2F.Y.W.Law, 'Methodology of Event Analysis m Computer Forensics Investigation' , Master course project paper, The University of Hong Kong, August 2006.
3D. Brian, H. Eugene, 'Defining event reconstruction of a digital crime scene' , Journal of Forensic Sciences 2004.
4C. Boyd, P. Forster, Time and date issues in forensic computinga case study' , Digital Investigation 2004, 1:18-23.
6E. Casey, 'Uncertainty and Loss in Digital Evidence' , International Journal on Digital Evidence, Summer 2002, vol 1:2.
7H. Lee, T. Palmbach, M. Miller. 'Henry Lee' s crime scene handbook' , London: Academic Press, 2001.
8M. Vails, 'Law Enforcement Tools and technologaes for Investigating Cyber Attack' , Damnouth College, 2002.
9K.P. Chow, Frank Y.W. Law, Michael Y.IC Kwan, K.Y. Lai, "The Rule of Time on NTFS File System" , in Proc. of the Second International Workshop on Systematic Approaches to Digital Forensic Engineering (SADFE), 2007.
