Research Article
Forensics for Korean Cell Phone
@INPROCEEDINGS{10.4108/e-forensics.2008.2755, author={Keonwoo Kim and Dowon Hong and Kyoil Chung}, title={Forensics for Korean Cell Phone}, proceedings={1st International ICST Conference on Forensic Applications and Techniques in Telecommunications, Information and Multimedia}, publisher={EAI}, proceedings_a={E-FORENSICS}, year={2010}, month={5}, keywords={Forensics logical method acquisition cell phone flash memory}, doi={10.4108/e-forensics.2008.2755} }- Keonwoo Kim
Dowon Hong
Kyoil Chung
Year: 2010
Forensics for Korean Cell Phone
E-FORENSICS
ACM
DOI: 10.4108/e-forensics.2008.2755
Abstract
Cell phone forensics to acquire and analyze data in the cellular phone is nowadays being used in a national investigation organization and a private company. In order to collect cellular phone flash memory data, we have two methods. First method is a logical approach which acquires files and directories from the file system of the cell phone flash memory. Secondly, we can get all data from bit-by-bit copy of entire physical memory using a low level access method. In this paper, we describe a forensic tool to acquire cell phone flash memory data using a logical level approach. By our tool, we can get EFS file system and peek memory data with an arbitrary region from some Korean CDMA cell phones.
Copyright © 2008–2024 ICST
