In any court case, the technical expert's evidence is open to legal challenge and such challenges, irrespective of the outcome, might delay the process of litigation. Hence, it is pertinent that the investigator and expert preempt any delay by making the report as comprehensive and complete as possible. The investigator can thus follow a digital forensic process model to aid the digital investigation. The challenge therefore in digital forensics is to find and discover forensically interesting,

more »

... suspicious or useful patterns within often very large data sets. Consequently, this paper presents a dynamic, adaptive clustering model to arrange unstructured documents into content-based homogeneous groups. The document clustering framework, based on kernel k-means which relies on Radial Basis Function (RBF) has demonstrated can profitably support intelligence and security activities in identifying, tracking, extracting, classifying and discovering patterns, so that the outcomes can generate alert notifications accordingly. Also, the method can generate consistent structures for information access and retrieval.