• 한국항행학회논문지
• /
• 제17권3호
• /
• pp.325-331
• /
• 2013

소셜 네트워크 서비스는 사용자간의 통신수단 및 자신을 표현하는 하나의 수단으로 사용되면서 다양한 정보를 보유하고 있다. 이러한 정보들은 수사에 도움이 되는 유용한 증거로 사용 될 수 있다. 본 논문에서는 소셜 네트워크 서비스상에 있는 다양한 정보를 사건 수사에서 효율적으로 사용하기 위하여 소셜 네트워크 서비스를 이용하는 사용자의 스마트폰에 대한 모바일 디지털 포렌식 절차에 관한 연구를 진행하였다. 모바일 디지털 포렌식 절차 연구를 위하여 스마트폰에 저장되어 있는 소셜 네트워크 서비스 어플리케이션에 대한 DataBase 파일을 분석하여 사건 수사에 유용하게 사용할 수 있는 파일을 분류 하고 저장되어 있는 정보를 비교 분석하였다. 이를 통하여 본 논문에서는 소셜 네트워크 서비스 환경에서 사건 수사를 위한 적합한 모바일 디지털 포렌식 절차를 제안한다.

• The Korean Journal of Legal Medicine
• /
• 제41권2호
• /
• pp.41-45
• /
• 2017

Fetal DNA (fDNA) detection in maternal serum is a challenge due to low copy number and the smaller size of fDNA fragments compared to DNA fragments derived from the mother. Massively parallel sequencing (MPS) is a useful technique for fetal genetic analysis that is able to detect and quantify small amounts of DNA. In this study, seven clinical samples of maternal serum potentially containing fDNA were analyzed with a commercial single nucleotide polymorphism (SNP) panel, the HID-Ion $AmpliSeq^{TM}$ Identity Panel, and the results were compared to those from previous studies. Reference profiles for mothers and fetuses were not available, but multiple Y chromosomal SNPs were detected in two samples, indicating that fDNA was present in the serum and thereby validating observations of autosomal SNPs. This suggests that SNP-based MPS can be valuable for fDNA detection, thereby offering an insight into fetal genetic status. This technology could also be used to detect small amounts of DNA in mixed DNA samples for forensic applications.

• 산경연구논집
• /
• 제12권6호
• /
• pp.47-55
• /
• 2021

Purpose: Organizational crime is an offense committed by an individual or an official in a corporate entity for organizational gain. This study aims to explore the literature on challenges facing digital forensics and further discuss possible solutions to such challenges as far as the protection of corporate crime is concerned. Research design, data and methodology: Qualitative textual methodology matches the interpretative approach since it is a quality method meant to consider the inductivity of strategies. Also, a qualitative approach is vital because it is distinct from the techniques used in optimistic paradigms linked to science laws. Results: For achieving justice through the investigation of digital forensic, there is a need to eradicate corporate crimes. This study suggests several solutions to reduce corporate crime such as 'Solving a problem to Anti-forensic Techniques', 'Cloud computing technique', and 'Legal Framework' etc. Conclusion: As corporate crime increases in rate, the data collected by digital forensics increases. The challenge of analyzing chunks of data requires digital forensic experts, who need tools to analyze them. Research findings shows that a change of the operating system and digital evidence interpretation is becoming a challenge as the new computer application software is not compatible with older software's structure.

• 정보처리학회논문지:컴퓨터 및 통신 시스템
• /
• 제5권11호
• /
• pp.427-438
• /
• 2016

차량용 블랙박스는 차량의 운행기록 및 상태를 실시간으로 기록하는 장치이다. 일상생활에서 많이 사용되면서 다양한 장소, 시간, 다방면에서 촬영된 영상 데이터는 수사 과정에서 그 활용도가 높아지고 있다. 블랙박스는 제조사에 따라 데이터를 저장하는 방식이 상이하여 데이터를 확인하기 위해서는 제조사가 제공하는 전용분석도구를 사용해야 한다. 하지만 전용분석도구는 특정 모델에 대해 의존적이며 기능이 상이하다는 단점과 제조사가 폐업할 경우 전용분석도구를 구할 수 없다는 문제로 인하여 디지털 포렌식 수사 과정에서 어려움이 발생 할 수 있다. 본 논문에서는 현재 판매되고 있는 블랙박스를 선정하여 모델별 데이터 저장 구조를 분석하고 제조사에서 제공하는 전용분석 도구의 기능과 한계점을 확인하였으며 연구 결과를 바탕으로 포렌식 분석도구에 요구되는 기능을 도출하고 포렌식 분석도구를 설계 및 구현하였다.

• 한국멀티미디어학회논문지
• /
• 제19권1호
• /
• pp.30-40
• /
• 2016

Recently, the competition among global IT companies for the market occupancy of the IoT(Internet of Things) is fierce. Internet of Things are all the things and people around the world connected to the Internet, and it is becoming more and more intelligent. In addition, for the purpose of providing users with a customized services to variety of context-awareness, IoT platform and related research have been active area. In this paper, we analyze third party instant messengers of Windows 8 Style UI and propose a digital forensic methodology. And, we are well aware of the Android-based map and navigation applications. What we want to show is GPS information analysis by using the R. In addition, we propose a structured data analysis applying the hierarchical clustering model using GPS data in the digital forensics modules. The proposed model is expected to help support the IOT services and efficient criminal investigation process.

• 융합보안논문지
• /
• 제16권7호
• /
• pp.93-100
• /
• 2016

IT 발전 및 급격한 정보화 사회로의 변화에 따라 컴퓨터 관련 범죄뿐만 아니라 일반 범죄에서도 중요 증거 또는 단서가 컴퓨터를 포함한 디지털 정보기기 내에 보관되는 경우가 증가하게 되었다. 최근에 발생하고 있는 산업기술 및 영업비밀 유출 사건은 컴퓨터, 스마트폰, USB 등 다양한 디지털 저장매체와 관련성을 가지는 경우가 많다. 본 논문에서는 디지털 포렌식 기술현황 및 비교분석을 통해 포렌식 분야 발전방향을 도출하였으며, 이를 통해 정보유출을 방지할 수 있는 방안에 대해서 모색해 보고자 한다.

• 분석과학
• /
• 제17권3호
• /
• pp.271-277
• /
• 2004

The aim of this study was to investigate questioned documents written with blue or black ballpoint pen on paper by nondestructive technique. In this work, 21 blue and 22 black ballpoint pen inks which were purchased on different brands were analyzed by using Microspectrophotometry (MSP). The reflectance spectra were obtained from these ink samples and their shapes and the wavelength of the maximum intensity were compared. In the blue and black ballpoint pen inks, the discriminating powers (DP) were 0.85 and 0.61, respectively. The changes of the reflectance intensity at their wavelength of maximum intensity and their shapes appeared according to the exposure time to sunshine in a laboratory, especially in the blue ballpoint pen inks. Therefore it is possible to distinguish ink entries on the same paper with the relative age in case of questioned letters written with blue ballpoint pen.

• 대한의생명과학회지
• /
• 제16권3호
• /
• pp.193-196
• /
• 2010

Multiplex PCR-based short tandem repeat (STR) analysis is considered as a good tool for monitoring bone marrow engraftment after sex-mismatched allogeneic transplantation and provides a sensitive and accurate assessment of the contribution of both donor and/or recipient cells in post-transplantation specimens. Forensic STR analysis and quantitative real time PCR are used to determine the proportion of donor versus recipient each contained within the total DNA. The STR markers were co-amplified in a single reaction by using commercial $PowerPlex^{(R)}$ 16 system and $AmpFISTR^{(R)}$ $Identifiler^{(R)}$ / $Yfiler^{(R)}$ PCR amplification kits. Separation of the PCR products and fluorescence detection were performed by ABI $PRIS^{(R)}$ 3100 Genetic Analyzer with capillary electrophoresis. The $GeneMapper^{TM}$ ID software were used for size calling and analysis of STR profiles. Extracted DNA was quantified by the $Quantifiler^{TM}$ Human DNA / Y Human Male DNA Quantification Kit The intent of this study was to analyze the ratio of donor versus recipient cells in the post-transplant peripheral blood, spleen, lung and kidney specimens. Specimens were taken from the traffic accident male victim who had been engrafted from bone marrow female donor. Blood and spleen specimens displayed female donor DNA profile. Kidney specimen showed male recipient DNA profile. Interestingly, lung tissue showed mixed profiles. The findings of this study indicate that the forensic STR analysis using fluorescence labeling PCR combined with capillary electrophoresis is quick and reliable enough to assess the ratio of donor versus recipient cells and to monitor the mixed chimeric patterns.

• 한국항행학회논문지
• /
• 제18권1호
• /
• pp.50-55
• /
• 2014

최근 다양한 유형의 증거 분석에서 디지털 증거 분석 기법의 도입이 가속화되고 있으며 중요도가 증가하고 있다. 하지만 개인용 디스크 용량이 커지면서 저장하는 파일의 용량의 수가 증가하면서 전체 데이터를 모두 분석하는 것은 시간과 노력이 많이 소요된다. 대부분의 디지털 증거는 항상 시간정보를 저장하고 있으며, 시간 정보는 디지털 증거 분석에서 가장 중요한 요소 중 하나이다. 하지만 시간 유형이 다양하여 단순히 저장된 시간을 기준으로 사건을 분석하면 잘못된 분석결과를 도출할 가능성이 크다. 따라서 본 논문에서는 다양한 디지털 증거의 시간 유형에 대하여 고찰하고, 하나의 시간 축을 기준으로 디지털 증거 분석을 수행할 수 있는 타임라인 분석 기법에 대하여 설명한다.

• 분석과학
• /
• 제33권2호
• /
• pp.98-107
• /
• 2020

Methamphetamine (MA) is currently the most abused illicit drug in Korea. MA is produced by chemical synthesis, and the final target drug that is produced contains small amounts of the precursor chemicals, intermediates, and by-products. To identify and quantify these trace compounds in MA seizures, a practical and feasible approach for conducting chromatographic fingerprinting with a suite of traditional chemometric methods and recently introduced machine learning approaches was examined. This was achieved using gas chromatography (GC) coupled with a flame ionization detector (FID) and mass spectrometry (MS). Following appropriate examination of all the peaks in 71 samples, 166 impurities were selected as the characteristic components. Unsupervised (principal component analysis (PCA), hierarchical cluster analysis (HCA), and K-means clustering) and supervised (partial least squares-discriminant analysis (PLS-DA), orthogonal partial least squares-discriminant analysis (OPLS-DA), support vector machines (SVM), and deep neural network (DNN) with Keras) chemometric techniques were employed for classifying the 71 MA seizures. The results of the PCA, HCA, K-means clustering, PLS-DA, OPLS-DA, SVM, and DNN methods for quality evaluation were in good agreement. However, the tested MA seizures possessed distinct features, such as chirality, cutting agents, and boiling points. The study indicated that the established qualitative and semi-quantitative methods will be practical and useful analytical tools for characterizing trace compounds in illicit MA seizures. Moreover, they will provide a statistical basis for identifying the synthesis route, sources of supply, trafficking routes, and connections between seizures, which will support drug law enforcement agencies in their effort to eliminate organized MA crime.