• Proceedings of the Korea Information Processing Society Conference
• /
• 2011.11a
• /
• pp.842-845
• /
• 2011

현재의 스마트폰 기반의 모바일 애플리케이션은 기본적인 전화, 문자와 같은 기능들 외 네비게이션과 같은 유용하고 편리한 기능들이 사용되고 있다. 이러한 애플리케이션에는 사용자와 관련된 많은 개인 정보들이 포함되어있고, 저장된 개인 정보는 사건 발생 시 사건의 직접적인 증거 혹은 간접적은 증거로 활용될 수 있다. 스마트폰에 저장된 증거를 수집하고 분석할 때 조사관들이 사용할 수 있는 기존의 도구는 복잡한 사용방법을 숙지해야 하고, 인증된 소프트웨어가 설치되어 있는 컴퓨터에서 국한되어 분석이 가능했다. 본 논문에서는 이와 같은 문제를 해결하기 위한 웹 서비스 개념의 스마트폰 포렌식 프레임워크를 제시한다.

• Convergence Security Journal
• /
• v.10 no.3
• /
• pp.61-68
• /
• 2010

Recently a malware is increasing for leaking personal data, credit information, financial information, etc. The secondary damage is also rapidly increasing such as the illegal use of stolen name, financial fraud, etc. But when a system is infected by a malware of leaking information, the existing malware evidence collection tools do not provide evidences conveniently or sometimes cannot provide necessary evidences. So security officials have much difficulty in responding to malwares. This paper analyzes the current status and problems of the existing malware evidence collection tools and suggests new ways to improve those problems.

• Journal of Korean Society of Archives and Records Management
• /
• v.22 no.1
• /
• pp.219-235
• /
• 2022

This study aims to analyze how the concept of legal evidence has influenced the principles of records management and investigate its meaning and limitations from the perspective of archives. To this end, it outlined how the methodologies of judging the trustworthiness of records as evidence have changed from Roman Law to modern legislation. In addition, the archival meaning of the historical development was analyzed in the following aspects; i) What was the main framework applied to judge the trustworthiness of records? ii) What characteristics did they think records as legal evidence should have? iii) What types of records were the main management targets, and how did they recognize the relationship between records and reality? Based on these analyses, the meaning and limitations of the records management that values legal evidence were presented.

• Journal of Digital Convergence
• /
• v.10 no.3
• /
• pp.99-104
• /
• 2012

The digital forensics are new kinds of security that investigate and verificate fact relation about activities based on digital data. In this paper, we implemented digital forensic tool that can be used in collecting, analyzing, and reporting evidences. This tool support intuitional GUI that everybody can analyze easily. And a simple operation can collect and analyze active data. Also, we can decrease much time and endeavor by using this forensic tool that support reliable data.

• Journal of Korean Society of Archives and Records Management
• /
• v.20 no.2
• /
• pp.41-65
• /
• 2020

Organizations always face the risk of litigation; thus, they should actively prepare for it. In particular, public enterprises must respond to lawsuits carefully to avoid any management risk and possible damage of publicity. Given this, this study aims to identify the relationship between efficient litigation response and record management, determine problems related to record management while utilizing records as evidence, and propose measures to improve record management that uses records as legal evidence. For records to be deemed as legal evidence, RMS is essential to ensure authenticity. Moreover, the ability to secure potential evidence and awareness of the importance of records management needs to be validated. The Commission also stressed the importance of cooperation between archivists and the legal team to efficiently respond to lawsuits.

• Journal of the Korea Institute of Information Security & Cryptology
• /
• v.28 no.4
• /
• pp.869-878
• /
• 2018

Digital Evidence Data in cyberspace is easy to modify or delete, and changes are reflected in real time, so it is necessary to acquire evidence data quickly. Collecting evidence on the client side is advantageous in that data can be acquired without time delay due to additional administrative procedures, but collection of large data is likewise vulnerable to collection time delay problem. Therefore, this paper proposes an automated evidence collection method on the client side, focusing on the major web-based services in cyberspace, and enables efficient evidence collection for large volumes of data. Furthermore, we propose a digital evidence collection system in cyberspace that guarantees the integrity of the collected digital evidence until the court submission.

• Journal of the Institute of Electronics Engineers of Korea SP
• /
• v.37 no.3
• /
• pp.31-40
• /
• 2000

A robust scheme of locating and counting the number of vehicles m urban traffic scenes, a core component of vision-based traffic monitoring systems, is presented The method is based on the evidential reasoning, where vehicle evidences m the background subtraction Image are obtained by a new locally optimum thresholding, and the evidences are merged by three heuristic rules using the geometric constraints The locally optimum thresholding guarantees the separation of bright and dark evidences of vehicles even when the vehicles are overlapped or when the vehicles have similar color to the background Experimental results on diverse traffic scenes show that the detection performance is very robust to the operating conditions such as the camera location and the weather The method may be applied even when vehicle movement is not observed since a static Image IS processed without the use of frame difference.

• Proceedings of the Korea Information Processing Society Conference
• /
• 2014.11a
• /
• pp.460-463
• /
• 2014

클라우드 컴퓨팅의 많은 장점에도 불구하고 클라우드 컴퓨팅은 보안이슈는 줄어들지 않으며, 특히 디지털 포렌식은 실질적인 기능을 수행하기에 미비한 실정이다. 최근, 다양한 사이버 범죄가 증가하면서 클라우드 컴퓨팅 환경은 사이버 범죄에 노출되어 있으며 악의적인 공격의 위험을 가지고 있다. 클라우드 포렌식은 자원이 가상공간에 존재할 수 있고, 증거 데이터가 물리적으로 분산되어 있기 때문에 기존의 포렌식 수사와는 다르게 접근해야 한다. 또한, 클라우드 기반 포렌식에서 획득 가능한 증거 데이터에 대한 정의가 되어 있지 않아서 증거 데이터를 수집하는데 어려움을 겪는다. 이에 본 논문에서는 오픈스택 플랫폼을 이용한 클라우드 환경을 구축하고, 클라우드 플랫폼 기반 포렌식을 위해 획득 가능한 로그 데이터에 대해 정리하고, 실제 획득 가능한 로그를 수집 및 분석하고, 클라우드 컴퓨팅 플랫폼기반 포렌식의 한계점과 해결방안을 알아본다.

• 한국HCI학회:학술대회논문집
• /
• 2008.02a
• /
• pp.200-204
• /
• 2008

In this paper, to solve localization problem for out-door navigation of robotic vehicles, a particle filter based 3D object recognition framework that can estimate the pose of a building or its entrance is presented. A particle filter framework of multiple evidence fusion and model matching in a sequence of images is presented for robust recognition and pose estimation of 3D objects. The proposed approach features 1) the automatic selection and collection of an optimal set of evidences 2) the derivation of multiple interpretations, as particles representing possible object poses in 3D space, and the assignment of their probabilities based on matching the object model with evidences, and 3) the particle filtering of interpretations in time with the additional evidences obtained from a sequence of images. The proposed approach has been validated by the stereo-camera based experimentation of 3D object recognition and pose estimation, where a combination of photometric and geometric features are used for evidences.

• Convergence Security Journal
• /
• v.7 no.4
• /
• pp.93-105
• /
• 2007

A digital forensic technology and tools are used much in the rapidly increased cyber intrusion accident investigation. But, almost the identification and gathering tools of digital forensic evidence are very difficultly integrated and simply poor-skill. Thereby, Important digital evidences at intrusion accident investigation of public institution and a private enterprise can be omitted or demaged. In this paper, therefore, we refer to 'The digital forensic tool for identification and gathering evidence' based only Window OS by using 'Log Parser', discuss the methodology for the identification and gathering of digital forensic evidence by cyber intrusion accident types.