• KIPS Transactions on Computer and Communication Systems
• /
• v.5 no.5
• /
• pp.117-126
• /
• 2016

Recently, increasing utilization of Big Data or Social Network Service involves the increases in demand for NoSQL Database that overcomes the limitations of existing relational database. A forensic examination of Relational Database has steadily researched in terms of Digital Forensics. In contrast, the forensic examination of NoSQL Database is rarely studied. In this paper, We introduce Redis (which is) based on Key-Value Store NoSQL Database, and research the collection and analysis of forensic artifacts then propose recovery method of deleted data. Also we developed a recovery tool, it will be verified our recovery algorithm.

• The Journal of the Korea institute of electronic communication sciences
• /
• v.3 no.4
• /
• pp.204-209
• /
• 2008

Marine accidents show various causes and effects in Korea where 3 sides of the country are surrounded by the ocean. Every year, 600 to 700 marine accidents occur mostly by small fishing boats. There are repeated accidents which involve crashes of coastal ships with fishing boats, which produce casualties and massive environmental hazard and the need for underwater search for shipwrecks. From the beginning of 21st century, the decrease of large ships with large number of crews led to the emergence of digitalvessels and the digital data storage of the installed equipments on the vessels, marine digital forensic - the extraction and analysis of the stored digital data within digital vessels - became necessary. This article is intended to suggest marine digital forensics as a solution of collecting evidence for discovering the causes, liabilities and compensations of marine accidents.

• Journal of the Korea Institute of Information Security & Cryptology
• /
• v.20 no.6
• /
• pp.23-32
• /
• 2010

Caused by the development of IT environment, the frequency of using the embedded machines is increasing in our regular life. A typical example of these embedded machines is a Multi Function Copier and it has various functions; it is used as copier, scanner, fax machine, and file server. We would like to check the existence of and the way to abstract the data that may have been saved through using the scanner of the multi function printer and discuss how to use those data as the evidence.

• The KIPS Transactions:PartC
• /
• v.18C no.4
• /
• pp.217-226
• /
• 2011

As a diverse range of smartphones has been recently developed and diffused, the users of SNS (Social Network Service) also have been sharply increased. The SNS saves a variety of information such as exchanged pictures and videos, voice mails or location sharing, chat history, etc. as well as simple user data, so that the acquisition of data that are useful in the aspect of digital forensic is achievable. This thesis reviews the types of SNS that are available for the iPhone, a recent example of highly used smartphones, and types of data by each client. Also, efficient data analysis method for digital forensic investigations is suggested by analyzing the relationships within the collected data by each client.

• Proceedings of the Korea Information Processing Society Conference
• /
• 2013.11a
• /
• pp.654-657
• /
• 2013

최근 디지털 포렌식 조사를 회피하기 위한 안티포렌식 기술이 발전하고 있는 가운데, 사용자 행위분석을 위한 여러 요소 중 응용프로그램의 아이콘 정보를 저장하고 있는 IconCache.db 파일은 디지털 포렌식 조사를 위한 의미 있는 정보들을 제공하고 있다. 따라서 본 논문은 IconCache.db 파일의 특성을 알아보고 디지털 포렌식 측면에서의 활용방안을 제시하도록 하겠다.

• The Journal of the Korea institute of electronic communication sciences
• /
• v.6 no.1
• /
• pp.105-110
• /
• 2011

Embezzlement incident of staff at the casino occurred. Staff of some casinos have lower job satisfaction, moral gap is seriously considering a change jobs. In addition, cash lure of large amounts and a lack of money management system causes embezzlement incident. In this paper, the uniqueness of the casino industry and that employee job satisfaction is investigated. Content analysis of occurrence for casino embezzlement incident and tracking that bank account and bank check, suspect's call list, and so on that digital forensic investigation technology will be studied. Problems and solutions suggest that conducted a loss prevention program, a digital forensics technology and introduce of investigator. Through this study, the computerization of the casino business to embezzlement accident prevent will contribute to that give back profits of property to society, the develop of forensic investigation technology.

• Informatization Policy
• /
• v.24 no.3
• /
• pp.91-107
• /
• 2017

Digital forensics is the process of uncovering and interpreting electronic data and materials found in digital device in relation to crime. The goal of the process is to preserve any evidence in its most original form which shall be having the force of law. The digital forensic market is increasing with a growth of ICT in domestic and global market. Many countries including U.S. are actively performing researched regarding a structured investigation by collecting, identifying and validating the digital information for the purpose of reconstructing past events which so does in academic society in Korea. This paper is to understand overall research trend about digital forensics and derive future strategy by integrating the result of meta-analysis into practices based on five criteria - main theme and topic, analysis phase, technical method for analysis, author's affiliation, and unit of analysis and method. 239 papers are analyzed, which were selected out of 470 papers published for 10 years (2007~2016) in academic journal on the list of KCI (Korea Citation index). The results of this analysis will be used to examine the characteristics of research in the field of digital forensics. The result of this research will contribute to understanding of the research trend and characteristics leading the technology-driven academia, through which measures for further research development and facilitation are suggested.

• Transactions of the Korean Society of Automotive Engineers
• /
• v.23 no.6
• /
• pp.615-622
• /
• 2015

Recently Digital-TachoGraph(DTG) was mounted mandatorily in commercial vehicles(Taxi, Bus, etc.). DTG records accurate and detailed information of the running state of vehicles related to traffic accident, such as Time, Distance, Velocity, RPM, Brake ON/OFF, GPS, Azimuth, Acceleration. Thus those standardized data can play an important role in traffic accident investigation and reconstruction. To develope the accurate and objective method using the DTG data for the reconstruction of traffic accident, we had conducted several tests such as driving test, high speed circuit test, braking test, slalom test at Korea Automobile Testing & Research Institute(KATRI), and collision test at Korea Automobile insurance repair Research and Training center(KART) with the vehicle equipped with several DTG. Development of the program which enables the reading and analysis of the DTG data was followed. In the experiments, we have found velocity error, RPM error, brake signal error and azimuth error in several products, and also non-continuous event data. The cause of these errors was deduced to be related to the correction factor, the durability of electronic parts and the algorithm.

• International Journal of Internet, Broadcasting and Communication
• /
• v.13 no.3
• /
• pp.124-129
• /
• 2021

As the 4th industrial era is in full swing, the public's interest in related technologies such as artificial intelligence, big data, and block chain is increasing. As artificial intelligence technology is used in various industrial fields, the need for research methods incorporating artificial intelligence technology in related fields is also increasing. Evidence collection among digital forensic investigation techniques is a very important procedure in the investigation process that needs to prove a specific person's suspicions. However, there may be cases in which evidence is damaged due to intentional damage to evidence or other physical reasons, and there is a limit to the collection of evidence in this situation. Therefore, this paper we intends to propose an artificial intelligence-based evidence collection system that analyzes numerous image files reported by citizens in real time to visually check the location, user information, and shooting time of the image files. When this system is applied, it is expected that the evidence expected data collected in real time can be actually used as evidence, and it is also expected that the risk area analysis will be possible through big data analysis.

• Convergence Security Journal
• /
• v.3 no.1
• /
• pp.7-22
• /
• 2003

The legal dispute of electronic commerce and computer crimes are increasing because the electronic services like e-government and e-commerce are now widely used. Computer Forensics becomes the method for recovery, preservation, analysis and report regarding digital evidence essential to resolve the legal dispute and computer crime. In this paper, the developmental process of Computer Forensics is discussed. It is intended to elicit constructive discussion regarding the domestic Computer Forensics. And this discussion will be of help to establish the secure e-business and e-government services in the field of the research, legal system and technical skill of domestic Computer Forensics.