TY - JOUR
T1 - Study of identifying and managing the potential evidence for effective Android forensics
AU - Kim, Dohyun
AU - Lee, Sangjin
N1 - Funding Information:
We would like to thank reviewers for their insightful comments and advice. This work was supported by Institute of Information & communications Technology Planning & evaluation (IITP) grant funded by the Korea government (MSIT) (No. 2018-0-01000 , Development of Digital Forensic Integration Platform).
Publisher Copyright:
© 2019 Elsevier Ltd
PY - 2020/6
Y1 - 2020/6
N2 - Since the advent of various IoT devices, the need for digital forensics for mobile devices that people use most closely in their daily lives has continued to grow. Besides, as Bring Your Own Device (BYOD) becomes the trend, devices store business-related information as well as privacy. Thus, mobile devices are becoming the most critical evidence of digital forensics. For practical mobile forensics, it is necessary to identify crime-related items among the many files inside the device accurately. Also, various user information for user behavior analysis from these files should be effectively extracted and managed as potential evidence to ensure integrity. This paper proposes an efficient forensics investigation method for mobile devices with Android OS, which holds the highest share in the world among mobile devices. In this paper, we studied data pre-processing (classification and identification of data), data analysis, evidence management, and Android data Taxonomy.
AB - Since the advent of various IoT devices, the need for digital forensics for mobile devices that people use most closely in their daily lives has continued to grow. Besides, as Bring Your Own Device (BYOD) becomes the trend, devices store business-related information as well as privacy. Thus, mobile devices are becoming the most critical evidence of digital forensics. For practical mobile forensics, it is necessary to identify crime-related items among the many files inside the device accurately. Also, various user information for user behavior analysis from these files should be effectively extracted and managed as potential evidence to ensure integrity. This paper proposes an efficient forensics investigation method for mobile devices with Android OS, which holds the highest share in the world among mobile devices. In this paper, we studied data pre-processing (classification and identification of data), data analysis, evidence management, and Android data Taxonomy.
KW - Android forensics
KW - Android forensics XML
KW - Data classification
KW - Data grouping
KW - Data taxonomy
KW - Evidence management
KW - Mobile data analysis
KW - Mobile forensics
KW - Potential evidence identification
UR - http://www.scopus.com/inward/record.url?scp=85084309383&partnerID=8YFLogxK
U2 - 10.1016/j.fsidi.2019.200897
DO - 10.1016/j.fsidi.2019.200897
M3 - Article
AN - SCOPUS:85084309383
SN - 2666-2825
VL - 33
JO - Forensic Science International: Digital Investigation
JF - Forensic Science International: Digital Investigation
M1 - 200897
ER -