基于聚类的证据分析:基于移动取证调查的方法

2016 7th International Conference on Sciences of Electronics, Technologies of Information and Telecommunications (SETIT) Pub Date : 2016-12-01 DOI:10.1109/SETIT.2016.7939884

Nabila Bermad, Mohand Tahar Kechadi

{"title":"基于聚类的证据分析:基于移动取证调查的方法","authors":"Nabila Bermad, Mohand Tahar Kechadi","doi":"10.1109/SETIT.2016.7939884","DOIUrl":null,"url":null,"abstract":"Efficiency of mobile investigation process (Smartphone Forensics) is associated with its evidence analysis phase. This phase rests on collection and location of all evidence and their temporal, functional and relational combinations. High volume of these sets evidence, its complexity and size of relations between the different data types may complicate the evidence analysis phase and crime reconstruction. In this paper, we propose a temporal and functional analysis method based on Data mining (unsupervised classification). We introduce a new technique of clustering ascending based on dynamic causality and events reconstruction (SMS and Calls) in time, in this case, we can help an investigator to identify anomalies and information on crime and to provide a global vision of all events through all collected evidences.","PeriodicalId":426951,"journal":{"name":"2016 7th International Conference on Sciences of Electronics, Technologies of Information and Telecommunications (SETIT)","volume":"11 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2016-12-01","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"1","resultStr":"{\"title\":\"Evidence analysis to basis of clustering: Approach based on mobile forensic investigation\",\"authors\":\"Nabila Bermad, Mohand Tahar Kechadi\",\"doi\":\"10.1109/SETIT.2016.7939884\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"Efficiency of mobile investigation process (Smartphone Forensics) is associated with its evidence analysis phase. This phase rests on collection and location of all evidence and their temporal, functional and relational combinations. High volume of these sets evidence, its complexity and size of relations between the different data types may complicate the evidence analysis phase and crime reconstruction. In this paper, we propose a temporal and functional analysis method based on Data mining (unsupervised classification). We introduce a new technique of clustering ascending based on dynamic causality and events reconstruction (SMS and Calls) in time, in this case, we can help an investigator to identify anomalies and information on crime and to provide a global vision of all events through all collected evidences.\",\"PeriodicalId\":426951,\"journal\":{\"name\":\"2016 7th International Conference on Sciences of Electronics, Technologies of Information and Telecommunications (SETIT)\",\"volume\":\"11 1\",\"pages\":\"0\"},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2016-12-01\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"1\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"2016 7th International Conference on Sciences of Electronics, Technologies of Information and Telecommunications (SETIT)\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.1109/SETIT.2016.7939884\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"2016 7th International Conference on Sciences of Electronics, Technologies of Information and Telecommunications (SETIT)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/SETIT.2016.7939884","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 1

摘要

移动调查过程(智能手机取证)的效率与其证据分析阶段相关。这一阶段取决于所有证据的收集和定位，以及它们的时间、功能和关系组合。这些证据集的数量庞大，其复杂性和不同数据类型之间关系的大小可能会使证据分析阶段和犯罪重建变得复杂。本文提出了一种基于数据挖掘(无监督分类)的时间和功能分析方法。我们引入了一种基于动态因果关系和事件重构(短信和电话)的聚类提升新技术，在这种情况下，我们可以帮助调查人员识别异常和犯罪信息，并通过所有收集到的证据提供所有事件的全局视野。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

查看原文本刊更多论文

Evidence analysis to basis of clustering: Approach based on mobile forensic investigation

Efficiency of mobile investigation process (Smartphone Forensics) is associated with its evidence analysis phase. This phase rests on collection and location of all evidence and their temporal, functional and relational combinations. High volume of these sets evidence, its complexity and size of relations between the different data types may complicate the evidence analysis phase and crime reconstruction. In this paper, we propose a temporal and functional analysis method based on Data mining (unsupervised classification). We introduce a new technique of clustering ascending based on dynamic causality and events reconstruction (SMS and Calls) in time, in this case, we can help an investigator to identify anomalies and information on crime and to provide a global vision of all events through all collected evidences.

求助全文

通过发布文献求助，成功后即可免费获取论文全文。去求助

来源期刊

2016 7th International Conference on Sciences of Electronics, Technologies of Information and Telecommunications (SETIT)

自引率

0.00%

发文量