CSA/RFPS/Mobile (2G/3G/4G/5G/6G) Articles (2025/2026)

 Greg Smith TrewMTE - CSA/RFPS/Mobile (2G/3G/4G/5G/6G) Articles (2025/2026)

EVIDENCE & LEGAL ISSUES PART THREE https://www.linkedin.com/pulse/evidence-legal-issues-part-three-greg-smith-mteb-idf-uni-t3x6e/

EVIDENCE & LEGAL ISSUES PART TWO https://www.linkedin.com/pulse/evidence-legal-issues-part-two-greg-smith-mteb-idf-uni-niyfe

EVIDENCE & LEGAL ISSUES PART ONE https://www.linkedin.com/pulse/evidence-legal-issues-part-one-greg-smith-mteb-idf-uni-e500e

Propagation Models in Forensic Cell Site Analysis (CSA) and Radio Frequency Propagation Surveys (RFPS) https://www.linkedin.com/pulse/propagation-models-forensic-cell-site-analysis-csa-greg-7boqe

Investigator/radio engineer you have the weight-of-history on your shoulders https://www.linkedin.com/feed/update/urn:li:activity:7327016659318181889/

LTE with 5G creeping in https://www.linkedin.com/feed/update/urn:li:activity:7352716708773519362/

Linking evidence to create a chain of causation: Concerning Cell Site Analysis (CSA) and Radio Frequency Propagation Surveys (RFPS) (Part 1) https://www.linkedin.com/pulse/linking-evidence-create-chain-causation-concerning-1-greg-ego9e/

A Unified, Operational View of How 4G/5G Actually Works https://www.linkedin.com/pulse/unified-operational-view-how-4g5g-actually-works-greg-j7qee/

3GPP TA Distance Mistake TrewMTE Forensic_Lab_TA_Defintion_Manual https://www.linkedin.com/posts/trewmte_recovering-from-ta-distance-mistake-ugcPost-7438124925577482240-2dXT/

5G NR Random Access Failures: Root Causes, 3GPP Mechanisms, and RAN Optimization https://www.linkedin.com/feed/update/urn:li:activity:7439168328717283328/

The Timing Advance Discussion. "Proof in 3GPP Standards: TrewMTE Forensic_Lab_TA_Defintion_Manual" https://www.linkedin.com/feed/update/urn:li:activity:7436973331792343040/

3GPP TA ANOMALIES TrewMTE Forensic_Lab_TA_Defintion_Manual https://www.linkedin.com/posts/trewmte_timing-advance-time-drift-anomalies-activity-7437837598544424960-Vyvb/

3GPP TA Distance Mistake TrewMTE Forensic_Lab_TA_Defintion_Manual https://www.linkedin.com/feed/update/urn:li:activity:7438124926869417984/

Cell Site Analysis (CSA) - A common sense approach https://www.linkedin.com/feed/update/urn:li:activity:7436227984983941121/

SUPER-LOCALISATION PROGRAMME_ESTIMATE COST ANALYSIS https://www.linkedin.com/feed/update/urn:li:activity:7346565158762164224/

Presence Sensor in the present tense! https://www.linkedin.com/feed/update/urn:li:activity:7345882914611470337/

Investigating 6G Waveform Comparison for Forensic RFPS and CSA https://www.linkedin.com/feed/update/urn:li:activity:7373024085687189504/

Forensic Aspects of Southbound LTE Signalling (from eNodeB to UE): Concerning CSA/RFPS (Part 1/2) https://www.linkedin.com/pulse/forensic-aspects-southbound-lte-signalling-from-ue-12-greg-m1o4e/

Expert Report Excerpt: Engineering Intent vs Evidential Interpretation https://www.linkedin.com/feed/update/urn:li:activity:7412932649264254976

Forensic Relevance of 5G BEAMS Dataset Fields: Relating to Cell Site Analysis (CSA) / Radio Frequency Propagation Survey (RFPS). https://www.linkedin.com/pulse/forensic-relevance-5g-beams-dataset-fields-relating-greg-ympoe/

Passive 5G monitoring tools: Concerning Cell Site Analysis (CSA) and Radio Frequency Propagation Survey (RFPS) (Part3) https://www.linkedin.com/feed/update/urn:li:activity:7318267530563760128

Reconfigurable Intelligent Surfaces (RIS) and forensic implications in 6G CSA (Part 1) https://www.linkedin.com/feed/update/urn:li:activity:7309570795062636545

Forensic Challenges in 6G Cell Site Analysis (CSA) and Radio Frequency Propagation Surveys (RFPS) https://www.linkedin.com/pulse/forensic-challenges-6g-cell-site-analysis-csa-radio-greg-karue/

Reconfigurable Intelligent Surfaces (RIS) and forensic implications in 6G CSA (Part 1) https://www.linkedin.com/pulse/reconfigurable-intelligent-surfaces-ris-forensic-6g-1-greg-iwvxe/

Cell ID detection in RIS-aided communications (Part 2): 6G Cell Site Analysis (CSA) and Radio Frequency Propagation Surveys (RFPS) https://www.linkedin.com/pulse/cell-id-detection-ris-aided-communications-part-2-6g-greg-0zite

Forensic Adaptations for Cell Site Analysis (CSA) in RIS-Based 6G Networks (Part 3): 6G Cell Site Analysis (CSA) and RFPS https://www.linkedin.com/pulse/forensic-adaptations-cell-site-analysis-csa-ris-based-greg-krpoe/

Proposal or Updating FSR and UKAS Standards to Address 5G/6G Challenges in Cell Site Analysis (CSA) and RFPS https://www.linkedin.com/pulse/proposal-updating-fsr-ukas-standards-address-5g6g-csa-greg-n9nje/

Potential Legal Arguments for and Against 5G Cell Site Analysis (CSA) in Criminal Trials (Part1) https://www.linkedin.com/pulse/potential-legal-arguments-against-5g-cell-site-csa-greg-gzule

Advanced Legal Considerations: 5G Cell Site Analysis (CSA) in Criminal Trials – Core Network Parameters and Contextual Complexity (Part1A) https://www.linkedin.com/pulse/advanced-legal-considerations-5g-cell-site-analysis-greg-3vmxe

Key 3GPP Specifications Relevant to Cell Site Analysis (CSA) and Forensic Investigations (Part2) https://www.linkedin.com/pulse/key-3gpp-specifications-relevant-cell-site-analysis-greg-sqxje/

3GPP Releases and GSMA Informatics 2024 to 2030 https://www.linkedin.com/feed/update/urn:li:activity:7318180287744495616/

Passive 5G monitoring tools: Concerning Cell Site Analysis (CSA) and Radio Frequency Propagation Survey (RFPS) (Part3) https://www.linkedin.com/pulse/passive-5g-monitoring-tools-concerning-cell-site-csa-greg-vszle/

Downlink Broadcast Information Elements (IEs) and Forensic Value - Overview: Concerning Cell Site Analysis (CSA) and RFPS (Part4) https://www.linkedin.com/pulse/downlink-broadcast-information-elements-ies-forensic-greg-adz7e/

Series of 6G articles relating to Cell Site Analysis (CSA) and Radio Frequency Propagation Surveys https://www.linkedin.com/feed/update/urn:li:activity:7312314973265809408/

Forensic Assessment of Distributed Antenna Systems (DAS) using Cell Site Analysis (CSA) and Radio Frequency Propagation Survey (RFPS) https://www.linkedin.com/pulse/forensic-assessment-distributed-antenna-systems-das-greg-pq0ge/

6G CSA/RFPS Challenges

Articles I have written relate to Cell Site Analysis (CSA)/Radio Frequency Propagation Survey (RFPS) capability in the wake of the proposed 6G. The advanced work is about a system that I said is not in operation yet, but is coming. The preparatory 6G lessons learnt is intended to assist with 5G, 5G NSA, 5G SA, 5G-A for the next move to 6G. If we can get this right it should benefit law enforcement, investigators and the Criminal Justice System facing uncertainty about how to proceed. Behind the scenes there is a lot of work going to migrate challenges into the AI + Cloud environment so we may as well enjoy the benefits they can bring. Importantly we need to inform the Codes of Practice and Accreditation Framework what new tools are needed to do the CSA/RFPS job. 

Forensic Challenges in 6G Cell Site Analysis (CSA) and Radio Frequency Propagation Surveys (RFPS) - https://cellsiteanalysis.blogspot.com/2025/04/forensic-challenges-in-6g-cell-site.html

Reconfigurable Intelligent Surfaces (RIS) and forensic implications in 6G CSA (Part 1) - https://cellsiteanalysis.blogspot.com/2025/04/reconfigurable-intelligent-surfaces-ris.html

Cell ID detection in RIS-aided communications (Part 2): 6G Cell Site Analysis (CSA) and Radio Frequency Propagation Surveys (RFPS) - https://cellsiteanalysis.blogspot.com/2025/04/cell-id-detection-in-ris-aided.html

Forensic Adaptations for Cell Site Analysis (CSA) in RIS-Based 6G Networks (Part 3): 6G Cell Site Analysis (CSA) and RFPS - https://cellsiteanalysis.blogspot.com/2025/04/here-is-part-3-in-series-of-articles.html

Proposal for Updating FSR and UKAS Standards to Address 5G/6G Challenges in Cell Site Analysis (CSA) and RFPS (Part 4) - https://cellsiteanalysis.blogspot.com/2025/04/proposal-for-updating-fsr-and-ukas.html

D-DAY Commemorations 2024: Portsmouth & Normandy

 

Announcement by the UK Ministry of Defence

Next week we will salute the "great and righteous cause" of the Allied troops on D-Day, 80 years on. Major commemorative events will be held on 5 and 6 June in Portsmouth and Normandy:

https://www.gov.uk/government/news/prime-minister-and-red-arrows-to-lead-d-day-80-commemorations

https://trewmte.blogspot.com/2014/06/d-day-6th-june.html

Practical Digital Forensics (Book 2023)

Practical Digital Forensics. Forensic Lab Setup, Evidence Analysis, and Structured Investigation Across Windows, Mobile, Browser, HDD, and Memory ISBN: 9789355511454

Table of Contents

1. Introduction to Digital Forensics

Introduction

Structure

Objectives

Defining digital forensics

Digital forensics goals

Defining cybercrime

Sources of cybercrime

Computers in cybercrimes

Digital forensics categories

Computer forensics

Mobile forensics

Network forensics

Database forensics

Forensic data analysis

Digital forensics users

Law enforcement

Civil ligation

Intelligence and counterintelligence

Digital forensics investigation types

Forensics readiness

Type of digital evidence

User-created data

Machine and network-created data

Locations of electronic evidence

Chain of custody

Examination process

Seizure

Acquisition

Analysis

Reporting

Conclusion

Multiple choice questions/questions

Learning Section

Answers

See in extra comments below

2. Essential Technical Concepts

Introduction

Structure

Objectives

Decimal (Base-10)

Binary

Hexadecimal (Base-16)

Hexadecimal (Base-64)

Character encoding schema

File carving

File structure

Digital file metadata

Timestamps decoder

Hash analysis

Calculate file hash

System memory

Types of computer memory storage

Primary storage

RAM

ROM

Secondary storage

Backup storage

HDD

Hard disk storage

SSD

DCO and HPA

Considerations for data recovery

File system

NTFS

FAT

Environment for computing

Cloud computing

Software as a service (SaaS)

Platform as a service (SaaS)

Infrastructure as a service (SaaS)

Windows versions

Internet protocol (IP) address

Getting an IP address

Conclusion

3. Hard Disks and File Systems

Introduction

Structure

Objectives

Hard disk and file systems

File systems

Hard disk

Hard disk forensics

Analyzing the registry files

Conclusion

4. Requirements for a Computer Forensics Lab

Introduction

Structure

Objectives

Digital Forensic Lab

Physical requirements

Environment controls

Digital forensic equipment

Forensic hardware

Office electrical equipment

Networked devices

Forensic workstation

Commercial digital forensic workstations

Forensic software applications

Commercial forensics tools

Open-source forensic tools

Linux distributions

Virtualization

Lab information management system (LIMS)

Lab policies and procedures

Documentation

Lab accreditation

Conclusion

5. Acquiring Digital Evidence

Introduction

Structure

Objectives

Raw format

Advanced forensic format

EnCase: Expert witness transfers

Other file formats

Validation of forensic imaging files

Live memory acquisition

Virtual memory: Swap space

Challenges acquiring RAM

Administration privilege

Live RAM capturer

Magnet RAM capture

FTK imager

Acquiring nonvolatile memory

Hard disk acquisition

Acquiring physical resources

Logical acquisition

Sparse acquisition

Capturing hard drives using FTK imager

Network acquisition

Limitations of a forensic tool

Conclusion

6. Analysis of Digital Evidence

Introduction

Structure

Objectives

Arsenal Image Mounter

OSFMount

Autopsy

Analyzing RAM forensic image

Memoryze

Redline

Volatility framework

Conclusion

7. Windows Forensic Analysis

Introduction

Structure

Timeline analysis tools

File recovery

Undeleting files

Recycle bin forensics

Data carving

Associated user account action

Windows registry analysis

Windows registry architecture

Acquiring windows registry

Registry examination

Windows registry program keys

USB device forensics

Most recently used list

Network analysis

Windows shutdown time

UserAssist forensics

Printer registry information

File format identification

Windows thumbnail forensics

Windows 10 forensics

Notification area database

Cortana forensics

Conclusion

8. Web Browser and E-mail Forensics

Introduction

Structure

Objectives

Web browser forensics

Google chrome browser forensics

Top sites and shortcuts

Login data

Web data

Bookmarks

Bookmarks.bak

Cache folder

Mozilla Firefox Browser Forensics

Microsoft Edge browser forensics

Other Web browser investigation tools

Conclusion

References

9. E-mail Forensics

Introduction

Structure

Objectives

E-mails around us

E-mail communication steps

E-mail protocols

Examine e-mail headers

Reveal header information

View Gmail headers

View Outlook mail header

View Mozilla Thunderbird headers

View Outlook mail client header

Analyzing e-mail headers

Determine the sender’s geolocation and time zone

Conclusion

10. Anti-Forensics Techniques and Report Writing

Introduction

Structure

Objectives

Anti-forensics techniques

Digital Steganography

Text Steganography

Image Steganography

Audio-video Steganography

Network Steganography

Metadata manipulation

Encryption techniques

Disk encryption using open-source tools

Anonymity techniques

Digital forensic reports

Conclusion

11. Hands-on Lab Practical

Introduction

Lab 1: FTK imager

Lab 2: Magnet RAM capture

Lab 3: Memory forensics

Lab 4: Malware analysis

Lab 5: data hiding—Steganography

Lab 6: Recovering deleted files

Lab 7: Finding key evidence

Lab 8: Analyzing the registry for evidence

Lab 9: Analyzing Windows pre-fetch files for evidence

Lab 10: Browser forensics

Lab 11: Extracting EXIF data from graphics files

Index