TY - JOUR
T1 - Mobile forensic reference set (MFReS) and mobile forensic investigation for android devices
AU - Kim, Dohyun
AU - Lee, Yunho
AU - Lee, Sangjin
N1 - Funding Information:
This research was supported by the Public Welfare and Safety Research Program through the National Research Foundation of Korea (NRF) funded by the Ministry of Science, ICT and Future Planning (2012M3A2A1051106).
Publisher Copyright:
© 2017, Springer Science+Business Media, LLC, part of Springer Nature.
PY - 2018/12/1
Y1 - 2018/12/1
N2 - This paper proposes the mobile forensic reference set (MFReS), a mobile forensic investigation procedure and a tool for mobile forensics that we developed. The MFReS consists of repositories, databases, and services that can easily retrieve data from a database, which can be used to effectively classify meaningful data related to crime, among numerous data types in mobile devices. Mobile data consist of system data, application data, and multimedia data according to characteristics and format. We have developed a mobile forensic process that can effectively analyze information from installed applications and user behavior through these data. In particular, our tool can be useful for investigators because it can analyze the log files of all applications (apps) and analyze behavior based on timeline, geodata, and other characteristics. Our research can contribute to the study of mobile forensic support systems and suggest the direction of mobile data analysis tool development.
AB - This paper proposes the mobile forensic reference set (MFReS), a mobile forensic investigation procedure and a tool for mobile forensics that we developed. The MFReS consists of repositories, databases, and services that can easily retrieve data from a database, which can be used to effectively classify meaningful data related to crime, among numerous data types in mobile devices. Mobile data consist of system data, application data, and multimedia data according to characteristics and format. We have developed a mobile forensic process that can effectively analyze information from installed applications and user behavior through these data. In particular, our tool can be useful for investigators because it can analyze the log files of all applications (apps) and analyze behavior based on timeline, geodata, and other characteristics. Our research can contribute to the study of mobile forensic support systems and suggest the direction of mobile data analysis tool development.
KW - Digital forensics
KW - Investigation process
KW - Mobile data repository
KW - Mobile forensic tool
KW - Mobile forensics
KW - RDS
KW - Reference data set
UR - http://www.scopus.com/inward/record.url?scp=85035762330&partnerID=8YFLogxK
U2 - 10.1007/s11227-017-2205-5
DO - 10.1007/s11227-017-2205-5
M3 - Article
AN - SCOPUS:85035762330
VL - 74
SP - 6618
EP - 6632
JO - The Journal of Supercomputing
JF - The Journal of Supercomputing
SN - 0920-8542
IS - 12
ER -
