot;.&quot;,&quot;type&quot;:&quot;text&quot;,&quot;marks&quot;:[{&quot;type&quot;:&quot;em&quot;},{&quot;type&quot;:&quot;strong&quot;}]}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;n0wpm4ffvv1&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot; &quot;,&quot;type&quot;:&quot;text&quot;,&quot;marks&quot;:[{&quot;type&quot;:&quot;em&quot;},{&quot;type&quot;:&quot;strong&quot;}]}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;nctss9ttyfv&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;The data I will be discussing in detail is:&quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;nqq1z5wzcic&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;·       &quot;,&quot;type&quot;:&quot;text&quot;},{&quot;text&quot;:&quot;ZSTREAMNAME &quot;,&quot;type&quot;:&quot;text&quot;,&quot;marks&quot;:[{&quot;type&quot;:&quot;em&quot;},{&quot;type&quot;:&quot;strong&quot;}]},{&quot;text&quot;:&quot;= &quot;,&quot;type&quot;:&quot;text&quot;},{&quot;text&quot;:&quot;/notification/usage&quot;,&quot;type&quot;:&quot;text&quot;,&quot;marks&quot;:[{&quot;type&quot;:&quot;em&quot;},{&quot;type&quot;:&quot;strong&quot;}]}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;np1gzbdn5kk&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;·       &quot;,&quot;type&quot;:&quot;text&quot;},{&quot;text&quot;:&quot;ZVALUESTRING&quot;,&quot;type&quot;:&quot;text&quot;,&quot;marks&quot;:[{&quot;type&quot;:&quot;em&quot;},{&quot;type&quot;:&quot;strong&quot;}]},{&quot;text&quot;:&quot; = The notification types, which are listed below&quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;noss8wduju1&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;o   &quot;,&quot;type&quot;:&quot;text&quot;},{&quot;text&quot;:&quot;Clear&quot;,&quot;type&quot;:&quot;text&quot;,&quot;marks&quot;:[{&quot;type&quot;:&quot;em&quot;},{&quot;type&quot;:&quot;strong&quot;}]}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;n1ep3e7zlcw&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;o   &quot;,&quot;type&quot;:&quot;text&quot;},{&quot;text&quot;:&quot;DefaultAction&quot;,&quot;type&quot;:&quot;text&quot;,&quot;marks&quot;:[{&quot;type&quot;:&quot;em&quot;},{&quot;type&quot;:&quot;strong&quot;}]}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;nh6r8zh16u2&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;o   &quot;,&quot;type&quot;:&quot;text&quot;},{&quot;text&quot;:&quot;Dismiss&quot;,&quot;type&quot;:&quot;text&quot;,&quot;marks&quot;:[{&quot;type&quot;:&quot;em&quot;},{&quot;type&quot;:&quot;strong&quot;}]}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;n2wz4ijaj5v&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;o   &quot;,&quot;type&quot;:&quot;text&quot;},{&quot;text&quot;:&quot;Hidden&quot;,&quot;type&quot;:&quot;text&quot;,&quot;marks&quot;:[{&quot;type&quot;:&quot;em&quot;},{&quot;type&quot;:&quot;strong&quot;}]}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;ncnajbhqb2w&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;o   &quot;,&quot;type&quot;:&quot;text&quot;},{&quot;text&quot;:&quot;IndirectClear&quot;,&quot;type&quot;:&quot;text&quot;,&quot;marks&quot;:[{&quot;type&quot;:&quot;em&quot;},{&quot;type&quot;:&quot;strong&quot;}]}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;nz5je6jt39j&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;o   &quot;,&quot;type&quot;:&quot;text&quot;},{&quot;text&quot;:&quot;Orb &quot;,&quot;type&quot;:&quot;text&quot;,&quot;marks&quot;:[{&quot;type&quot;:&quot;em&quot;},{&quot;type&quot;:&quot;strong&quot;}]}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;n92f9lkv5vm&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;o   &quot;,&quot;type&quot;:&quot;text&quot;},{&quot;text&quot;:&quot;Receive&quot;,&quot;type&quot;:&quot;text&quot;,&quot;marks&quot;:[{&quot;type&quot;:&quot;em&quot;},{&quot;type&quot;:&quot;strong&quot;}]}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;nl8xdzl5yts&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;·       &quot;,&quot;type&quot;:&quot;text&quot;},{&quot;text&quot;:&quot;Z_DKNOTIFICATIONUSAGEMETADATAKEY__BUNDLEID &quot;,&quot;type&quot;:&quot;text&quot;,&quot;marks&quot;:[{&quot;type&quot;:&quot;em&quot;},{&quot;type&quot;:&quot;strong&quot;}]},{&quot;text&quot;:&quot;= the bundle or application for which the notification is related. In the database, the bundle ID is only listed with a &quot;,&quot;type&quot;:&quot;text&quot;},{&quot;text&quot;:&quot;Receive&quot;,&quot;type&quot;:&quot;text&quot;,&quot;marks&quot;:[{&quot;type&quot;:&quot;em&quot;},{&quot;type&quot;:&quot;strong&quot;}]},{&quot;text&quot;:&quot; notification type.&quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;nreey7940hl&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;·       &quot;,&quot;type&quot;:&quot;text&quot;},{&quot;text&quot;:&quot;Z_DKNOTIFICATIONUSAGEMETADATAKEY__IDENTIFIER&quot;,&quot;type&quot;:&quot;text&quot;,&quot;marks&quot;:[{&quot;type&quot;:&quot;em&quot;},{&quot;type&quot;:&quot;strong&quot;}]},{&quot;text&quot;:&quot; = semi-unique identifier that can be used to link different notification types.&quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;n1x2o0s9guj&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot; &quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;ndsw39rc73x&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;Note:&quot;,&quot;type&quot;:&quot;text&quot;,&quot;marks&quot;:[{&quot;type&quot;:&quot;em&quot;},{&quot;type&quot;:&quot;strong&quot;}]},{&quot;text&quot;:&quot; I mention the &quot;,&quot;type&quot;:&quot;text&quot;},{&quot;text&quot;:&quot;Z_DKNOTIFICATIONUSAGEMETADATAKEY__IDENTIFIER &quot;,&quot;type&quot;:&quot;text&quot;,&quot;marks&quot;:[{&quot;type&quot;:&quot;em&quot;},{&quot;type&quot;:&quot;strong&quot;}]},{&quot;text&quot;:&quot;as a semi-unique identifier because in some cases, like the Do Not Disturb notifications, the identifier repeats itself, but we can still use this to link the notification types together while analyzing the data.&quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;ncf26m4j466&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot; &quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;nmw1qkviqn6&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;Here is a link to GitHub for a SQLite query that might assist with analyzing the database&quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;nrn879vlwka&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot; &quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;n4s7fe6zliq&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;Device Settings:&quot;,&quot;type&quot;:&quot;text&quot;,&quot;marks&quot;:[{&quot;type&quot;:&quot;strong&quot;}]}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;n5rcn1lweup&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;When using this data in a forensic analysis, be sure to check the device notification settings. During testing, all applications tested had all notifications turned ON. These are the settings a user can change that could restrict the notification types you might encounter during an analysis. Figure 1 shows the settings menu for the Apple Messenger Application (com.apple.MobileSMS). Please check out the resources section to review additional research.&quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;n66n5w4e2ij&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot; &quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;n2uvjrz1z7d&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null}},{&quot;type&quot;:&quot;image&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;nwjzs9zwm6t&quot;,&quot;url&quot;:&quot;https://assets.pubpub.org/ygt9zlof/21659644944980.png&quot;,&quot;href&quot;:null,&quot;size&quot;:50,&quot;align&quot;:&quot;center&quot;,&quot;altText&quot;:&quot;&quot;,&quot;caption&quot;:&quot;&quot;,&quot;hideLabel&quot;:false,&quot;fullResolution&quot;:false}},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;navqridz0eu&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot; &quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;nojk56cev8m&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;Figure 1&quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;n2nnmze8kqg&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot; &quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;nzfg5wnwttv&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;Research and Testing: &quot;,&quot;type&quot;:&quot;text&quot;,&quot;marks&quot;:[{&quot;type&quot;:&quot;strong&quot;}]}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;nmtd1aniyc9&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;The following sections will demonstrate how I was able to determine each notification type and how I recreated them in testing. &quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;nz7vw606qax&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot; &quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;n5z8blelkkc&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;Note&quot;,&quot;type&quot;:&quot;text&quot;,&quot;marks&quot;:[{&quot;type&quot;:&quot;em&quot;},{&quot;type&quot;:&quot;strong&quot;}]},{&quot;text&quot;:&quot;: During testing, Magnet AXIOM, ArtEx, and APOLLO parsed the &quot;,&quot;type&quot;:&quot;text&quot;},{&quot;text&quot;:&quot;KnowledgeC.db&quot;,&quot;type&quot;:&quot;text&quot;,&quot;marks&quot;:[{&quot;type&quot;:&quot;em&quot;},{&quot;type&quot;:&quot;strong&quot;}]},{&quot;text&quot;:&quot; notifications. Cellebrite Physical Analyzer and iLEAPP did not. iLEAPP had a section for iOS notifications, but the data was being parsed from&quot;,&quot;type&quot;:&quot;text&quot;},{&quot;text&quot;:&quot;DeliveredNotifications.plist, &quot;,&quot;type&quot;:&quot;text&quot;,&quot;marks&quot;:[{&quot;type&quot;:&quot;em&quot;},{&quot;type&quot;:&quot;strong&quot;}]},{&quot;text&quot;:&quot;not the notifications from &quot;,&quot;type&quot;:&quot;text&quot;},{&quot;text&quot;:&quot;KnowledgeC.db,&quot;,&quot;type&quot;:&quot;text&quot;,&quot;marks&quot;:[{&quot;type&quot;:&quot;em&quot;},{&quot;type&quot;:&quot;strong&quot;}]},{&quot;text&quot;:&quot; review the resources for additional information. &quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;npmj3lacz2t&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot; &quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;n45x0gys5bq&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;During testing, the test device was connected to ArtEx via ArtExtraction – Live Connection. This allowed me to run multiple tests, and I did not have to repeatedly acquire full file system dumps. The acquisition methods and tools listed above were used to validate what was being displayed in ArtEx.   &quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;nafkquv0zbs&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot; &quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;nf5u57gbgnk&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;Note:&quot;,&quot;type&quot;:&quot;text&quot;,&quot;marks&quot;:[{&quot;type&quot;:&quot;em&quot;},{&quot;type&quot;:&quot;strong&quot;}]},{&quot;text&quot;:&quot; If you are a curious how to perform your own testing using ArtEx, here is a link to a recorded session of Cellebrite’s Ctrl + Alt + Del where ArtEx creator Ian Whiffin discusses how to use the ArtEx Live Connection to conduct research: &quot;,&quot;type&quot;:&quot;text&quot;},{&quot;text&quot;:&quot;https://www.cellebrite.com/en/using-artifact-examiner-artex-to-investigate-an-artifact-on-a-device/&quot;,&quot;type&quot;:&quot;text&quot;,&quot;marks&quot;:[{&quot;type&quot;:&quot;link&quot;,&quot;attrs&quot;:{&quot;href&quot;:&quot;https://www.cellebrite.com/en/using-artifact-examiner-artex-to-investigate-an-artifact-on-a-device/&quot;,&quot;title&quot;:null,&quot;target&quot;:null}}]}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;neqm92odl59&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot; &quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;nqpy1o3mdvp&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;Receive Notification Type:&quot;,&quot;type&quot;:&quot;text&quot;,&quot;marks&quot;:[{&quot;type&quot;:&quot;strong&quot;}]}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;ne9tjiiwh6n&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;A &quot;,&quot;type&quot;:&quot;text&quot;},{&quot;text&quot;:&quot;Receive&quot;,&quot;type&quot;:&quot;text&quot;,&quot;marks&quot;:[{&quot;type&quot;:&quot;em&quot;},{&quot;type&quot;:&quot;strong&quot;}]},{&quot;text&quot;:&quot; notification type is when a notification is received and displayed on the device. Depending on user interaction and device status the notification could be viewed from the springboard, the Lock Screen and/or the Notification Center. &quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;nbkes9bk1j5&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot; &quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;ncfleq4ff3t&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;Figure 2 has an example of a &quot;,&quot;type&quot;:&quot;text&quot;},{&quot;text&quot;:&quot;Receive&quot;,&quot;type&quot;:&quot;text&quot;,&quot;marks&quot;:[{&quot;type&quot;:&quot;em&quot;},{&quot;type&quot;:&quot;strong&quot;}]},{&quot;text&quot;:&quot; notification type in ArtEx. During testing, this was created by sending the test device a text message (SMS). The test device screen came on and displayed the notification. After a few seconds, the screen automatically turned OFF and went dark. I did not touch or interact with the device or the screen.&quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;na1392iepum&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot; &quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;image&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;n8a1b24dgvf&quot;,&quot;url&quot;:&quot;https://assets.pubpub.org/f6rpcgyb/71659645034872.jpeg&quot;,&quot;href&quot;:null,&quot;size&quot;:94,&quot;align&quot;:&quot;center&quot;,&quot;altText&quot;:&quot;&quot;,&quot;caption&quot;:&quot;&quot;,&quot;hideLabel&quot;:false,&quot;fullResolution&quot;:false}},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;nim2x12b5ud&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;Figure 2&quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;nee6x8svum8&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot; &quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;nikk9d4sxdn&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;I turned the screen ON and OFF several times, using side button. During that time, I captured a screenshot of what the notification looked like on the device, seen in Figure 3. This did not affect or change the notification as it remained visible on the Lock Screen.&quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;nbwha3v1omv&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot; &quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;ntw6c6leyry&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null}},{&quot;type&quot;:&quot;image&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;nic8l5g004w&quot;,&quot;url&quot;:&quot;https://assets.pubpub.org/x0iv3gaw/41659645064014.jpeg&quot;,&quot;href&quot;:null,&quot;size&quot;:50,&quot;align&quot;:&quot;center&quot;,&quot;altText&quot;:&quot;&quot;,&quot;caption&quot;:&quot;&quot;,&quot;hideLabel&quot;:false,&quot;fullResolution&quot;:false}},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;nsp67sxlin5&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;Figure 3&quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;nk73d6i716d&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot; &quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;nlvfuqspj11&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;At 2:14 PM, I made a phone call to the test device, which was unanswered. When the phone call was received by the device and the InCallService application was brought into focus. A &quot;,&quot;type&quot;:&quot;text&quot;},{&quot;text&quot;:&quot;Receive&quot;,&quot;type&quot;:&quot;text&quot;,&quot;marks&quot;:[{&quot;type&quot;:&quot;em&quot;},{&quot;type&quot;:&quot;strong&quot;}]},{&quot;text&quot;:&quot; notification type was created, seen in Figure 4 and Figure 5.&quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;nn6e0y0wiqv&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot; &quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;naia5vw25mu&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null}},{&quot;type&quot;:&quot;image&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;nm367nxwlcz&quot;,&quot;url&quot;:&quot;https://assets.pubpub.org/xw6lxvgp/21659645088930.jpeg&quot;,&quot;href&quot;:null,&quot;size&quot;:100,&quot;align&quot;:&quot;center&quot;,&quot;altText&quot;:&quot;&quot;,&quot;caption&quot;:&quot;&quot;,&quot;hideLabel&quot;:false,&quot;fullResolution&quot;:false}},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;n6bdt2jq72a&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;Figure 4&quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;nivfmie1kin&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot; &quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;nmey298z4cq&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null}},{&quot;type&quot;:&quot;image&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;n1ixmfgqi7r&quot;,&quot;url&quot;:&quot;https://assets.pubpub.org/re61xtc7/41659645110209.jpeg&quot;,&quot;href&quot;:null,&quot;size&quot;:50,&quot;align&quot;:&quot;center&quot;,&quot;altText&quot;:&quot;&quot;,&quot;caption&quot;:&quot;&quot;,&quot;hideLabel&quot;:false,&quot;fullResolution&quot;:false}},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;nb4ca3i6cki&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;Figure 5&quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;n07dmcqe7hm&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot; &quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;njj2jump1dq&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;At 3:35 PM, the test device received a phone call from an unknown source. The phone call was unanswered. There was not any user interaction with the screen. After the phone stopped ringing, the screen turned OFF and went dark. A &quot;,&quot;type&quot;:&quot;text&quot;},{&quot;text&quot;:&quot;Receive&quot;,&quot;type&quot;:&quot;text&quot;,&quot;marks&quot;:[{&quot;type&quot;:&quot;em&quot;},{&quot;type&quot;:&quot;strong&quot;}]},{&quot;text&quot;:&quot; notification type was recorded via the &quot;,&quot;type&quot;:&quot;text&quot;},{&quot;text&quot;:&quot;KnowledgeC.db&quot;,&quot;type&quot;:&quot;text&quot;,&quot;marks&quot;:[{&quot;type&quot;:&quot;em&quot;},{&quot;type&quot;:&quot;strong&quot;}]},{&quot;text&quot;:&quot;, seen in Figure 6 and Figure 7. You will notice a &quot;,&quot;type&quot;:&quot;text&quot;},{&quot;text&quot;:&quot;Receive&quot;,&quot;type&quot;:&quot;text&quot;,&quot;marks&quot;:[{&quot;type&quot;:&quot;em&quot;},{&quot;type&quot;:&quot;strong&quot;}]},{&quot;text&quot;:&quot; notification type for the voicemail which followed the unanswered phone call. &quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;nge476zo8yy&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot; &quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;nvcg7eqbotp&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;Note:&quot;,&quot;type&quot;:&quot;text&quot;,&quot;marks&quot;:[{&quot;type&quot;:&quot;em&quot;},{&quot;type&quot;:&quot;strong&quot;}]},{&quot;text&quot;:&quot; During testing, when I answered or declined an incoming phone call, a &quot;,&quot;type&quot;:&quot;text&quot;},{&quot;text&quot;:&quot;Receive&quot;,&quot;type&quot;:&quot;text&quot;,&quot;marks&quot;:[{&quot;type&quot;:&quot;em&quot;},{&quot;type&quot;:&quot;strong&quot;}]},{&quot;text&quot;:&quot; notification type would not be logged in the &quot;,&quot;type&quot;:&quot;text&quot;},{&quot;text&quot;:&quot;KnowledgeC.db&quot;,&quot;type&quot;:&quot;text&quot;,&quot;marks&quot;:[{&quot;type&quot;:&quot;em&quot;},{&quot;type&quot;:&quot;strong&quot;}]},{&quot;text&quot;:&quot;. A &quot;,&quot;type&quot;:&quot;text&quot;},{&quot;text&quot;:&quot;Receive&quot;,&quot;type&quot;:&quot;text&quot;,&quot;marks&quot;:[{&quot;type&quot;:&quot;em&quot;},{&quot;type&quot;:&quot;strong&quot;}]},{&quot;text&quot;:&quot; notification type would be logged in the &quot;,&quot;type&quot;:&quot;text&quot;},{&quot;text&quot;:&quot;KnowledgeC.db&quot;,&quot;type&quot;:&quot;text&quot;,&quot;marks&quot;:[{&quot;type&quot;:&quot;em&quot;},{&quot;type&quot;:&quot;strong&quot;}]},{&quot;text&quot;:&quot; when a phone call was missed/unanswered and when a voicemail was received. &quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;n26t3upu8d5&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot; &quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;n96eyk9n612&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;These are examples of a&quot;,&quot;type&quot;:&quot;text&quot;},{&quot;text&quot;:&quot; Receive&quot;,&quot;type&quot;:&quot;text&quot;,&quot;marks&quot;:[{&quot;type&quot;:&quot;em&quot;},{&quot;type&quot;:&quot;strong&quot;}]},{&quot;text&quot;:&quot; notification type that occurred on an iPhone with iOS 14.7.1. These types of notifications will be recorded when a notification is received by the device and when it is displayed on the device screen. In Figure 7, we have four notifications on the test device. There has been no user interaction with the device screen or the notifications.&quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;nffk50w1ucl&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot; &quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;n1k8g905kpz&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null}},{&quot;type&quot;:&quot;image&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;ndmri46z5ad&quot;,&quot;url&quot;:&quot;https://assets.pubpub.org/7cltj7ts/41659645140886.jpeg&quot;,&quot;href&quot;:null,&quot;size&quot;:100,&quot;align&quot;:&quot;center&quot;,&quot;altText&quot;:&quot;&quot;,&quot;caption&quot;:&quot;&quot;,&quot;hideLabel&quot;:false,&quot;fullResolution&quot;:false}},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;nj6080qlqek&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;Figure 6&quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;naee3q9n3b2&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot; &quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;nnex9drbiyx&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null}},{&quot;type&quot;:&quot;image&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;nngdqlnb77q&quot;,&quot;url&quot;:&quot;https://assets.pubpub.org/3l3vopr9/41659645161479.jpeg&quot;,&quot;href&quot;:null,&quot;size&quot;:50,&quot;align&quot;:&quot;center&quot;,&quot;altText&quot;:&quot;&quot;,&quot;caption&quot;:&quot;&quot;,&quot;hideLabel&quot;:false,&quot;fullResolution&quot;:false}},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;np1tthmuosl&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;Figure 7&quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;n7oklhuvdcp&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot; &quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;neemlg2j5c9&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;Note:&quot;,&quot;type&quot;:&quot;text&quot;,&quot;marks&quot;:[{&quot;type&quot;:&quot;em&quot;},{&quot;type&quot;:&quot;strong&quot;}]},{&quot;text&quot;:&quot; If an application is in focus on a device and new application data is received for that specific application, no &quot;,&quot;type&quot;:&quot;text&quot;},{&quot;text&quot;:&quot;Receive&quot;,&quot;type&quot;:&quot;text&quot;,&quot;marks&quot;:[{&quot;type&quot;:&quot;em&quot;},{&quot;type&quot;:&quot;strong&quot;}]},{&quot;text&quot;:&quot; notification type will be recorded. If the application is running in the background, a &quot;,&quot;type&quot;:&quot;text&quot;},{&quot;text&quot;:&quot;Receive&quot;,&quot;type&quot;:&quot;text&quot;,&quot;marks&quot;:[{&quot;type&quot;:&quot;em&quot;},{&quot;type&quot;:&quot;strong&quot;}]},{&quot;text&quot;:&quot; notification type will be recorded. Example: if the Apple Messenger application is in focus and additional messages are received, a &quot;,&quot;type&quot;:&quot;text&quot;},{&quot;text&quot;:&quot;Receive&quot;,&quot;type&quot;:&quot;text&quot;,&quot;marks&quot;:[{&quot;type&quot;:&quot;em&quot;},{&quot;type&quot;:&quot;strong&quot;}]},{&quot;text&quot;:&quot; notification type will not be recorded in the &quot;,&quot;type&quot;:&quot;text&quot;},{&quot;text&quot;:&quot;KnowledgeC.db&quot;,&quot;type&quot;:&quot;text&quot;,&quot;marks&quot;:[{&quot;type&quot;:&quot;em&quot;},{&quot;type&quot;:&quot;strong&quot;}]},{&quot;text&quot;:&quot;. &quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;nbih58yalp5&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot; &quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;n8r11yh7fss&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;Note:&quot;,&quot;type&quot;:&quot;text&quot;,&quot;marks&quot;:[{&quot;type&quot;:&quot;em&quot;},{&quot;type&quot;:&quot;strong&quot;}]},{&quot;text&quot;:&quot; During testing, there was a time when I did not have mobile data service and attempted to send two photos via multimedia messenger. When I attempted to send the messages to an Android device, the iPhone testing device received notifications which indicated the messages failed. The device recorded two &quot;,&quot;type&quot;:&quot;text&quot;},{&quot;text&quot;:&quot;Receive&quot;,&quot;type&quot;:&quot;text&quot;,&quot;marks&quot;:[{&quot;type&quot;:&quot;em&quot;},{&quot;type&quot;:&quot;strong&quot;}]},{&quot;text&quot;:&quot; notifications. These notifications had the same &quot;,&quot;type&quot;:&quot;text&quot;},{&quot;text&quot;:&quot;Z_DKNOTIFICATIONUSAGEMETADATAKEY__IDENTIFIER&quot;,&quot;type&quot;:&quot;text&quot;,&quot;marks&quot;:[{&quot;type&quot;:&quot;em&quot;},{&quot;type&quot;:&quot;strong&quot;}]},{&quot;text&quot;:&quot;, so again, just a reminder, these identifiers are semi-unique. There is a chance to have duplicates.&quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;nsb48z24n4e&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot; &quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;nobq70f235z&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;Hidden Notification Type:&quot;,&quot;type&quot;:&quot;text&quot;,&quot;marks&quot;:[{&quot;type&quot;:&quot;strong&quot;}]}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;nprecnjmfmd&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;A &quot;,&quot;type&quot;:&quot;text&quot;},{&quot;text&quot;:&quot;Hidden&quot;,&quot;type&quot;:&quot;text&quot;,&quot;marks&quot;:[{&quot;type&quot;:&quot;em&quot;},{&quot;type&quot;:&quot;strong&quot;}]},{&quot;text&quot;:&quot; notification type will be recorded when a notification is hidden from the Lock Screen notification area. This area can be viewed both when the device is locked and when a user swipes down on the screen to see the Notification Center.  &quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;nnb0avdikh9&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot; &quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;nfh9ujqjr99&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;During testing this occurred a few different ways:&quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;nrh5ffe1t2d&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot; &quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;n9tyrmdhvbf&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;·       If a device is locked and it receives a notification, it will be displayed on the Lock Screen. When a user unlocks the device and accesses the springboard or an application, the notifications that were displayed on the Lock Screen, will no longer be displayed, thus they are hidden, and &quot;,&quot;type&quot;:&quot;text&quot;},{&quot;text&quot;:&quot;Hidden&quot;,&quot;type&quot;:&quot;text&quot;,&quot;marks&quot;:[{&quot;type&quot;:&quot;em&quot;},{&quot;type&quot;:&quot;strong&quot;}]},{&quot;text&quot;:&quot; notification types will be recorded in the &quot;,&quot;type&quot;:&quot;text&quot;},{&quot;text&quot;:&quot;KnowledgeC.db.&quot;,&quot;type&quot;:&quot;text&quot;,&quot;marks&quot;:[{&quot;type&quot;:&quot;em&quot;},{&quot;type&quot;:&quot;strong&quot;}]}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;nuret2mgdt1&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot; &quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;ne3tn74iufk&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;·       If a device is unlocked and the user is navigating the springboard or an application is in focus and a notification is received, a Banner Notification will be displayed on the screen. These notifications will be listed in the Lock Screen area until the device screen turns off, either by a user or a device setting.&quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;nofpfq5sv8z&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot; &quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;nspngs98jww&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;Note:&quot;,&quot;type&quot;:&quot;text&quot;,&quot;marks&quot;:[{&quot;type&quot;:&quot;em&quot;},{&quot;type&quot;:&quot;strong&quot;}]},{&quot;text&quot;:&quot; Please review my previous blog about how to determine what value was set for the display auto-lock.&quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;nvs4jxjfl8a&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot; &quot;,&quot;type&quot;:&quot;text&quot;,&quot;marks&quot;:[{&quot;type&quot;:&quot;strong&quot;}]}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;noufshjdya1&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;In Figure 7, there are four notifications displayed on the Lock Screen. At 4:38:56 PM, the test device was unlocked and I clicked on one of the SMS notification banners. An open button appeared to the left of the notification banner. Instead of clicking on the open button, I clicked on the home button unlocking the device. At that time all the notification banners were hidden from the Lock Screen. I checked the Lock Screen and verified that there were no notification banners visible, seen in Figure 8.&quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;nnbpw927pr5&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null}},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;n65mju15y6s&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null}},{&quot;type&quot;:&quot;image&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;noc99vra6rq&quot;,&quot;url&quot;:&quot;https://assets.pubpub.org/gnpge4xh/21659645179776.jpeg&quot;,&quot;href&quot;:null,&quot;size&quot;:50,&quot;align&quot;:&quot;center&quot;,&quot;altText&quot;:&quot;&quot;,&quot;caption&quot;:&quot;&quot;,&quot;hideLabel&quot;:false,&quot;fullResolution&quot;:false}},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;npjgujol42p&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot; &quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;nk1y1zkkzwq&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;                                  &quot;,&quot;type&quot;:&quot;text&quot;},{&quot;type&quot;:&quot;hard_break&quot;},{&quot;text&quot;:&quot;Figure 8&quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;nng0kokdg1f&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot; &quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;na5iz8mshgo&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;While reviewing the notifications in ArtEx, seen in Figure 9, I noticed there are four &quot;,&quot;type&quot;:&quot;text&quot;},{&quot;text&quot;:&quot;Hidden&quot;,&quot;type&quot;:&quot;text&quot;,&quot;marks&quot;:[{&quot;type&quot;:&quot;em&quot;},{&quot;type&quot;:&quot;strong&quot;}]},{&quot;text&quot;:&quot; notifications logged at the time I unlocked the device. I researched if there was any way to link the &quot;,&quot;type&quot;:&quot;text&quot;},{&quot;text&quot;:&quot;Hidden&quot;,&quot;type&quot;:&quot;text&quot;,&quot;marks&quot;:[{&quot;type&quot;:&quot;em&quot;},{&quot;type&quot;:&quot;strong&quot;}]},{&quot;text&quot;:&quot; notification type to the &quot;,&quot;type&quot;:&quot;text&quot;},{&quot;text&quot;:&quot;Receive&quot;,&quot;type&quot;:&quot;text&quot;,&quot;marks&quot;:[{&quot;type&quot;:&quot;em&quot;},{&quot;type&quot;:&quot;strong&quot;}]},{&quot;text&quot;:&quot;notification type. Reminder, bundle identifications are only recorded with a &quot;,&quot;type&quot;:&quot;text&quot;},{&quot;text&quot;:&quot;Receive &quot;,&quot;type&quot;:&quot;text&quot;,&quot;marks&quot;:[{&quot;type&quot;:&quot;em&quot;},{&quot;type&quot;:&quot;strong&quot;}]},{&quot;text&quot;:&quot;notification type. &quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;nmdc1geqi4b&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot; &quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;nsk5o05d34b&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null}},{&quot;type&quot;:&quot;image&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;naclnood97p&quot;,&quot;url&quot;:&quot;https://assets.pubpub.org/srbb2kft/11659645191340.jpeg&quot;,&quot;href&quot;:null,&quot;size&quot;:100,&quot;align&quot;:&quot;center&quot;,&quot;altText&quot;:&quot;&quot;,&quot;caption&quot;:&quot;&quot;,&quot;hideLabel&quot;:false,&quot;fullResolution&quot;:false}},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;ngrdojbliqm&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;Figure 9&quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;nz0pk2qo0j8&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot; &quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;n7e8wc4pxlh&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;As seen in Figure 10, I noticed Magnet AXIOM was parsing the &quot;,&quot;type&quot;:&quot;text&quot;},{&quot;text&quot;:&quot;ZSTRUCTUREDMETADATA table  Z_DKNOTIFICATIONUSAGEMETADATAKEY__IDENTIFIER&quot;,&quot;type&quot;:&quot;text&quot;,&quot;marks&quot;:[{&quot;type&quot;:&quot;em&quot;},{&quot;type&quot;:&quot;strong&quot;}]},{&quot;text&quot;:&quot; with the notifications. After additional testing, I was able to determine this is the value that can be used to link related notification types together.&quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;n5345gexi4g&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot; &quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;nhnfc5dyyn4&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null}},{&quot;type&quot;:&quot;image&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;njbo794270x&quot;,&quot;url&quot;:&quot;https://assets.pubpub.org/awupvpuf/61659645213845.png&quot;,&quot;href&quot;:null,&quot;size&quot;:50,&quot;align&quot;:&quot;center&quot;,&quot;altText&quot;:&quot;&quot;,&quot;caption&quot;:&quot;&quot;,&quot;hideLabel&quot;:false,&quot;fullResolution&quot;:false}},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;nqrdcxfafyh&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;Figure 10&quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;nbju8udwww3&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot; &quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;n00ubs27g83&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;In Figure 11, we can see the data stored in the &quot;,&quot;type&quot;:&quot;text&quot;},{&quot;text&quot;:&quot;KnowledgeC.db&quot;,&quot;type&quot;:&quot;text&quot;,&quot;marks&quot;:[{&quot;type&quot;:&quot;em&quot;},{&quot;type&quot;:&quot;strong&quot;}]},{&quot;text&quot;:&quot; when the 4 notifications were received. Then we can see when the notifications are hidden from the lock screen and when they are cleared from the Notification Center. Later I will discuss the &quot;,&quot;type&quot;:&quot;text&quot;},{&quot;text&quot;:&quot;IndirectClear&quot;,&quot;type&quot;:&quot;text&quot;,&quot;marks&quot;:[{&quot;type&quot;:&quot;em&quot;},{&quot;type&quot;:&quot;strong&quot;}]},{&quot;text&quot;:&quot; notification type and describe how and why this happened, see the &quot;,&quot;type&quot;:&quot;text&quot;},{&quot;text&quot;:&quot;IndirectClear&quot;,&quot;type&quot;:&quot;text&quot;,&quot;marks&quot;:[{&quot;type&quot;:&quot;em&quot;},{&quot;type&quot;:&quot;strong&quot;}]},{&quot;text&quot;:&quot; section for more details. &quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;nlxd8ayiq9l&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot; &quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;n3n71721igl&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null}},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;ny9rbm6r1eq&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;Figure 11&quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;n0ecpn6kas8&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot; &quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;n78niqmv8yx&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;In the next example, the test device received a SMS notification, Facebook Messenger notification and a Twitter notification. When the notifications were received there was no user interaction with the device. The screen turned ON and OFF on its own. After the three notifications were received, the test device was unlocked by clicking the home button and all notifications were hidden from the Lock Screen. These notifications can still be visible in the Notification Center.  &quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;nrrdahddoe1&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot; &quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;n6b51r0flak&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;In Figure 12 we can see the activity for the three notifications that were received and hidden. When the notifications were hidden from the Lock Screen, &quot;,&quot;type&quot;:&quot;text&quot;},{&quot;text&quot;:&quot;Hidden&quot;,&quot;type&quot;:&quot;text&quot;,&quot;marks&quot;:[{&quot;type&quot;:&quot;em&quot;},{&quot;type&quot;:&quot;strong&quot;}]},{&quot;text&quot;:&quot; notification types were recorded for each notification. Figure 12 shows how these actions look like on the device and in the &quot;,&quot;type&quot;:&quot;text&quot;},{&quot;text&quot;:&quot;KnowledgeC.db&quot;,&quot;type&quot;:&quot;text&quot;,&quot;marks&quot;:[{&quot;type&quot;:&quot;em&quot;},{&quot;type&quot;:&quot;strong&quot;}]},{&quot;text&quot;:&quot;.&quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;n0o0pf9cd9f&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;  &quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;nw40l14lm1u&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null}},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;nfw6920arad&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null}},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;ndufa7efeqr&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;Figure 12&quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;n1r9va0ylet&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot; &quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;now02rz6m5d&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;The previous examples had user – device interaction. Based on the testing, &quot;,&quot;type&quot;:&quot;text&quot;},{&quot;text&quot;:&quot;Hidden&quot;,&quot;type&quot;:&quot;text&quot;,&quot;marks&quot;:[{&quot;type&quot;:&quot;em&quot;},{&quot;type&quot;:&quot;strong&quot;}]},{&quot;text&quot;:&quot; notifications can be both user and non-user initiated.&quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;n1r0hgdvm00&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot; &quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;n4emdjcro8j&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;In Figure 13, the Notification Center is checked for any active notifications, which there are none. The device is unlocked, and the Facebook Messenger is brought into focus. While the application was in focus, the device received a notification for a SMS message. There was no user interaction with this notification, and it disappears from the screen on its own. Another message is received, and another Banner Notification is displayed, it also did not have any user interaction and disappears on its own.&quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;n5jfs5vufsq&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot; &quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;nxb16beyyq4&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;The Facebook Messenger application was sent to the background, and we can see the messenger application still has a badge notification count, these will only be cleared after the application data is viewed or handled within the application. When the notifications were received, the messenger application was running in the background. All the applications were closed, except for the Facebook Messenger application. While the Facebook Messenger application was in focus, a Facebook Messenger message was received. Notice the device did not display a Banner Notification, as previously seen with the SMS notifications. &quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;n8m0n1cgu7l&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot; &quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;ng5tmd5gd84&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;After the screen is turned off and the device is locked, we can only see the two SMS notifications are displayed in the Notification Center. The Facebook Messenger message did not generate a &quot;,&quot;type&quot;:&quot;text&quot;},{&quot;text&quot;:&quot;Receive&quot;,&quot;type&quot;:&quot;text&quot;,&quot;marks&quot;:[{&quot;type&quot;:&quot;em&quot;},{&quot;type&quot;:&quot;strong&quot;}]},{&quot;text&quot;:&quot; notification type and will not be listed in the &quot;,&quot;type&quot;:&quot;text&quot;},{&quot;text&quot;:&quot;KnowledgeC.db&quot;,&quot;type&quot;:&quot;text&quot;,&quot;marks&quot;:[{&quot;type&quot;:&quot;em&quot;},{&quot;type&quot;:&quot;strong&quot;}]},{&quot;text&quot;:&quot;.&quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;nnlzm4jmnig&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot; &quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;nvw4z2l6uxp&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null}},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;n3elkkpqb8l&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;Figure 13&quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;n7son2otz2m&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot; &quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;nd9uwqfcxdk&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;Clear Notification Type:&quot;,&quot;type&quot;:&quot;text&quot;,&quot;marks&quot;:[{&quot;type&quot;:&quot;strong&quot;}]}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;nxw9ovw450z&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;A &quot;,&quot;type&quot;:&quot;text&quot;},{&quot;text&quot;:&quot;Clear&quot;,&quot;type&quot;:&quot;text&quot;,&quot;marks&quot;:[{&quot;type&quot;:&quot;em&quot;},{&quot;type&quot;:&quot;strong&quot;}]},{&quot;text&quot;:&quot; notification type occurs when a user manually swipes left on the notification banner displayed in the Lock Screen or in the Notification Center, by doing so, reveals a clear button. When the user presses the clear button for an individual notification or the clear all buttons. It removes the notification from the Lock Screen and the Notification Center.&quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;n81nuk1wck1&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot; &quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;n8yut1qolm7&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;Note:&quot;,&quot;type&quot;:&quot;text&quot;,&quot;marks&quot;:[{&quot;type&quot;:&quot;em&quot;},{&quot;type&quot;:&quot;strong&quot;}]},{&quot;text&quot;:&quot; A corresponding &quot;,&quot;type&quot;:&quot;text&quot;},{&quot;text&quot;:&quot;IndirectClear&quot;,&quot;type&quot;:&quot;text&quot;,&quot;marks&quot;:[{&quot;type&quot;:&quot;em&quot;},{&quot;type&quot;:&quot;strong&quot;}]},{&quot;text&quot;:&quot; notification type will also be recorded with a matching timestamp as the &quot;,&quot;type&quot;:&quot;text&quot;},{&quot;text&quot;:&quot;Clear&quot;,&quot;type&quot;:&quot;text&quot;,&quot;marks&quot;:[{&quot;type&quot;:&quot;em&quot;},{&quot;type&quot;:&quot;strong&quot;}]},{&quot;text&quot;:&quot;notification type. Review the &quot;,&quot;type&quot;:&quot;text&quot;},{&quot;text&quot;:&quot;IndirectClear&quot;,&quot;type&quot;:&quot;text&quot;,&quot;marks&quot;:[{&quot;type&quot;:&quot;em&quot;},{&quot;type&quot;:&quot;strong&quot;}]},{&quot;text&quot;:&quot; notification type section for more details.  &quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;n765hxf7b7d&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot; &quot;,&quot;type&quot;:&quot;text&quot;,&quot;marks&quot;:[{&quot;type&quot;:&quot;strong&quot;}]}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;nyxb0hbmphy&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;In Figure 14, the test device receives a notification for an incoming SMS message. Then at 7:45:55 PM, another notification is received for a second incoming SMS message.&quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;n392v6863tr&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot; &quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;nuai384o7x1&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;The user accessed the Lock Screen notifications, swiped left on the second notification, and pressed the clear button. The notification was removed from the Lock Screen and will not be displayed in the Notification Center. After analyzing the database, when the clear button is selected, that specific notification will have both a &quot;,&quot;type&quot;:&quot;text&quot;},{&quot;text&quot;:&quot;Clear &quot;,&quot;type&quot;:&quot;text&quot;,&quot;marks&quot;:[{&quot;type&quot;:&quot;em&quot;},{&quot;type&quot;:&quot;strong&quot;}]},{&quot;text&quot;:&quot;notification type and an &quot;,&quot;type&quot;:&quot;text&quot;},{&quot;text&quot;:&quot;IndirectClear&quot;,&quot;type&quot;:&quot;text&quot;,&quot;marks&quot;:[{&quot;type&quot;:&quot;em&quot;},{&quot;type&quot;:&quot;strong&quot;}]},{&quot;text&quot;:&quot; notification type with the same timestamp. &quot;,&quot;type&quot;:&quot;text&quot;},{&quot;text&quot;:&quot; &quot;,&quot;type&quot;:&quot;text&quot;,&quot;marks&quot;:[{&quot;type&quot;:&quot;em&quot;},{&quot;type&quot;:&quot;strong&quot;}]}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;nxnix5ak5n1&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot; &quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;nmk6o4gr90e&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;The user then accessed the Lock Screen, swiped right on the notification banner, and clicked the open button. The Messenger application was brought into focus and the message was viewed within the application. After analyzing the database when the open button was selected, that specific notification would have both a &quot;,&quot;type&quot;:&quot;text&quot;},{&quot;text&quot;:&quot;DefaultAction&quot;,&quot;type&quot;:&quot;text&quot;,&quot;marks&quot;:[{&quot;type&quot;:&quot;em&quot;},{&quot;type&quot;:&quot;strong&quot;}]},{&quot;text&quot;:&quot; notification type and an &quot;,&quot;type&quot;:&quot;text&quot;},{&quot;text&quot;:&quot;IndirectClear&quot;,&quot;type&quot;:&quot;text&quot;,&quot;marks&quot;:[{&quot;type&quot;:&quot;em&quot;},{&quot;type&quot;:&quot;strong&quot;}]},{&quot;text&quot;:&quot; notification type with the same timestamp. Review the &quot;,&quot;type&quot;:&quot;text&quot;},{&quot;text&quot;:&quot;DefaultAction&quot;,&quot;type&quot;:&quot;text&quot;,&quot;marks&quot;:[{&quot;type&quot;:&quot;em&quot;},{&quot;type&quot;:&quot;strong&quot;}]},{&quot;text&quot;:&quot; notification type section for more details.  &quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;n6143oazdw4&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot; &quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;nt7uj3g3gep&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;In Figure 14 we can see what these actions look like on the device and the data recorded in the &quot;,&quot;type&quot;:&quot;text&quot;},{&quot;text&quot;:&quot;KnowledgeC.db&quot;,&quot;type&quot;:&quot;text&quot;,&quot;marks&quot;:[{&quot;type&quot;:&quot;em&quot;},{&quot;type&quot;:&quot;strong&quot;}]},{&quot;text&quot;:&quot;.  &quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;n3rt0h0z4yc&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot; &quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;n5o0mh5crt5&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null}},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;nbqwypzu1ur&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;Figure 14&quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;nn6hj6uznvt&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot; &quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;nb65prefryk&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;Dismiss Notification Type:&quot;,&quot;type&quot;:&quot;text&quot;,&quot;marks&quot;:[{&quot;type&quot;:&quot;strong&quot;}]}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;n3ntrhen6tr&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;If a device is unlocked and the screen is ON when a notification is received, if the user swipes up on the notification, before it disappears on its own, a &quot;,&quot;type&quot;:&quot;text&quot;},{&quot;text&quot;:&quot;Dismiss&quot;,&quot;type&quot;:&quot;text&quot;,&quot;marks&quot;:[{&quot;type&quot;:&quot;em&quot;},{&quot;type&quot;:&quot;strong&quot;}]},{&quot;text&quot;:&quot; notification type will be recorded in the &quot;,&quot;type&quot;:&quot;text&quot;},{&quot;text&quot;:&quot;KnowledgeC.db&quot;,&quot;type&quot;:&quot;text&quot;,&quot;marks&quot;:[{&quot;type&quot;:&quot;em&quot;},{&quot;type&quot;:&quot;strong&quot;}]},{&quot;text&quot;:&quot;.&quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;n518ozpr2ym&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot; &quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;n02f0stku03&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;In Figure 15, the test device receives a Facebook Messenger message notification. The user swiped up on the notification to dismiss it. Then a SMS message notification is received, and the user swiped up on the notification to dismiss it. The user then locks the device and views the Lock Screen and Notification Center. The two notifications that were dismissed are no longer visible in the Lock Screen notification area, but they are displayed in the Notification Center. &quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;ncmeswzlhgg&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot; &quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;n2hh9y0asjj&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;The SMS notification is cleared from the Notification Center and the Facebook Messenger notification is opened, thus bringing the Facebook Messenger application into focus. Figure 15, shows what this looks like on the device and how the data is recorded in the &quot;,&quot;type&quot;:&quot;text&quot;},{&quot;text&quot;:&quot;KnowledgeC.db&quot;,&quot;type&quot;:&quot;text&quot;,&quot;marks&quot;:[{&quot;type&quot;:&quot;em&quot;},{&quot;type&quot;:&quot;strong&quot;}]},{&quot;text&quot;:&quot;.&quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;n740w9afpzb&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot; &quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;niwu2t4mt7a&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null}},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;njtorio4npf&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;Figure 15&quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;nuvzwpiiu9b&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot; &quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;nk8cn7v3dpj&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;IndirectClear Notification Type:&quot;,&quot;type&quot;:&quot;text&quot;,&quot;marks&quot;:[{&quot;type&quot;:&quot;strong&quot;}]}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;n6702oyyqp7&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;An &quot;,&quot;type&quot;:&quot;text&quot;},{&quot;text&quot;:&quot;IndirectClear&quot;,&quot;type&quot;:&quot;text&quot;,&quot;marks&quot;:[{&quot;type&quot;:&quot;em&quot;},{&quot;type&quot;:&quot;strong&quot;}]},{&quot;text&quot;:&quot; notification type will occur when a notification is no longer displayed in the Notification Center.  &quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;ndizdqcsxrp&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot; &quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;n04a9664bgk&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;In Figure 16 the test device as already received two notifications, one from a SMS message and another from Twitter. An additional Facebook Messenger message notification is received. At this time, the test device is locked, and the screen is turning ON when the notifications are received, then back OFF on its own after the notification has been displayed. Another Twitter notification is received and displayed. Special thanks to Kevin Pagano (@KevinPagano3) for his assistance with an additional notification during testing! An additional SMS message notification was received.&quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;nyknef5d7ak&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot; &quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;nlq6i6puapj&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;The user unlocked the device by pressing the home button. This user action then hid the notifications from the Lock Screen and a &quot;,&quot;type&quot;:&quot;text&quot;},{&quot;text&quot;:&quot;Hidden&quot;,&quot;type&quot;:&quot;text&quot;,&quot;marks&quot;:[{&quot;type&quot;:&quot;em&quot;},{&quot;type&quot;:&quot;strong&quot;}]},{&quot;text&quot;:&quot; notification type was recorded for each one of the notifications that were displayed on the Lock Screen.&quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;nsd3nf1n71h&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot; &quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;n3ebzh19c9t&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;After the notifications were hidden from the Lock Screen, the user checked the Notification Center, and all the past notifications are still visible. The user entered the Notification Center and used the clear button to clear the Facebook Messenger notification. &quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;ndoyn70bbdm&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot; &quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;nipocgmpkie&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;During testing, I received a phone call from someone reminding me that my vehicle warranty was expired. After receiving the phone call notification, the device was unlocked, and the notification was hidden from the Lock Screen, then the user cleared it from the Notification Center. Then the user cleared one of the SMS notifications from the Notification Center. The user then unlocks the device and views the springboard. Notice that all the badge notification counters are still visible.&quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;ncarbbs4r4i&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot; &quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;n3penouqel3&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;In Figure 16, we can see what this looks like on the device and how the data is recorded in the &quot;,&quot;type&quot;:&quot;text&quot;},{&quot;text&quot;:&quot;KnowledgeC.db&quot;,&quot;type&quot;:&quot;text&quot;,&quot;marks&quot;:[{&quot;type&quot;:&quot;em&quot;},{&quot;type&quot;:&quot;strong&quot;}]},{&quot;text&quot;:&quot;.&quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;ndxdm6rf6g4&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot; &quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;nt209d7jtro&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null}},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;njxaytswdzz&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;Figure 16&quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;nkbrymxc7tf&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot; &quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;ni7aebpz9xi&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;An &quot;,&quot;type&quot;:&quot;text&quot;},{&quot;text&quot;:&quot;IndirectClear&quot;,&quot;type&quot;:&quot;text&quot;,&quot;marks&quot;:[{&quot;type&quot;:&quot;em&quot;},{&quot;type&quot;:&quot;strong&quot;}]},{&quot;text&quot;:&quot; notification type will be recorded when the application is opened which has pending data/badge notifications that have not been viewed. &quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;nl0gvujjxiv&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot; &quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;n5egvfdoz46&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;DefaultAction Notification Type:&quot;,&quot;type&quot;:&quot;text&quot;,&quot;marks&quot;:[{&quot;type&quot;:&quot;strong&quot;}]}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;nw5dr5wo00z&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;The &quot;,&quot;type&quot;:&quot;text&quot;},{&quot;text&quot;:&quot;DefaultAction&quot;,&quot;type&quot;:&quot;text&quot;,&quot;marks&quot;:[{&quot;type&quot;:&quot;em&quot;},{&quot;type&quot;:&quot;strong&quot;}]},{&quot;text&quot;:&quot; notification type occurs when a notification is received and is used to open the application to view the data.&quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;nd25pxexrk0&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot; &quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;nb19mqmgc53&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;We have already seen some examples of the &quot;,&quot;type&quot;:&quot;text&quot;},{&quot;text&quot;:&quot;DefaultAction&quot;,&quot;type&quot;:&quot;text&quot;,&quot;marks&quot;:[{&quot;type&quot;:&quot;em&quot;},{&quot;type&quot;:&quot;strong&quot;}]},{&quot;text&quot;:&quot; notification type, but we will review it and show how it was replicated during testing.&quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;nzw2558itys&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot; &quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;nh13xg2qc57&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;In this first example, Figure 17, the device was unlocked, and the user was navigating the springboard. The device received a SMS message notification, which was displayed on the device in a banner notification. The notification banner was clicked, and the Apple Messenger application was opened to view the data. You will notice the &quot;,&quot;type&quot;:&quot;text&quot;},{&quot;text&quot;:&quot;DefaultAction&quot;,&quot;type&quot;:&quot;text&quot;,&quot;marks&quot;:[{&quot;type&quot;:&quot;em&quot;},{&quot;type&quot;:&quot;strong&quot;}]},{&quot;text&quot;:&quot; and &quot;,&quot;type&quot;:&quot;text&quot;},{&quot;text&quot;:&quot;IndirectClear&quot;,&quot;type&quot;:&quot;text&quot;,&quot;marks&quot;:[{&quot;type&quot;:&quot;em&quot;},{&quot;type&quot;:&quot;strong&quot;}]},{&quot;text&quot;:&quot; notification types are logged one second apart. &quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;nkbjo28w85p&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot; &quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;niscm0hv4mt&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null}},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;nxgh5miojmy&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;Figure 17 &quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;n7ew61c48y0&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot; &quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;njy5k3q286f&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;Note:&quot;,&quot;type&quot;:&quot;text&quot;,&quot;marks&quot;:[{&quot;type&quot;:&quot;em&quot;},{&quot;type&quot;:&quot;strong&quot;}]},{&quot;text&quot;:&quot; When a notification is used to bring an application into focus, the method listed for bringing the application into focus will be &quot;,&quot;type&quot;:&quot;text&quot;},{&quot;text&quot;:&quot;com.apple.SpringBoard.transitionReason.externalrequest&quot;,&quot;type&quot;:&quot;text&quot;,&quot;marks&quot;:[{&quot;type&quot;:&quot;em&quot;}]},{&quot;text&quot;:&quot;. I’ll be doing more research into application in focus methods for both iOS 14 and 15 and will be writing something soon, so stay tuned.&quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;n8wyt1s8awu&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot; &quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;nj815thbi8m&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;In Figure 18, the second example, we will be reviewing the data stored in the &quot;,&quot;type&quot;:&quot;text&quot;},{&quot;text&quot;:&quot;KnowledgeC.db&quot;,&quot;type&quot;:&quot;text&quot;,&quot;marks&quot;:[{&quot;type&quot;:&quot;em&quot;},{&quot;type&quot;:&quot;strong&quot;}]},{&quot;text&quot;:&quot; and attempt to determine what happened on the device, based on what we have already learned in this blog. Based on previous testing I believe:&quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;nytbmg6oyff&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot; &quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;nf50dk6gxnp&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;·       On 10/1/2021 at 19:13:14 UTC, the device was unlocked, the screen was on, and the device received a Facebook Messenger notification.&quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;n0xbzkvoyur&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot; &quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;nqhdwglpbs8&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;·       At 19:13:16 UTC, the device user swiped up on the notification to dismiss it.&quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;n2qp9jn5yqr&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot; &quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;nzxp9r9r7cn&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;·       At 19:13:48 UTC, the notification was hidden from the Lock Screen. &quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;ntl675ud79m&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot; &quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;nycrqp2qg97&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;·       At 19:14:23 UTC, the device user accessed the Notification Center and opened the notification, which then brought the Facebook Messenger into focus.&quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;nmkyx1xg8an&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot; &quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;n4mtas9c8uz&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null}},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;njmkmxmahxa&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;Figure 18&quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;np2bu3nrt7o&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot; &quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;nt4q0dho241&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;In Figure 19 and can see what these device events look like in ArtEx.&quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;nq6my7tk7ge&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot; &quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;ntrpuf9199c&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null}},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;nwg2vyrm1a5&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;Figure 19&quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;nax0x3f2tog&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot; &quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;njzj90iic0y&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;Orb Notifications:   &quot;,&quot;type&quot;:&quot;text&quot;,&quot;marks&quot;:[{&quot;type&quot;:&quot;strong&quot;}]}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;n18c47lq8m5&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;I have not been able to determine exactly what &quot;,&quot;type&quot;:&quot;text&quot;},{&quot;text&quot;:&quot;Orb&quot;,&quot;type&quot;:&quot;text&quot;,&quot;marks&quot;:[{&quot;type&quot;:&quot;em&quot;},{&quot;type&quot;:&quot;strong&quot;}]},{&quot;text&quot;:&quot; stands for and if anyone could provide some insight it would be appreciated.&quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;nn3eijxpjo4&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot; &quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;nhze6259tre&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;During testing, I would receive an &quot;,&quot;type&quot;:&quot;text&quot;},{&quot;text&quot;:&quot;Orb&quot;,&quot;type&quot;:&quot;text&quot;,&quot;marks&quot;:[{&quot;type&quot;:&quot;em&quot;},{&quot;type&quot;:&quot;strong&quot;}]},{&quot;text&quot;:&quot; notification type in the &quot;,&quot;type&quot;:&quot;text&quot;},{&quot;text&quot;:&quot;KnowledgeC.db&quot;,&quot;type&quot;:&quot;text&quot;,&quot;marks&quot;:[{&quot;type&quot;:&quot;em&quot;},{&quot;type&quot;:&quot;strong&quot;}]},{&quot;text&quot;:&quot; when a notification was received, and I interacted with the notification on the device screen. When I pressed and held the notification, the application would open in a small sub-window on the device. I could send messages or preform other actions within the application from this small sub-window. The following are some examples:&quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;nirjk1x5750&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot; &quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;nes2xh2s6gj&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;Do not Disturb Notification:&quot;,&quot;type&quot;:&quot;text&quot;,&quot;marks&quot;:[{&quot;type&quot;:&quot;strong&quot;}]}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;n79tjlbirwk&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;During testing, I received several Do Not Disturb While Driving notifications. While the notification was displayed on the Lock Screen, if I clicked on the notification a sub-window would appear and an option to select, &quot;,&quot;type&quot;:&quot;text&quot;},{&quot;text&quot;:&quot;I’m Not Driving&quot;,&quot;type&quot;:&quot;text&quot;,&quot;marks&quot;:[{&quot;type&quot;:&quot;em&quot;},{&quot;type&quot;:&quot;strong&quot;}]},{&quot;text&quot;:&quot;would be displayed. When this small sub-window with this option would be displayed on the screen, I would receive an &quot;,&quot;type&quot;:&quot;text&quot;},{&quot;text&quot;:&quot;Orb&quot;,&quot;type&quot;:&quot;text&quot;,&quot;marks&quot;:[{&quot;type&quot;:&quot;em&quot;},{&quot;type&quot;:&quot;strong&quot;}]},{&quot;text&quot;:&quot; notification type in the &quot;,&quot;type&quot;:&quot;text&quot;},{&quot;text&quot;:&quot;KnowledgeC.db&quot;,&quot;type&quot;:&quot;text&quot;,&quot;marks&quot;:[{&quot;type&quot;:&quot;em&quot;},{&quot;type&quot;:&quot;strong&quot;}]},{&quot;text&quot;:&quot;, seen in Figure 20.&quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;n7x3w69je44&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot; &quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;nwxwoyof85o&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null}},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;n2w1nm35j22&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;Figure 20&quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;n87bbxbip9u&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;    &quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;nuggr7f1k6p&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;Apple Messenger:&quot;,&quot;type&quot;:&quot;text&quot;,&quot;marks&quot;:[{&quot;type&quot;:&quot;strong&quot;}]}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;nh7zrk3pg55&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;During testing, I was able to replicate the &quot;,&quot;type&quot;:&quot;text&quot;},{&quot;text&quot;:&quot;Orb&quot;,&quot;type&quot;:&quot;text&quot;,&quot;marks&quot;:[{&quot;type&quot;:&quot;em&quot;},{&quot;type&quot;:&quot;strong&quot;}]},{&quot;text&quot;:&quot; notification type by sending a SMS message to the test device, then clicking on the notification and opening the Apple Messenger application in a small sub-window, which allowed me to interact with the application in the small sub-window, which included sending a text message, while the device was locked as seen in Figure 21.&quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;ni6y82udrwf&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot; &quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;nz33ltwek2g&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null}},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;nkecrlkbn46&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;Figure 21&quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;nqh68s1g08t&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot; &quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;nzbe0pewbfl&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;Josh Hickman Image Testing:&quot;,&quot;type&quot;:&quot;text&quot;,&quot;marks&quot;:[{&quot;type&quot;:&quot;strong&quot;}]}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;n3ijoca6spp&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;After my testing, I decided to test my knowledge of these notifications and loaded up Josh Hickman’s iPhone SE iOS 14.3 image into ArtEx.&quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;nop57k9woin&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot; &quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;nxf63n6a09p&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;Facebook Messenger:&quot;,&quot;type&quot;:&quot;text&quot;,&quot;marks&quot;:[{&quot;type&quot;:&quot;strong&quot;}]}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;n45idad6zqb&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;In Josh Hickman’s documentation there is a section for Facebook Messenger, which is displayed in Figure 22. Notice in Figure 22, his test device sends and receives several messages, media messages and video calls. &quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;ns7ad59bywx&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot; &quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;nv7tw5v7vdx&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null}},{&quot;type&quot;:&quot;image&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;n3jmmkm4xr9&quot;,&quot;url&quot;:&quot;https://assets.pubpub.org/a3h3obwr/01659645334113.png&quot;,&quot;href&quot;:null,&quot;size&quot;:50,&quot;align&quot;:&quot;center&quot;,&quot;altText&quot;:&quot;&quot;,&quot;caption&quot;:&quot;&quot;,&quot;hideLabel&quot;:false,&quot;fullResolution&quot;:false}},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;nujyczs68rq&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;Figure 22&quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;nz6z6ik8wfd&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot; &quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;npfc2ph6kgm&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;Figure 23 is that same timeframe viewed in ArtEx. Notice between 14:32 though 15:18, no new notifications were being received on the device. This is because the Facebook Application was in focus, and everything is occurring in real time on the device. &quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;n6fmd06dafo&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot; &quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;n2npcp8ws8x&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;At 15:24:14 there is a Receive notification type for Google Duo (com.google.Tachyon).    &quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;nrvqofljunr&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot; &quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;n5pbsma5tnf&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null}},{&quot;type&quot;:&quot;image&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;ngirwvo6op8&quot;,&quot;url&quot;:&quot;https://assets.pubpub.org/slwk1j4u/71659645349084.png&quot;,&quot;href&quot;:null,&quot;size&quot;:50,&quot;align&quot;:&quot;center&quot;,&quot;altText&quot;:&quot;&quot;,&quot;caption&quot;:&quot;&quot;,&quot;hideLabel&quot;:false,&quot;fullResolution&quot;:false}},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;njl0rnrke55&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;Figure 23  &quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;ny2psc7m54g&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot; &quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;nfg439fhyzd&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;Google Duo:&quot;,&quot;type&quot;:&quot;text&quot;,&quot;marks&quot;:[{&quot;type&quot;:&quot;strong&quot;}]}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;nfp7uz3la2j&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;In Josh Hickman’s documentation there is a section for Google Duo, which is displayed in Figure 24. Notice in Figure 24, there is documentation that on 2/4/2021 at 15:24, a note is received, which contained a message &quot;,&quot;type&quot;:&quot;text&quot;},{&quot;text&quot;:&quot;What is this??&quot;,&quot;type&quot;:&quot;text&quot;,&quot;marks&quot;:[{&quot;type&quot;:&quot;em&quot;}]},{&quot;text&quot;:&quot;  &quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;ne1py2dxsmo&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot; &quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;nxqcjbh6yrw&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null}},{&quot;type&quot;:&quot;image&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;n6vw8u7g7ka&quot;,&quot;url&quot;:&quot;https://assets.pubpub.org/2by364ya/61659645369647.png&quot;,&quot;href&quot;:null,&quot;size&quot;:50,&quot;align&quot;:&quot;center&quot;,&quot;altText&quot;:&quot;&quot;,&quot;caption&quot;:&quot;&quot;,&quot;hideLabel&quot;:false,&quot;fullResolution&quot;:false}},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;n843txpi9qa&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;Figure 24&quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;nkqaz3zs5jy&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot; &quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;ngne210d61i&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;Figure 25 is that same timeframe viewed in ArtEx. Notice there is a &quot;,&quot;type&quot;:&quot;text&quot;},{&quot;text&quot;:&quot;Receive&quot;,&quot;type&quot;:&quot;text&quot;,&quot;marks&quot;:[{&quot;type&quot;:&quot;em&quot;},{&quot;type&quot;:&quot;strong&quot;}]},{&quot;text&quot;:&quot; notification type, followed by a &quot;,&quot;type&quot;:&quot;text&quot;},{&quot;text&quot;:&quot;DefaultAction&quot;,&quot;type&quot;:&quot;text&quot;,&quot;marks&quot;:[{&quot;type&quot;:&quot;em&quot;},{&quot;type&quot;:&quot;strong&quot;}]},{&quot;text&quot;:&quot;, then an &quot;,&quot;type&quot;:&quot;text&quot;},{&quot;text&quot;:&quot;IndirectClear&quot;,&quot;type&quot;:&quot;text&quot;,&quot;marks&quot;:[{&quot;type&quot;:&quot;em&quot;},{&quot;type&quot;:&quot;strong&quot;}]},{&quot;text&quot;:&quot; notification type. This indicates that when the notification was received on the device, the user used the notification to bring the application into focus. We can see in ArtEx the application started in focus at 15:24:20, which is one second after the &quot;,&quot;type&quot;:&quot;text&quot;},{&quot;text&quot;:&quot;DefaultAction&quot;,&quot;type&quot;:&quot;text&quot;,&quot;marks&quot;:[{&quot;type&quot;:&quot;em&quot;},{&quot;type&quot;:&quot;strong&quot;}]},{&quot;text&quot;:&quot; notification type was logged.     &quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;nbiyzl4b66j&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot; &quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;nr56mxe2hzo&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null}},{&quot;type&quot;:&quot;image&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;nfj9hfvz1zg&quot;,&quot;url&quot;:&quot;https://assets.pubpub.org/e5gexzku/11659645383334.png&quot;,&quot;href&quot;:null,&quot;size&quot;:50,&quot;align&quot;:&quot;center&quot;,&quot;altText&quot;:&quot;&quot;,&quot;caption&quot;:&quot;&quot;,&quot;hideLabel&quot;:false,&quot;fullResolution&quot;:false}},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;n1ov6ya7m26&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;Figure 25&quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;nj89b46ii5e&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot; &quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;nr9uihukz3a&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;Messenger Application:&quot;,&quot;type&quot;:&quot;text&quot;,&quot;marks&quot;:[{&quot;type&quot;:&quot;strong&quot;}]}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;n4rhqhf3suf&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;In Josh Hickman’s documentation there is a section for Messages, which is displayed in Figure 26. Notice in Figure 26, there is documentation that on 2/15/2021 at 13:06 (Eastern Time) an iMessage is received. Because Josh Hickman’s device is set to Eastern Time and I am in Pacific Time, for this example I will be referencing artifacts in UTC.&quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;n2yo4j8jj13&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot; &quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;nz94qdcxr1f&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null}},{&quot;type&quot;:&quot;image&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;nulkplczenl&quot;,&quot;url&quot;:&quot;https://assets.pubpub.org/nv5e6s6l/11659645395392.png&quot;,&quot;href&quot;:null,&quot;size&quot;:50,&quot;align&quot;:&quot;center&quot;,&quot;altText&quot;:&quot;&quot;,&quot;caption&quot;:&quot;&quot;,&quot;hideLabel&quot;:false,&quot;fullResolution&quot;:false}},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;nk8faw3xikd&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;Figure 26&quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;nul08wl9o1l&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot; &quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;njnrx87hyfy&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;According to Josh Hickman’s documentation his device received an iMessage at 18:06 UTC. Can we answer the following questions?&quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;nuhh0tq9l0l&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot; &quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;nt909dr1lyo&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;·       Did the device display a notification on the screen for this message?&quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;neyx71umkwp&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;·       Did the user interact with the screen if a notification was displayed?&quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;n3eyqujgzr4&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;·       How was the notification cleared from the device?&quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;n5w29ub7nxo&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot; &quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;n4th7qbi22i&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;In Figure 27, we can see in ArtEx at 18:04:18 UTC, the device was unlocked, but notice an application was not in focus. A message was sent at 18:04:46 UTC, but was not sent from the iPhone, it was sent from a synced Mac.&quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;nftofxpnkty&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot; &quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;n8jxmsyqu3g&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;At 18:06:37 UTC, a &quot;,&quot;type&quot;:&quot;text&quot;},{&quot;text&quot;:&quot;Receive&quot;,&quot;type&quot;:&quot;text&quot;,&quot;marks&quot;:[{&quot;type&quot;:&quot;em&quot;},{&quot;type&quot;:&quot;strong&quot;}]},{&quot;text&quot;:&quot; notification type was received on the device, thus because the device is unlocked, a banner notification would have been displayed on the screen. &quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;nsu04wipmfa&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot; &quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;n9z9zubdzrd&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;At 18:06:37 UTC, a &quot;,&quot;type&quot;:&quot;text&quot;},{&quot;text&quot;:&quot;Dismiss&quot;,&quot;type&quot;:&quot;text&quot;,&quot;marks&quot;:[{&quot;type&quot;:&quot;em&quot;},{&quot;type&quot;:&quot;strong&quot;}]},{&quot;text&quot;:&quot; notification type was recorded, thus when the banner notification was displayed on the device, the user interacted with the screen and dismissed the banner notification.&quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;n16blvpxx4p&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot; &quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;n4e22bg7rf9&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;At 18:06:49 UTC, the Messenger application (com.apple.MobileSMS) was brought into focus via the home screen.&quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;ntxlzsk6hh3&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot; &quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;nwru0gqec9h&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;Note: If the notification was used to open the application a &quot;,&quot;type&quot;:&quot;text&quot;},{&quot;text&quot;:&quot;DefaultAction&quot;,&quot;type&quot;:&quot;text&quot;,&quot;marks&quot;:[{&quot;type&quot;:&quot;em&quot;},{&quot;type&quot;:&quot;strong&quot;}]},{&quot;text&quot;:&quot; notification type would have been recorded and the method of bringing the application into focus would have been different.   &quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;n0k105vgijh&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot; &quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;ns8tyjje0zn&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;At 18:06:52 UTC, a &quot;,&quot;type&quot;:&quot;text&quot;},{&quot;text&quot;:&quot;IndirectClear&quot;,&quot;type&quot;:&quot;text&quot;,&quot;marks&quot;:[{&quot;type&quot;:&quot;em&quot;},{&quot;type&quot;:&quot;strong&quot;}]},{&quot;text&quot;:&quot; notification type was recorded because the application was opened, and the user viewed the message. The notification will no longer be displayed on the Lock Screen or the Notification Center.&quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;n6jvv1a3b57&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot; &quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;nweaixynh91&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;Notice in Figure 27, there are several messages being sent back and forth. Some from the synced Mac and others from the iPhone, but notifications are not being recorded. This is because the Messenger application was in focus when these messages were being sent and received.&quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;n30n67ehls2&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot; &quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;npzu8503onr&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null}},{&quot;type&quot;:&quot;image&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;njbxqxfwhn1&quot;,&quot;url&quot;:&quot;https://assets.pubpub.org/hg5sk7xp/11659645419980.png&quot;,&quot;href&quot;:null,&quot;size&quot;:100,&quot;align&quot;:&quot;center&quot;,&quot;altText&quot;:&quot;&quot;,&quot;caption&quot;:&quot;&quot;,&quot;hideLabel&quot;:false,&quot;fullResolution&quot;:false}},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;n12mpzt0d0j&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;Figure 27&quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;nnyyiss4tu2&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot; &quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;nrvyrb0nbxu&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;In Figure 28, I have combined ArtEx and the &quot;,&quot;type&quot;:&quot;text&quot;},{&quot;text&quot;:&quot;KnowledgeC.db&quot;,&quot;type&quot;:&quot;text&quot;,&quot;marks&quot;:[{&quot;type&quot;:&quot;em&quot;},{&quot;type&quot;:&quot;strong&quot;}]},{&quot;text&quot;:&quot; date in a video to again show how this works together. &quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;nqgpstyf8lg&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot; &quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;nxaueoahhzl&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null}},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;nhglyzesroa&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;Figure 28 &quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;n8geeyhanhi&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot; &quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;heading&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;considerations&quot;,&quot;rtl&quot;:null,&quot;level&quot;:2,&quot;fixedId&quot;:&quot;&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;Considerations:&quot;,&quot;type&quot;:&quot;text&quot;,&quot;marks&quot;:[{&quot;type&quot;:&quot;strong&quot;}]}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;ncrm652y4j8&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;Most of this testing was done on a device with iOS 14.7.1, but I believe the results of this testing should be true with other versions of iOS 14.&quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;nuv0ei8zh0i&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;I plan to conduct some additional testing on how device notifications are stored if the device is connected to a vehicle with and without CarPlay. I have done some preliminary testing, and it appears to be very similar to what has already been detailed in this blog. I will add any additional information learned to this blog later. &quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;heading&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;conclusion&quot;,&quot;rtl&quot;:null,&quot;level&quot;:2,&quot;fixedId&quot;:&quot;&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;Conclusion:&quot;,&quot;type&quot;:&quot;text&quot;,&quot;marks&quot;:[{&quot;type&quot;:&quot;strong&quot;}]}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;ngawthbjcui&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;I believe it has been demonstrated there are certain types of notifications that can be used, in conjunction with other device data, to prove whether a user interacted with a device at a certain time. &quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;n34q7jbqnik&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot; Based on testing&quot;,&quot;type&quot;:&quot;text&quot;},{&quot;text&quot;:&quot; ZVALUESTRING&quot;,&quot;type&quot;:&quot;text&quot;,&quot;marks&quot;:[{&quot;type&quot;:&quot;em&quot;},{&quot;type&quot;:&quot;strong&quot;}]},{&quot;text&quot;:&quot; is the notification types and each notification type is created when:&quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;nt24v90ywnj&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;·       Clear = Notification was cleared by a user via the Lock Screen or Notification Center &quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;nou1lwownkm&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;·       DefaultAction = An application is opened via a notification&quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;n6m6nq5ux3v&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;·       Dismiss = Notification was dismissed by a device user when the notification was received&quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;npo097y033a&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;·       Hidden = When notifications are hidden from the Lock Screen &quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;n4xlp1ooy49&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;·       IndirectClear = When notifications are cleared from the Notification Center&quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;nt3fxgfg4ao&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;·       Orb = Is triggered via user interaction when an application is opened in a small sub-window &quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;nbdn8btnrsi&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;·       Receive = Is when a notification is received and displayed on the device&quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;ndzv11zbwzv&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot; &quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;heading&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;references&quot;,&quot;rtl&quot;:null,&quot;level&quot;:2,&quot;fixedId&quot;:&quot;&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;References:&quot;,&quot;type&quot;:&quot;text&quot;,&quot;marks&quot;:[{&quot;type&quot;:&quot;strong&quot;}]}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;n7snoay3rnt&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;·       August 2018 – Sarah Edwards&quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;nf8gpz2ap0w&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;o   &quot;,&quot;type&quot;:&quot;text&quot;},{&quot;text&quot;:&quot;https://www.mac4n6.com/blog/2018/8/5/knowledge-is-power-using-the-knowledgecdb-database-on-macos-and-ios-to-determine-precise-user-and-application-usage&quot;,&quot;type&quot;:&quot;text&quot;,&quot;marks&quot;:[{&quot;type&quot;:&quot;link&quot;,&quot;attrs&quot;:{&quot;href&quot;:&quot;https://www.mac4n6.com/blog/2018/8/5/knowledge-is-power-using-the-knowledgecdb-database-on-macos-and-ios-to-determine-precise-user-and-application-usage&quot;,&quot;title&quot;:null,&quot;target&quot;:null}}]}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;n7hjukup0h2&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot; &quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;nbqcwu9lzb8&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;o   &quot;,&quot;type&quot;:&quot;text&quot;},{&quot;text&quot;:&quot;https://objectivebythesea.com/v3/talks/OBTS_v3_sEdwards.pdf&quot;,&quot;type&quot;:&quot;text&quot;,&quot;marks&quot;:[{&quot;type&quot;:&quot;link&quot;,&quot;attrs&quot;:{&quot;href&quot;:&quot;https://objectivebythesea.com/v3/talks/OBTS_v3_sEdwards.pdf&quot;,&quot;title&quot;:null,&quot;target&quot;:null}}]}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;ngcjlie88xu&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot; &quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;nz3a6rmt723&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;·       August 2019 – Christopher Vance &quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;n2290cuwg3n&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;o   &quot;,&quot;type&quot;:&quot;text&quot;},{&quot;text&quot;:&quot;https://blog.d204n6.com/2019/08/ios-12-delivered-notifications-and-new.html?m=1&quot;,&quot;type&quot;:&quot;text&quot;,&quot;marks&quot;:[{&quot;type&quot;:&quot;link&quot;,&quot;attrs&quot;:{&quot;href&quot;:&quot;https://blog.d204n6.com/2019/08/ios-12-delivered-notifications-and-new.html?m=1&quot;,&quot;title&quot;:null,&quot;target&quot;:null}}]}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;ny5v3pwosdd&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot; &quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;nfsemk0t7l4&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;·       October 2019 – Ian Whiffin&quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;ns1grm844h8&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;o   &quot;,&quot;type&quot;:&quot;text&quot;},{&quot;text&quot;:&quot;http://www.doubleblak.com/m/blogPosts.php?id=2&quot;,&quot;type&quot;:&quot;text&quot;,&quot;marks&quot;:[{&quot;type&quot;:&quot;link&quot;,&quot;attrs&quot;:{&quot;href&quot;:&quot;http://www.doubleblak.com/m/blogPosts.php?id=2&quot;,&quot;title&quot;:null,&quot;target&quot;:null}}]}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;n70tcjun9zd&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot; &quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;nkkrwuhkpry&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;·       Josh Hickman’s Test Device images:&quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;ndnmnueny7o&quot;,&quot;rtl&quot;:null,&quot;class&quot;:&quot;MsoNoSpacing&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;o   &quot;,&quot;type&quot;:&quot;text&quot;},{&quot;text&quot;:&quot;https://thebinaryhick.blog/&quot;,&quot;type&quot;:&quot;text&quot;,&quot;marks&quot;:[{&quot;type&quot;:&quot;link&quot;,&quot;attrs&quot;:{&quot;href&quot;:&quot;https://thebinaryhick.blog/&quot;,&quot;title&quot;:null,&quot;target&quot;:null}}]}]},{&quot;type&quot;:&quot;heading&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;dfir-review&quot;,&quot;rtl&quot;:null,&quot;level&quot;:1,&quot;fixedId&quot;:&quot;&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;DFIR Review&quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;ntf0p5omsp0&quot;,&quot;rtl&quot;:null,&quot;class&quot;:null,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;Determining what notifications, if any, were displayed on a mobile device is a common question asked of forensic examiners. Taking it a step further, understanding what a user of a device did when they were presented with a notification can provide user behavior patterns. The author of this paper demonstrated their understanding of the KnowledgeC and the gaps in research associated with notifications. &quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;n2uhabbbx5o&quot;,&quot;rtl&quot;:null,&quot;class&quot;:null,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;Reviewers found that some of the figures in the paper were missing or could not be viewed.&quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;nk5sxaa4xp6&quot;,&quot;rtl&quot;:null,&quot;class&quot;:null,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;As the Notification Center may be available from the lock screen, examiners should be cautioned on attributing interactive behavior to a a specific individual without performing additional analysis.&quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;heading&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;future-work-provided-by-dfir-review&quot;,&quot;rtl&quot;:null,&quot;level&quot;:1,&quot;fixedId&quot;:&quot;&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;Future Work (provided by DFIR Review)&quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;nixk5lpcwsb&quot;,&quot;rtl&quot;:null,&quot;class&quot;:null,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;Reviewers are interested in seeing additional values for ZVALUESTRING and additional data that may be associated with device usage. Reviewers also suggested not using video attachments in the submission, if possible, as they do not publish well.&quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;nxykm24eus7&quot;,&quot;rtl&quot;:null,&quot;class&quot;:null,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;Future work on this topic could include testing newer iOS versions to see if anything has changed and testing if additional forensic tools can verify this information. Reviewers also suggested trying different types of applications such as email and also looking at reminders and other alerts.&quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;heading&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;reviewers&quot;,&quot;rtl&quot;:null,&quot;level&quot;:1,&quot;fixedId&quot;:&quot;&quot;,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;Reviewers&quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;n7jagjqy3ck&quot;,&quot;rtl&quot;:null,&quot;class&quot;:null,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;Jessica Hyde, David Loveall (subreviewer) (Methodology Review, Validated Review Using Reviewer Generated Datasets)&quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;nc9uc9crzzm&quot;,&quot;rtl&quot;:null,&quot;class&quot;:null,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;Troy Pugliese (Methodology Review)&quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;n0aeen54fx7&quot;,&quot;rtl&quot;:null,&quot;class&quot;:null,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;Aricia Kulm (Methodology Review)&quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;nfee9cdm6ig&quot;,&quot;rtl&quot;:null,&quot;class&quot;:null,&quot;textAlign&quot;:null},&quot;content&quot;:[{&quot;text&quot;:&quot;Zheng Jie Chan (Methodology Review)&quot;,&quot;type&quot;:&quot;text&quot;}]},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;nyg39hsr47z&quot;,&quot;rtl&quot;:null,&quot;class&quot;:null,&quot;textAlign&quot;:null}},{&quot;type&quot;:&quot;paragraph&quot;,&quot;attrs&quot;:{&quot;id&quot;:&quot;n84np68voka&quot;,&quot;rtl&quot;:null,&quot;class&quot;:null,&quot;textAlign&quot;:null}}]},&quot;initialDocKey&quot;:1415,&quot;historyData&quot;:{&quot;latestKey&quot;:1415,&quot;currentKey&quot;:1415,&quot;timestamps&quot;:{}},&quot;isAVisitingCommenter&quot;:false,&quot;isReviewingPub&quot;:false,&quot;nextCollectionPub&quot;:null}}"></script><script id="chunk-name" type="text/plain" data-json="&quot;Pub&quot;"></script><script src="/dist/vendor.0257e546351f036bbd7d.bundle.js"></script><script src="/dist/main.0543ebefe1cf4d13c7ba.js"></script><script>(function(){function c(){var b=a.contentDocument||a.contentWindow.document;if(b){var d=b.createElement('script');d.innerHTML="window.__CF$cv$params={r:'93a922fc4e0fd98b',t:'MTc0NjM3MzY0OS4wMDAwMDA='};var a=document.createElement('script');a.nonce='';a.src='/cdn-cgi/challenge-platform/scripts/jsd/main.js';document.getElementsByTagName('head')[0].appendChild(a);";b.getElementsByTagName('head')[0].appendChild(d)}}if(document.body){var a=document.createElement('iframe');a.height=1;a.width=1;a.style.position='absolute';a.style.top=0;a.style.left=0;a.style.border='none';a.style.visibility='hidden';document.body.appendChild(a);if('loading'!==document.readyState)c();else if(window.addEventListener)document.addEventListener('DOMContentLoaded',c);else{var e=document.onreadystatechange||function(){};document.onreadystatechange=function(b){e(b);'loading'!==document.readyState&&(document.onreadystatechange=e,c())}}}})();</script></body></html>