A comprehensive android evidence acquisition framework

Android is the most popular operating system among all smart phones. This popularity increased the chances that, an Android phone be involved in a crime, either in possession of a criminal or in possession of a victim. There are many techniques exist which help the investigator to gather and extract...

Full description

Saved in:
Bibliographic Details
Main Authors: Sadeghian, A., Zamani, M.
Format: Article
Published: Springer Science and Business Media Deutschland GmbH 2017
Subjects:
Online Access:http://eprints.utm.my/id/eprint/76295/
https://www.scopus.com/inward/record.uri?eid=2-s2.0-84992143247&doi=10.1007%2f978-3-319-44270-9_15&partnerID=40&md5=e4b121bad158d8d3ded9f0d02686e999
Tags: Add Tag
No Tags, Be the first to tag this record!
Institution: Universiti Teknologi Malaysia
Description
Summary:Android is the most popular operating system among all smart phones. This popularity increased the chances that, an Android phone be involved in a crime, either in possession of a criminal or in possession of a victim. There are many techniques exist which help the investigator to gather and extract evidence from the Android smart phones. Each of these techniques has some advantages, disadvantages, and limitations. Therefore the investigator should have knowledge of all available data acquisition techniques. The data that can be potential evidence presents in different part of an Android device. Therefore during the forensic acquisition process, the order of volatility should be considered. In this study we introduced a comprehensive framework for data acquisition from Android smart phones. Then we described the details of each step.