Comparative analysis of logical acquisition using Wondershare Dr. Fone, MOBILedit Forensic, and FonePaw on android phones / Nuraimi Farhana Salimi, Nor Bakiah Abd Warif and Nor-Syahidatul N Ismail

Salimi, Nuraimi Farhana and Abd Warif, Nor Bakiah and N Ismail, Nor Syahidatul (2022) Comparative analysis of logical acquisition using Wondershare Dr. Fone, MOBILedit Forensic, and FonePaw on android phones / Nuraimi Farhana Salimi, Nor Bakiah Abd Warif and Nor-Syahidatul N Ismail. Malaysian Journal of Computing (MJoC), 7 (2): 8. pp. 1162-1177. ISSN 2600-8238

Official URL: https://mjoc.uitm.edu.my

Abstract

The increasing number of mobile phone usage in storing confidential information, such as mobile online transactions has led to the growing number of research in mobile forensic. There are lot of crimes may happen through mobile phones, such as smishing, bluejacking, and malware attacks. Mobile forensic is a way of collecting any digital evidence on the mobile phone. Logical acquisition is one of the methods for mobile forensic. The methodology for logical acquisition consists of identification, isolation, acquisition, analysis, and documentation. This research aims to study, perform and analyze logical acquisition using Wondershare Dr. Fone for Android, MOBILedit Forensic, and FonePaw for Android in Android-based phones which are Oppo F9 and Samsung S7 Edge. The analysis is based on percentage of capability and time taken for each tested mobile forensic tool on the two selected Android phones. The results show that FonePaw for Android gets the highest average capability (97%) with the shortest time while MOBILedit Forensic obtains the lowest average capability (74%) with the longest time taken. This research may help the forensic investigators team to determine the suitability of mobile forensic tools with Android phones based on the Android features and type of files.

Metadata

Item Type: Article
Creators:
Creators
Email / ID Num.
Salimi, Nuraimi Farhana
UNSPECIFIED
Abd Warif, Nor Bakiah
UNSPECIFIED
N Ismail, Nor Syahidatul
UNSPECIFIED
Subjects: T Technology > TK Electrical engineering. Electronics. Nuclear engineering > Telecommunication > Mobile device forensics
T Technology > TK Electrical engineering. Electronics. Nuclear engineering > Cell phones
Divisions: Universiti Teknologi MARA, Shah Alam > Faculty of Computer and Mathematical Sciences
Journal or Publication Title: Malaysian Journal of Computing (MJoC)
UiTM Journal Collections: UiTM Journal > Malaysian Journal of Computing (MJoC)
ISSN: 2600-8238
Volume: 7
Number: 2
Page Range: pp. 1162-1177
Related URLs:
Keywords: Android forensic, android phones, data extraction, logical acquisition, mobile forensic
Date: October 2022
URI: https://ir.uitm.edu.my/id/eprint/69248
Edit Item
Edit Item

Download

[thumbnail of 69248.pdf] Text
69248.pdf

Download (689kB)

ID Number

69248

Indexing

Statistic

Statistic details