Journal of the Korea Society of Computer and Information (한국컴퓨터정보학회논문지)

Korean Society of Computer Information (한국컴퓨터정보학회)
권호 표지
DOI QR코드

DOI QR Code

Digital Forensics Ontology for Intelligent Crime Investigation System

지능형 범죄수사 시스템을 위한 범용 디지털포렌식 온톨로지

  • Yun, Han-Kuk (Dept. of Computer Science & Engineering, Korea National Defense University) ;
  • Lee, Sang-Hoon (Dept. of Computer Science & Engineering, Korea National Defense University)
  • 윤한국 (국방대학교 컴퓨터공학과) ;
  • 이상훈 (국방대학교 컴퓨터공학과)
  • Received : 2014.09.01
  • Accepted : 2014.11.10
  • Published : 2014.12.31
Download PDF
⟨ Previous Next ⟩

Abstract

Digital forensics is the process of proving criminal charges by collecting and analyzing digital evidence which is related to the crime in question. Most digital forensic research is focused on digital forensic techniques themselves or cyber crime. In this paper, we designed a digital forensics-criminal investigation linked model in order to effectively apply digital forensics to various types of criminal investigations. Digital forensic ontology was developed based on this model. For more effective application of digital forensics to criminal investigation we derived specific application fields. The ontology has legality rules and adequacy rules, so it can support investigative decision-making. The ontology can be developed into an intelligent criminal investigation system.

디지털포렌식은 범죄와 관련된 디지털 증거를 수집, 분석하여 범죄혐의를 입증하는 과정으로 범죄수사에서 중요한 역할을 한다. 지금까지의 디지털포렌식 온톨로지에 대한 연구는 디지털포렌식을 사이버 관련 범죄에만 적용하였거나 디지털포렌식 자체의 절차와 기법에 관한 것으로 한정되었다. 본 연구에서는 다양한 유형의 범죄수사에서 디지털포렌식을 효과적으로 활용하기 위해 전반적인 수사절차와 디지털포렌식의 연관성을 분석하여 연계 모델을 설계하고 이를 바탕으로 디지털포렌식 온톨로지를 구축하였다. 온톨로지 구축시 포렌식 분석결과의 구체적인 활용 분야를 도출하여 반영하였고, 디지털포렌식의 절차 검증과 관련된 적법성 규칙, 분석 결과 활용과 관련된 적절성 규칙을 적용하여 의사결정지원이 가능하도록 하였다. 구축된 디지털포렌식 온톨로지는 다양한 범죄 유형에 적용 가능한 지능형 범죄수사 시스템 구축시 중요한 기반을 제공하게 될 것이다.

Keywords

References

  1. SJ Lee, "Introduction to Digital forensics", Iroon, 2010.
  2. HG Cho, "Design of forensics domain ontology for knowledge based cyber criminal investigation", Pusan University, 2009
  3. HG Cho, H Park, HC Kwon, "The Method of Verification for Legal Admissibility of Digital Evidence using the Digital Forensics Ontology", journal of korea information processing society, v.16-D, no.2, 2009
  4. KH Cho, "Improvement of the Issues in Search and Confiscation of Digital Evidence", Seoul Law Review, V.21, No.3, 2014
  5. YH Kim, "The problem point and improvement program of the scene search and seizure of digital evidence at practical affairs", Journal of the Korea Institute of Information and Communication Engineering, V.17, No.11, 2013 https://doi.org/10.6109/jkiice.2013.17.11.2595
  6. BS Kwack, "A study on Problems and improvements of digital forensic investigation", Law Review, V.42, 2011
  7. SH Jang, "Digital Forensic Investigation of Virtual Desktop Infrastructure", Journal of the Korea Institute of Information Security and Cryptology, v.23 no.2, 2013 https://doi.org/10.13089/JKIISC.2013.23.2.203
  8. SH Park, "Technology Trend on Image File Carving", Journal of the Institute of Electronics and Information Engineers, v.37 no.1, 2014
  9. Ashley Brison. "A cyber forensics ontology: Creating a new approach to studying cyber forensics", Digital Investigation. 3S, 37-43, 2006.
  10. JHM Nogueira, "Ontology for Complex Mission Scenarios in Forensic Computing", In proceedings of the 2nd International Conference of Forensic Computer Science, Guaruja: Brazil, 2007
  11. Confiscation and analysis rules for digital evidence, SPO, 2012. 11.
  12. IS Kim, "Implementation of an Android Smart phone Forensic Tool Based on Logical Analysis", Journal of The Korea Society of Computer and Information Vol. 16, No. 4, April 2011 https://doi.org/10.9708/jksci.2011.16.4.137