Characterizing client-side caches of audiovisual content sharing services: Findings and suggestions for forensics

Yirang Lim, Min A. Youn, Hyunji Chung, Jungheum Park, Graeme Horsman, Sangjin Lee

Research output: Contribution to journalArticlepeer-review

Abstract

In light of the advancements in computing technology, and an increase in the use of mobile devices, various forms of services have emerged in recent times. Particularly, audiovisual (AV) content-based services that stream broadcasts through personal channels or self-produced video content shared with friends has been gaining ground. It is evolving into a new platform category to share information or help people express themselves. Meanwhile, there have been instances across the globe where these services have been used to stream or share illegal content. So far, few systematic technical studies have been conducted to investigate crimes associated with online services. In the process of viewing, sharing, and distributing illegal videos, digital artifacts may be saved on digital devices such as a PC or smartphone. This paper explores the client-side caches generated as a consequence of ‘viewing’ visible content through AV content-based services, including Dailymotion, Instagram, LINE, Snapchat, Telegram, TikTok, and YouTube, in various platforms including Windows, Android and iOS. Through analyzing caching mechanisms, this study categorizes and characterizes various AV caches observed during repeated experiments. This work also proposes algorithms (in combination with a developed open-source tool) for obtaining playable (visible) contents, by identifying and reassembling fragmented AV pieces.

Original languageEnglish
Article number103102
JournalJournal of Information Security and Applications
Volume65
DOIs
Publication statusPublished - 2022 Mar

Bibliographical note

Funding Information:
This work was supported by a Korea University Grant, and also supported by Police-Lab 2.0 Program(www.kipot.or.kr) funded by the Ministry of Science and ICT (MSIT, Korea) & Korean National Police Agency(KNPA, Korea). [Project Name: Research on Data Acquisition and Analysis for Counter Anti-Forensics/Project Number: 210121M07]

Funding Information:
This work was supported by a Korea University Grant, and also supported by Police-Lab 2.0 Program( www.kipot.or.kr ) funded by the Ministry of Science and ICT (MSIT, Korea) & Korean National Police Agency(KNPA, Korea). [Project Name: Research on Data Acquisition and Analysis for Counter Anti-Forensics/Project Number: 210121M07 ]

Publisher Copyright:
© 2022 Elsevier Ltd

Keywords

  • Audiovisual cache
  • Cybercrime
  • Digital forensics
  • IoT forensics
  • Messaging service
  • Multimedia forensics
  • Social networking service
  • Streaming service

ASJC Scopus subject areas

  • Software
  • Safety, Risk, Reliability and Quality
  • Computer Networks and Communications

Fingerprint

Dive into the research topics of 'Characterizing client-side caches of audiovisual content sharing services: Findings and suggestions for forensics'. Together they form a unique fingerprint.

Cite this