Password recovery using an evidence collection tool and countermeasures

Seokhee Lee, Antonio Savoldi, Sangjin Lee, Jongin Lim

    Research output: Chapter in Book/Report/Conference proceedingConference contribution

    12 Citations (Scopus)

    Abstract

    In this paper we propose a methodology used to analyse collected pagefiles belonging to public computers using a pagefile collection tool (PCT), which is suitable to be used in a live forensics context. After that, we investigated how to gather sensitive information such as passwords and usernames, which we found in half of the analysed pagefiles. Undoubtedly, this fact can be used by a forensics practitioner to solve the investigation faster, by using such information in order to acquire useful information about a crime. However, if such forensic pagefile collection tool was used as a hacking tool, it could cause leakage of privacy information. To be more precise, it allows easy gathering of critical information such as passwords and credit card numbers. Accordingly, in order to solve this problem, we have proposed a programming methodology to prevent the "swap-out" of sensitive information from main memory to pagefile. Finally, we also proposed a system model to perform the encryption of pagefile memory in order to improve the security of a computer system.

    Original languageEnglish
    Title of host publicationProceedings - 3rd International Conference on Intelligent Information Hiding and Multimedia Signal Processing, IIHMSP 2007.
    Pages97-102
    Number of pages6
    DOIs
    Publication statusPublished - 2007
    Event3rd International Conference on Intelligent Information Hiding and Multimedia Signal Processing, IIHMSP 2007 - Kaohsiung, Taiwan, Province of China
    Duration: 2007 Nov 262007 Nov 28

    Publication series

    NameProceedings - 3rd International Conference on Intelligent Information Hiding and Multimedia Signal Processing, IIHMSP 2007.
    Volume2

    Other

    Other3rd International Conference on Intelligent Information Hiding and Multimedia Signal Processing, IIHMSP 2007
    Country/TerritoryTaiwan, Province of China
    CityKaohsiung
    Period07/11/2607/11/28

    ASJC Scopus subject areas

    • Computer Networks and Communications
    • Signal Processing
    • Information Systems and Management

    Fingerprint

    Dive into the research topics of 'Password recovery using an evidence collection tool and countermeasures'. Together they form a unique fingerprint.

    Cite this