Mobile forensic reference set (MFReS) and mobile forensic investigation for android devices

Dohyun Kim; Yunho Lee; Sangjin Lee

doi:10.1007/s11227-017-2205-5

Mobile forensic reference set (MFReS) and mobile forensic investigation for android devices

Dohyun Kim, Yunho Lee, Sangjin Lee

Graduate School of Information Study

Research output: Contribution to journal › Article › peer-review

2 Citations (Scopus)

Abstract

This paper proposes the mobile forensic reference set (MFReS), a mobile forensic investigation procedure and a tool for mobile forensics that we developed. The MFReS consists of repositories, databases, and services that can easily retrieve data from a database, which can be used to effectively classify meaningful data related to crime, among numerous data types in mobile devices. Mobile data consist of system data, application data, and multimedia data according to characteristics and format. We have developed a mobile forensic process that can effectively analyze information from installed applications and user behavior through these data. In particular, our tool can be useful for investigators because it can analyze the log files of all applications (apps) and analyze behavior based on timeline, geodata, and other characteristics. Our research can contribute to the study of mobile forensic support systems and suggest the direction of mobile data analysis tool development.

Original language	English
Pages (from-to)	6618-6632
Number of pages	15
Journal	Journal of Supercomputing
Volume	74
Issue number	12
DOIs	https://doi.org/10.1007/s11227-017-2205-5
Publication status	Published - 2018 Dec 1

Keywords

Digital forensics
Investigation process
Mobile data repository
Mobile forensic tool
Mobile forensics
RDS
Reference data set

ASJC Scopus subject areas

Software
Theoretical Computer Science
Information Systems
Hardware and Architecture

Access to Document

10.1007/s11227-017-2205-5

Fingerprint Dive into the research topics of 'Mobile forensic reference set (MFReS) and mobile forensic investigation for android devices'. Together they form a unique fingerprint.

Cite this

@article{641ea4006e54493cb20d7752cfacc008,

title = "Mobile forensic reference set (MFReS) and mobile forensic investigation for android devices",

abstract = "This paper proposes the mobile forensic reference set (MFReS), a mobile forensic investigation procedure and a tool for mobile forensics that we developed. The MFReS consists of repositories, databases, and services that can easily retrieve data from a database, which can be used to effectively classify meaningful data related to crime, among numerous data types in mobile devices. Mobile data consist of system data, application data, and multimedia data according to characteristics and format. We have developed a mobile forensic process that can effectively analyze information from installed applications and user behavior through these data. In particular, our tool can be useful for investigators because it can analyze the log files of all applications (apps) and analyze behavior based on timeline, geodata, and other characteristics. Our research can contribute to the study of mobile forensic support systems and suggest the direction of mobile data analysis tool development.",

keywords = "Digital forensics, Investigation process, Mobile data repository, Mobile forensic tool, Mobile forensics, RDS, Reference data set",

author = "Dohyun Kim and Yunho Lee and Sangjin Lee",

note = "Funding Information: This research was supported by the Public Welfare and Safety Research Program through the National Research Foundation of Korea (NRF) funded by the Ministry of Science, ICT and Future Planning (2012M3A2A1051106).",

year = "2018",

month = dec,

day = "1",

doi = "10.1007/s11227-017-2205-5",

language = "English",

volume = "74",

pages = "6618--6632",

journal = "The Journal of Supercomputing",

issn = "0920-8542",

publisher = "Springer Netherlands",

number = "12",

}

TY - JOUR

T1 - Mobile forensic reference set (MFReS) and mobile forensic investigation for android devices

AU - Kim, Dohyun

AU - Lee, Yunho

AU - Lee, Sangjin

N1 - Funding Information: This research was supported by the Public Welfare and Safety Research Program through the National Research Foundation of Korea (NRF) funded by the Ministry of Science, ICT and Future Planning (2012M3A2A1051106).

PY - 2018/12/1

Y1 - 2018/12/1

N2 - This paper proposes the mobile forensic reference set (MFReS), a mobile forensic investigation procedure and a tool for mobile forensics that we developed. The MFReS consists of repositories, databases, and services that can easily retrieve data from a database, which can be used to effectively classify meaningful data related to crime, among numerous data types in mobile devices. Mobile data consist of system data, application data, and multimedia data according to characteristics and format. We have developed a mobile forensic process that can effectively analyze information from installed applications and user behavior through these data. In particular, our tool can be useful for investigators because it can analyze the log files of all applications (apps) and analyze behavior based on timeline, geodata, and other characteristics. Our research can contribute to the study of mobile forensic support systems and suggest the direction of mobile data analysis tool development.

AB - This paper proposes the mobile forensic reference set (MFReS), a mobile forensic investigation procedure and a tool for mobile forensics that we developed. The MFReS consists of repositories, databases, and services that can easily retrieve data from a database, which can be used to effectively classify meaningful data related to crime, among numerous data types in mobile devices. Mobile data consist of system data, application data, and multimedia data according to characteristics and format. We have developed a mobile forensic process that can effectively analyze information from installed applications and user behavior through these data. In particular, our tool can be useful for investigators because it can analyze the log files of all applications (apps) and analyze behavior based on timeline, geodata, and other characteristics. Our research can contribute to the study of mobile forensic support systems and suggest the direction of mobile data analysis tool development.

KW - Digital forensics

KW - Investigation process

KW - Mobile data repository

KW - Mobile forensic tool

KW - Mobile forensics

KW - RDS

KW - Reference data set

UR - http://www.scopus.com/inward/record.url?scp=85035762330&partnerID=8YFLogxK

UR - http://www.scopus.com/inward/citedby.url?scp=85035762330&partnerID=8YFLogxK

U2 - 10.1007/s11227-017-2205-5

DO - 10.1007/s11227-017-2205-5

M3 - Article

AN - SCOPUS:85035762330

VL - 74

SP - 6618

EP - 6632

JO - The Journal of Supercomputing

JF - The Journal of Supercomputing

SN - 0920-8542

IS - 12

ER -