Mobile Forensics - The File Format Handbook: Common File Formats and File Systems Used in Mobile Devices
暫譯: 行動取證 - 檔案格式手冊：行動裝置中常用的檔案格式與檔案系統

Name: Mobile Forensics - The File Format Handbook: Common File Formats and File Systems Used in Mobile Devices
Price: 2489 TWD
Availability: OnlineOnly
Author: Hummert, Christian, Pawlaszczyk, Dirk
ISBN: 3030984664

Hummert, Christian, Pawlaszczyk, Dirk

出版商: Springer
出版日期: 2022-05-04
售價: $2,620
貴賓價: 9.5 折 $2,489
語言: 英文
頁數: 269
裝訂: Hardcover - also called cloth, retail trade, or trade
ISBN: 3030984664
ISBN-13: 9783030984663

海外代購書籍(需單獨結帳)

商品描述

This open access book summarizes knowledge about several file systems and file formats commonly used in mobile devices. In addition to the fundamental description of the formats, there are hints about the forensic value of possible artefacts, along with an outline of tools that can decode the relevant data.

The book is organized into two distinct parts:

Part I describes several different file systems that are commonly used in mobile devices.

- APFS is the file system that is used in all modern Apple devices including iPhones, iPads, and even Apple Computers, like the MacBook series.

- Ext4 is very common in Android devices and is the successor of the Ext2 and Ext3 file systems that were commonly used on Linux-based computers.

- The Flash-Friendly File System (F2FS) is a Linux system designed explicitly for NAND Flash memory, common in removable storage devices and mobile devices, which Samsung Electronics developed in 2012.

- The QNX6 file system is present in Smartphones delivered by Blackberry (e.g. devices that are using Blackberry 10) and modern vehicle infotainment systems that use QNX as their operating system.

Part II describes five different file formats that are commonly used on mobile devices.

- SQLite is nearly omnipresent in mobile devices with an overwhelming majority of all mobile applications storing their data in such databases.

- The second leading file format in the mobile world are Property Lists, which are predominantly found on Apple devices.

- Java Serialization is a popular technique for storing object states in the Java programming language. Mobile application (app) developers very often resort to this technique to make their application state persistent.

- The Realm database format has emerged over recent years as a possible successor to the now ageing SQLite format and has begun to appear as part of some modern applications on mobile devices.

- Protocol Buffers provide a format for taking compiled data and serializing it by turning it into bytes represented in decimal values, which is a technique commonly used in mobile devices.

The aim of this book is to act as a knowledge base and reference guide for digital forensic practitioners who need knowledge about a specific file system or file format. It is also hoped to provide useful insight and knowledge for students or other aspiring professionals who want to work within the field of digital forensics. The book is written with the assumption that the reader will have some existing knowledge and understanding about computers, mobile devices, file systems and file formats.

商品描述(中文翻譯)

這本開放存取的書籍總結了有關幾種在行動裝置中常用的檔案系統和檔案格式的知識。除了對這些格式的基本描述外，還提供了有關可能的取證價值的提示，以及可以解碼相關數據的工具概述。

本書分為兩個明確的部分：

第一部分描述了幾種在行動裝置中常用的不同檔案系統。

- APFS 是所有現代 Apple 裝置（包括 iPhone、iPad，甚至是 Apple 電腦，如 MacBook 系列）所使用的檔案系統。

- Ext4 在 Android 裝置中非常常見，是 Ext2 和 Ext3 檔案系統的繼任者，這些檔案系統曾廣泛用於基於 Linux 的電腦上。

- Flash-Friendly File System (F2FS) 是一種專為 NAND Flash 記憶體設計的 Linux 系統，常見於可移動儲存裝置和行動裝置，該系統由三星電子於 2012 年開發。

- QNX6 檔案系統存在於由 Blackberry 提供的智慧型手機（例如使用 Blackberry 10 的裝置）和使用 QNX 作為其作業系統的現代車輛資訊娛樂系統中。

第二部分描述了五種在行動裝置中常用的不同檔案格式。

- SQLite 幾乎無處不在於行動裝置，絕大多數行動應用程式都將其數據存儲在這種數據庫中。

- 在行動世界中，第二大主要檔案格式是屬性列表（Property Lists），這種格式主要出現在 Apple 裝置上。

- Java Serialization 是一種流行的技術，用於在 Java 程式語言中存儲物件狀態。行動應用程式（app）開發者經常使用這種技術來使其應用程式狀態持久化。

- Realm 數據庫格式在近幾年中出現，成為現在逐漸老化的 SQLite 格式的可能繼任者，並開始出現在一些現代行動裝置的應用程式中。

- Protocol Buffers 提供了一種格式，用於將編譯後的數據序列化，將其轉換為以十進制值表示的位元組，這是一種在行動裝置中常用的技術。

本書的目的是作為數位取證從業者的知識庫和參考指南，幫助他們了解特定的檔案系統或檔案格式。也希望能為學生或其他有志於在數位取證領域工作的專業人士提供有用的見解和知識。本書假設讀者對電腦、行動裝置、檔案系統和檔案格式有一定的基礎知識和理解。

作者簡介

Christian Hummert is the Chief Scientific Officer of the "Agentur für Innovation in der Cybersicherheit" in Halle, Germany. Prior to this, he was the Director of the Digital Forensics Department at ZITiS and was a Full Professor for IT-Security / Digital Forensics at the Mittweida University of Applied Science. He also is a guest lecturer at the Ludwig Maximilian University (LMU) in Munich. Christian has more than ten years of experience in digital forensics and worked for six years as a practitioner for the police. He led several research and development projects in the field and has taught digital forensics to students and practitioners at different institutions.

Dirk Pawlaszczyk is currently working as a Full Professor in the Department of Computer Sciences, Hochschule Mittweida - University of Applied Sciences. He has published more than 30 research papers in reputed international journals, including Springer and IEEE. His main research work focuses on digital forensics, network security, cloud security and privacy, IoT, distributed simulation, and artificial intelligence. He has ten years of teaching experience and twelve years of research experience.

作者簡介(中文翻譯)

Christian Hummert 是德國哈雷的「網路安全創新機構」的首席科學官。在此之前，他曾擔任 ZITiS 數位取證部門的主任，並在米特韋達應用科技大學擔任 IT 安全 / 數位取證的全職教授。他同時也是慕尼黑路德維希·馬克西米利安大學 (LMU) 的客座講師。Christian 在數位取證領域擁有超過十年的經驗，並在警察部門擔任實務工作六年。他在該領域領導了多個研究與開發專案，並在不同機構教授數位取證給學生和實務工作者。

Dirk Pawlaszczyk 目前在米特韋達應用科技大學的計算機科學系擔任全職教授。他在知名的國際期刊上發表了超過 30 篇研究論文，包括 Springer 和 IEEE。他的主要研究工作集中在數位取證、網路安全、雲端安全與隱私、物聯網、分散式模擬和人工智慧。他擁有十年的教學經驗和十二年的研究經驗。