Reference architecture for android applications to support the detection of manipulated evidence

被引:0
|
作者
Pieterse H. [1 ]
Olivier M.S. [2 ]
Van Heerden R.P. [3 ]
机构
[1] Defence, Peace, Safety and Security, Council for Scientific and Industrial Research, Pretoria
[2] Department of Computer Science, University of Pretoria, Pretoria
[3] Meraka Institute, Council for Scientific and Industrial Research, Pretoria
关键词
Android; Digital forensics; Mobile forensics; Reference architecture; Smartphones; Timestamps;
D O I
10.23919/saiee.2016.8531545
中图分类号
学科分类号
摘要
Traces found on Android smartphones form a significant part of digital investigations. A key component of these traces is the date and time, often formed as timestamps. These timestamps allow the examiner to relate the traces found on Android smartphones to some real event that took place. This paper performs exploratory experiments that involve the manipulation of timestamps found in SQLite databases on Android smartphones. Based on observations, specific heuristics are identified that may allow for the identification of manipulated timestamps. To overcome the limitations of these heuristics, a new reference architecture for Android applications is also introduced. The reference architecture provides examiners with a better understanding of Android applications as well as the associated digital evidence. The results presented in the paper show that the suggested techniques to establish the authenticity and accuracy of digital evidence are feasible. © 2015 IEEE.
引用
收藏
页码:92 / 103
页数:11
相关论文
共 50 条
  • [41] Demadroid: Object Reference Graph-Based Malware Detection in Android
    Wang, Huanran
    He, Hui
    Zhang, Weizhe
    SECURITY AND COMMUNICATION NETWORKS, 2018,
  • [42] Reference architecture for the design and development of applications for Industry 4.0
    Dinten, R.
    Lopez Martinez, P.
    Zorrilla, M.
    REVISTA IBEROAMERICANA DE AUTOMATICA E INFORMATICA INDUSTRIAL, 2021, 18 (03): : 300 - 311
  • [43] Smart Grid Applications with IEC 61499 Reference Architecture
    Zhabelova, Gulnara
    Patil, Sandeep
    Yang, Chen-wei
    Vyatkin, Valeriy
    2013 11TH IEEE INTERNATIONAL CONFERENCE ON INDUSTRIAL INFORMATICS (INDIN), 2013, : 458 - 463
  • [44] A reference architecture for digital library systems: Principles and applications
    Candela, Leonardo
    Castelli, Donatella
    Pagano, Pasquale
    DIGITAL LIBRARIES: RESEARCH AND DEVELOPMENT, 2007, 4877 : 22 - 35
  • [45] A Reference Architecture for Social Media Intelligence Applications in the Cloud
    Addo, Ivor D.
    Do, Duc
    Ge, Rong
    Ahamed, Sheikh I.
    39TH ANNUAL IEEE COMPUTERS, SOFTWARE AND APPLICATIONS CONFERENCE (COMPSAC 2015), VOL 2, 2015, : 906 - 913
  • [46] Reference architecture for the design and development of applications for Industry 4.0
    Dintén, R.
    López Martínez, P.
    Zorrilla, M.
    RIAI - Revista Iberoamericana de Automatica e Informatica Industrial, 2021, 18 (03): : 300 - 311
  • [47] Reference architecture for event-driven RFID applications
    Dunkel, Juergen
    Bruns, Ralf
    IWRT 2008: PROCEEDINGS OF THE 2ND INTERNATIONAL WORKSHOP ON RFID TECHNOLOGY - CONCEPTS, APPLICATIONS CHALLENGES, 2008, : 129 - 135
  • [48] Support Method of Usability Evaluations for Android Applications Based on Operation Histories
    Matsuzawa, Misaki
    Iwata, Hajime
    Shirogane, Junko
    Fukazawa, Yoshiaki
    2015 FIFTH INTERNATIONAL CONFERENCE ON DIGITAL INFORMATION PROCESSING AND COMMUNICATIONS (ICDIPC), 2015, : 288 - 293
  • [49] Automated Tool Support for Repairing Security Bugs in Android Mobile Applications
    Singleton, Larry
    2019 IEEE/ACM 6TH INTERNATIONAL CONFERENCE ON MOBILE SOFTWARE ENGINEERING AND SYSTEMS (MOBILESOFT 2019), 2019, : 144 - 145
  • [50] A Reference Architecture for Micro-Mobility Support in IP Networks
    Prado, Rodrigo
    Zagari, Eduardo
    Badan, Tomas
    Cardozo, Eleri
    Magalhaes, Mauricio
    Carrilho, Jose
    Pinto, Rossano
    Berenguel, Andre
    Barboza, Daniel
    Moraes, Daniel
    Johnson, Thienne
    Westberg, Lars
    2008 IEEE SYMPOSIUM ON COMPUTERS AND COMMUNICATIONS, VOLS 1-3, 2008, : 307 - +