Skip to main content
SpringerLink
Log in

An Efficient Method of Extracting Strings from Unfixed-Form Data

  • Conference paper
  • First Online:
Future Information Technology, Application, and Service

Part of the book series: Lecture Notes in Electrical Engineering ((LNEE,volume 164))

  • 1689 Accesses

Abstract

As all the society becomes computerized, there increases computerized data, and for digital forensic investigations, there is a great deal of unfixed-form data collected, whose exact forms are difficult to figure out, such as physical memory or page files. The most efficient method for investigating unfixed-form data is to extract strings. In case of document files, strings extracted from unfixed-form data come to include contents of the relevant documents, and in case of physical memory or page files, they can even include passwords that users have entered in addition to traces of users’ using a messenger or a web page. Although extracting strings plays an important role in investigating unfixed-form data like this, the present method of extracting string includes a number of meaningless strings, while being carried out without considering the Unicode environment properly. Accordingly, this thesis intends to suggest a way of excluding meaningless strings effectively while considering the Unicode environment during the process of extracting strings.

This is a preview of subscription content, log in via an institution to check access.

Access this chapter

Log in via an institution
Chapter
USD 29.95
Price excludes VAT (USA)
  • Available as PDF
  • Read on any device
  • Instant download
  • Own it forever
eBook
USD 169.00
Price excludes VAT (USA)
  • Available as EPUB and PDF
  • Read on any device
  • Instant download
  • Own it forever
Softcover Book
USD 219.99
Price excludes VAT (USA)
  • Compact, lightweight edition
  • Dispatched in 3 to 5 business days
  • Free shipping worldwide - see info
Hardcover Book
USD 219.99
Price excludes VAT (USA)
  • Durable hardcover edition
  • Dispatched in 3 to 5 business days
  • Free shipping worldwide - see info

Tax calculation will be finalised at checkout

Purchases are for personal use only

Institutional subscriptions

References

  1. Beebe, N.: “A new process model for text string searching” International federation for information processing. In: Craiger, P., Shenoi, S. (eds.) Advances in Digital Forensics III, vol. 242, pp. 179–191. Springer, Boston (2007)

    Google Scholar 

  2. Beebe, N.L.: “Digital forensic text string searching: improving information retrieval effectiveness by thematically clustering search results”, Digital Investigation (2007)

    Google Scholar 

  3. Garia, G.L.: “Forensic physical memory analysis: an overview of tools and”, TKK T-110.5290 Seminar on Network Security

    Google Scholar 

  4. Strings, “Strings v2.41”, http://technet.microsoft.com/en-us/sysinternals/bb897439

  5. SQLite, “SQL As Understood By SQLite”, http://www.sqlite.org/lang.html

Download references

Acknowledgments

This research was supported by Bio R&D program through the National Research Foundation of Korea funded by the Ministry of Education, Science and Technology (2011-0027732).

Author information

Authors and Affiliations

  1. Center for Information Security Technologies, Korea University, Seoul, South Korea

    Sangjun Jeon, Jungheum Park, Keun-gi Lee & Sangjin Lee

Authors
  1. Sangjun Jeon
    View author publications

    You can also search for this author in PubMed Google Scholar

  2. Jungheum Park
    View author publications

    You can also search for this author in PubMed Google Scholar

  3. Keun-gi Lee
    View author publications

    You can also search for this author in PubMed Google Scholar

  4. Sangjin Lee
    View author publications

    You can also search for this author in PubMed Google Scholar

Corresponding author

Correspondence to Sangjin Lee .

Editor information

Editors and Affiliations

  1. SeoulTech, Computer Science and Engineering, Seoul University of Science & Technology, Gongreung 2-dong 172, Seoul, 139-742, Korea, Republic of (South Korea)

    James J. (Jong Hyuk) Park

  2. , Electrical and Computer Engineering, The University of British Columbia, Room 4013, Kaiser Building, Main Mall 2332, Vancouver, V6T 1Z4, British Columbia, Canada

    Victor C.M. Leung

  3. The University of Hong Kong, Hong Kong, 1, China, People's Republic

    Cho-Li Wang

  4. , Division of Information and Computer Eng, Ajou University, San 5, Suwon, Gyeonggido, 443-749, Korea, Republic of (South Korea)

    Taeshik Shon

Rights and permissions

Reprints and permissions

Copyright information

© 2012 Springer Science+Business Media Dortdrecht

About this paper

Cite this paper

Jeon, S., Park, J., Lee, Kg., Lee, S. (2012). An Efficient Method of Extracting Strings from Unfixed-Form Data. In: J. (Jong Hyuk) Park, J., Leung, V., Wang, CL., Shon, T. (eds) Future Information Technology, Application, and Service. Lecture Notes in Electrical Engineering, vol 164. Springer, Dordrecht. https://doi.org/10.1007/978-94-007-4516-2_43

Download citation

  • DOI: https://doi.org/10.1007/978-94-007-4516-2_43

  • Published:

  • Publisher Name: Springer, Dordrecht

  • Print ISBN: 978-94-007-4515-5

  • Online ISBN: 978-94-007-4516-2

  • eBook Packages: EngineeringEngineering (R0)

Publish with us

Policies and ethics

Search

Navigation