Citation Export
| DC Field | Value | Language |
|---|---|---|
| dc.contributor.author | Shin, Yeonghun | - |
| dc.contributor.author | Kim, Hyungchan | - |
| dc.contributor.author | Jo, Wooyeon | - |
| dc.contributor.author | Shon, Taeshik | - |
| dc.date.issued | 2019-12-01 | - |
| dc.identifier.uri | https://aurora.ajou.ac.kr/handle/2018.oak/36476 | - |
| dc.identifier.uri | https://www.scopus.com/inward/record.uri?partnerID=HzOxMe3b&scp=85082402232&origin=inward | - |
| dc.description.abstract | Until recently, various researches on Linux have been conducted, but the characteristics of the filesystem that can be changed as the Linux kernel version is diversified in terms of security have not been considered. Digital forensic investigations, which are not properly analyzed for major metadata changes by kernel version, can undermine investigative capabilities and lead to serious doubts about evidence. Since investigations can be conducted on a variety of Linux filesystems at the actual forensic investigation, it is necessary to analyze metadata of various filesystems by Linux distribution and kernel version. Therefore, this paper compares the difference of metadata changes that occur when deleting files for various kernel versions of Ext2 filesystems. Furthermore, we provide information about the kernel version and change time which has the change in metadata related to file recovery. | - |
| dc.description.sponsorship | This research was supported by Energy Cloud R&D Program through the National Research Foundation of Korea (NRF) funded by the Ministry of Science, ICT (2019M3F2A1073386) | - |
| dc.description.sponsorship | ACKNOWLEDGMENT This work was supported by Institute for Information & communications Technology Promotion (IITP) grant funded by the Korea government (MSIT) (No.2018-0-01000, Development of Digital Forensic Integration Platform). | - |
| dc.language.iso | eng | - |
| dc.publisher | Institute of Electrical and Electronics Engineers Inc. | - |
| dc.subject.mesh | Change time | - |
| dc.subject.mesh | File recovery | - |
| dc.subject.mesh | Filesystem | - |
| dc.subject.mesh | Forensic investigation | - |
| dc.subject.mesh | Linux distributions | - |
| dc.subject.mesh | Linux kernel | - |
| dc.subject.mesh | Security analysis | - |
| dc.title | An Security Analysis of Ext Filesystem metadata | - |
| dc.type | Conference | - |
| dc.citation.conferenceDate | 2019.12.11. ~ 2019.12.13. | - |
| dc.citation.conferenceName | 4th Technology Innovation Management and Engineering Science International Conference, TIMES-iCON 2019 | - |
| dc.citation.edition | TIMES-iCON 2019 - 2019 4th Technology Innovation Management and Engineering Science International Conference | - |
| dc.citation.title | TIMES-iCON 2019 - 2019 4th Technology Innovation Management and Engineering Science International Conference | - |
| dc.identifier.bibliographicCitation | TIMES-iCON 2019 - 2019 4th Technology Innovation Management and Engineering Science International Conference | - |
| dc.identifier.doi | 10.1109/times-icon47539.2019.9024546 | - |
| dc.identifier.scopusid | 2-s2.0-85082402232 | - |
| dc.identifier.url | http://ieeexplore.ieee.org/xpl/mostRecentIssue.jsp?punumber=9006735 | - |
| dc.subject.keyword | Digital forensics | - |
| dc.subject.keyword | Ext | - |
| dc.subject.keyword | File recovery | - |
| dc.subject.keyword | Filesystem | - |
| dc.type.other | Conference Paper | - |
| dc.description.isoa | false | - |
| dc.subject.subarea | Management of Technology and Innovation | - |
| dc.subject.subarea | Software | - |
| dc.subject.subarea | Engineering (all) | - |
Items in DSpace are protected by copyright, with all rights reserved, unless otherwise indicated.
