Journal of the Korea Society of Computer and Information (한국컴퓨터정보학회논문지)

Korean Society of Computer Information (한국컴퓨터정보학회)
권호 표지
DOI QR코드

DOI QR Code

Implementation of an Android Smart phone Forensic Tool Based on Logical Analysis

논리적 분석 기반의 안드로이드 스마트폰 포렌식 도구 구현

  • Kim, Ik-Su (School of Computer Science and Engineering, Soongsil University) ;
  • An, Young-Geon (School of Computer Science and Engineering, Soongsil University) ;
  • Yi, Jeong-Hyun (School of Computer Science and Engineering, Soongsil University) ;
  • Yang, Seung-Jei (The Attached Institute of ETRI) ;
  • Kim, Myung-Ho (School of Computer Science and Engineering, Soongsil University)
  • Received : 2010.12.10
  • Accepted : 2011.01.10
  • Published : 2011.04.30
Download PDF
⟨ Previous Next ⟩

Abstract

In the past, the domestic research on mobile forensics has been limited to cell phones. Increasing use of smart phones, studies on smart phone forensic will be conducted actively in the future. In particular, the study on Android forensic is very important because Android smart phone market share is increasing rapidly. In this paper, we describe an implementation of an Android smart phone forensic tool based on logical analysis. Compared with Oxygen Forensic Suite 2010, this tool saves time it takes to perform Android smart phone forensic because this tool provides search feature and resource links for extracted media information. So far, no smart phone forensic tool is introduced in Korea. Accordingly, this tool would contribute to the advancement of the technology on smart phone forensic.

과거에는 국내 모바일 포렌식에 관한 연구가 휴대폰에 한정되었지만, 스마트폰 사용량의 증가 추세에 따라 스마트폰 포렌식에 관한 연구도 활발히 진행될 것으로 예상된다. 특히, 안드로이드 스마트폰의 시장 점유율은 급속히 증가하고 있기 때문에 안드로이드 스마트폰 포렌식에 관한 연구는 매우 중요하다. 이에 본 논문에서는 논리적 분석 기반의 안드로이드 스마트폰 포렌식 도구 구현을 설명한다. 본 포렌식 도구는 Oxygen Forensic Suite 2010과 비교할 때, 검색 기능을 추가로 제공하며 추출된 미디어 정보에 대한 리소스 링크를 제공하기 때문에 포렌식에 소요되는 시간을 더욱 절약할 수 있다. 아직까지 국내에는 스마트폰 포렌식 도구가 전무하기 때문에 본 논문을 통해 구현된 포렌식 도구는 스마트폰 포렌식 기술 발전에 기여를 할 것으로 기대된다.

Keywords

References

  1. Jin-Won Sung, Eun-Ju Back, Chang-Uk Park, Yeog Kim, and Sang-Jin Lee, "The Design and Implementation of the tool to analyze Mobile Data : Mobile Data Analyzer", Journal of Digital Forensics, Vol. 1, No. 1, pp. 63-77, Nov. 2007.
  2. Gyu-an Lee, Dae-woo Park, and Young-tae Shin, "A Study on Forensic Integrity Proof Standard a Cellular Phone Confiscation Criminal Investigation", Journal of Korea Information and Communications Society, Vol. 33, No. 6, pp. 512-519, Jun. 2008.
  3. DongGuk Kim, SeongYong Jang, WonYoung Lee, YongHo Kim, and Changhyun Park, "An Effective Control Method for Improving Integrity of Mobile Phone Forensics", Journal of The Korea Institute of Information Security & Cryptology, Vol. 19, No. 5, pp. 151-166, Oct. 2009.
  4. An Introduction to Android Forensics, http://www.dfinews.com/article/introduction-andro id-forensics?pid=974
  5. Android, Incident Response and Forensics, http:/ /www1.webng.com/dhruv/material/android_r eport.pdf
  6. Me G, Rossi M, "Internal forensic acquisition for mobile equipments", Proceedings of the international parallel and distributed processing symposium, pp. 1-7, 2008.
  7. Savoldi, A., Gubian, P., "Symbian Forensics: An Overview", Proceedings of IIHMSP, pp. 529-533, 2008.
  8. http://www.gartner.com/it/page.jsp?id=1466313
  9. UFED, http://www.cellebrite.com
  10. Oxygen Forensic Suite 2010, http://www.oxygen-forensic.com
  11. Device Seizure, http://www.paraben.com
  12. XRY, http://www.msab.com
  13. What is Android, http://developer.android.com/guide/basics/what-is-andr oid.html

Cited by

  1. 클라우드 서비스에 대한 포렌식 측면의 수사 방법 vol.17, pp.1, 2012, https://doi.org/10.9723/jksiis.2012.17.1.039
  2. 지능형 범죄수사 시스템을 위한 범용 디지털포렌식 온톨로지 vol.19, pp.12, 2014, https://doi.org/10.9708/jksci.2014.19.12.161