Browse > Article
http://dx.doi.org/10.3745/KIPSTC.2012.19C.4.215

Methods for Investigating of Edit History about MS PowerPoint Files That Using the OOXML Formats  

Youn, Ji-Hye (고려대학교 정보경영공학전문대학원)
Park, Jung-Heum (고려대학교 정보경영공학전문대학원)
Lee, Sang-Jin (고려대학교 정보경영공학전문대학원)
Publication Information
The KIPS Transactions:PartC / v.19C, no.4, 2012 , pp. 215-224 More about this Journal
Abstract
Today, individuals and businesses are a lot of paperwork through a computer. So many documents files are creating to digital type. And the digital type files are copied, moved by various media such as USB, E-mail and so on. A careful analysis of these digital materials can be tracked that occurred during the document editing work history. About these research are on the compound document file format, but has not been studied about the new OOXML format that how to analyze linkages between different document files, tracking an internal order, finding unsaved file for identify the process of creating the file. Future, the use of OOXML format digital documents will further increase, these document work history traceability in digital forensic investigation would be a big help. Therefore, this paper on the new OOXML format(has a forensic viewpoint) will show you how to track the internal order and analyze linkages between the files.
Keywords
OOXML; Digital Forensics; Microsoft PowerPoint; Slide Identifier; Edit History;
Citations & Related Records
연도 인용수 순위
  • Reference
1 Simon Byers, "Information leakage caused by hidden data in published documents", IEEE Security & Privacy, Vol.2, No.2, pp.23-27, 2004.   DOI   ScienceOn
2 A. Castiglionea, A. De Santisa and C. Sorienteb, "Taking advantages of a disadvantage: Digital forensics and steganography using document metadata", The Journal of Systems and Software, Volu.80, Issue 5, pp.750-764, May, 2007.   DOI   ScienceOn
3 Simson L. Garfinkel and James J.Migletz, "New XML-Based Files Implications for Forensics", IEEE Security & Privacy, Vol.7, Issue 2, pp.38-44, 2009.   DOI   ScienceOn
4 Park Jungheum and Lee Sangjin, "Forensic investigation of Microsoft PowerPoint files", Digital Investigation 6(1-2), pp.16-24, 2009.   DOI   ScienceOn
5 Aniello Castiglione, Bonaventura D'Alessio, Alfredo De Santis and Francesco Palmieri, "New Steganographic Techniques for the OOXML File Format", Availability, Reliability and Security for Business, Enterprise and Health Information Systems (C), LNCS Vol.6908, pp.344-358, 2011.
6 Microsoft Corporation, Standard ECMA-376, Office Open XML file formats. 3rd edition, 2011.
7 Zhangjie Fu, Xingming Sun, Yuling Liu and Bo Li, "Forensic investigation of OOXML format documents", Digital Investigation, Vol.8, Issue 1, pp.48-55, July, 2011.   DOI   ScienceOn
8 Microsoft Corporation, "XML file name extensions in Office 2010", URL : http://technet.microsoft.com/en-us/library/cc179191.aspx, June, 2010.