{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2025,9,28]],"date-time":"2025-09-28T20:30:50Z","timestamp":1759091450056,"version":"3.40.3"},"publisher-location":"Cham","reference-count":22,"publisher":"Springer International Publishing","isbn-type":[{"type":"print","value":"9783319462783"},{"type":"electronic","value":"9783319462790"}],"license":[{"start":{"date-parts":[[2016,1,1]],"date-time":"2016-01-01T00:00:00Z","timestamp":1451606400000},"content-version":"tdm","delay-in-days":0,"URL":"http:\/\/www.springer.com\/tdm"},{"start":{"date-parts":[[2016,1,1]],"date-time":"2016-01-01T00:00:00Z","timestamp":1451606400000},"content-version":"vor","delay-in-days":0,"URL":"http:\/\/www.springer.com\/tdm"}],"content-domain":{"domain":["link.springer.com"],"crossmark-restriction":false},"short-container-title":[],"published-print":{"date-parts":[[2016]]},"DOI":"10.1007\/978-3-319-46279-0_19","type":"book-chapter","created":{"date-parts":[[2016,9,19]],"date-time":"2016-09-19T02:24:39Z","timestamp":1474251879000},"page":"365-378","update-policy":"https:\/\/doi.org\/10.1007\/springer_crossmark_policy","source":"Crossref","is-referenced-by-count":3,"title":["A Tool for Volatile Memory Acquisition from Android Devices"],"prefix":"10.1007","author":[{"given":"Haiyu","family":"Yang","sequence":"first","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Jianwei","family":"Zhuge","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Huiming","family":"Liu","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Wei","family":"Liu","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"297","published-online":{"date-parts":[[2016,9,20]]},"reference":[{"key":"19_CR1","first-page":"178","volume-title":"IFIP Advances in Information and Communication Technology","author":"Dimitris Apostolopoulos","year":"2013","unstructured":"Apostolopoulos, D., Marinakis, G., Ntantogian, C., Xenakis, C.: Discovering authentication credentials in volatile memory of Android mobile devices. In: Proceedings of the Twelfth IFIP WG 6.11 Conference on e-Business, e-Services and e-Society, pp. 178\u2013185 (2013)"},{"issue":"4","key":"19_CR2","doi-asserted-by":"publisher","first-page":"323","DOI":"10.1016\/j.diin.2013.10.003","volume":"10","author":"K Barmpatsalou","year":"2013","unstructured":"Barmpatsalou, K., Damopoulos, D., Kambourakis, G., Katos, V.: A critical review of seven years of mobile device forensics. Digital Investigation 10(4), 323\u2013349 (2013)","journal-title":"Digital Investigation"},{"unstructured":"Cannon, T., Bradford, S.: Into the droid: Gaining access to Android user data, presented at the Defcon Hacking Conference (2012)","key":"19_CR3"},{"unstructured":"Devik, Sd.: Linux on-the-fly kernel patching without LKM. Phrack 11(58) (2001)","key":"19_CR4"},{"unstructured":"Garcia, G.: Forensic physical memory analysis: An overview of tools and techniques. Presented at the TKK T-110.5290 Seminar on Network Security (2007)","key":"19_CR5"},{"unstructured":"Ge, X., Vijayakumar, H., Jaeger, T.: Sprobes: Enforcing kernel code integrity in the TrustZone architecture. Presented at the Third Workshop on Mobile Security Technologies (2014)","key":"19_CR6"},{"unstructured":"International Data Corporation, Smartphone OS market share, 2015 Q2, Framington, Massachusetts (2015). \n                    www.idc.com\/prodserv\/smartphone-os-market-share.jsp","key":"19_CR7"},{"unstructured":"Kollar, I.: Forensic RAM Dump Image Analyzer, Master\u2019s Thesis, Department of Software Engineering, Charles University in Prague, Prague, Czech Republic (2009)","key":"19_CR8"},{"unstructured":"Lineberry, A.: Malicious code injection via \/dev\/mem. Presented at the Black Hat Europe Conference (2009)","key":"19_CR9"},{"unstructured":"Lucic, K.: Over 27.44% users root their phone(s) in order to remove built-in apps, Android Headlines, Valencia, California, November 13, 2014","key":"19_CR10"},{"unstructured":"Macht, H.: Live Memory Forensics on Android with Volatility, Diploma Thesis in Computer Science, Department of Computer Science, Friedrich-Alexander University Erlangen-Nuremberg, Erlangen, Germany (2013)","key":"19_CR11"},{"key":"19_CR12","doi-asserted-by":"crossref","first-page":"373","DOI":"10.1007\/978-3-642-38980-1_23","volume-title":"Applied Cryptography and Network Security","author":"Tilo M\u00fcller","year":"2013","unstructured":"Muller, T., Spreitzenbarth, M.: FROST \u2013 Forensic recovery of scrambled telephones. In: Proceedings of the Eleventh International Conference on Applied Cryptography and Network Security, pp. 373\u2013388 (2013)"},{"unstructured":"OpenSignal, Android fragmentation visualized, London, United Kingdom (2015). \n                    opensignal.com\/reports\/2015\/08\/android-fragmentation","key":"19_CR13"},{"issue":"3","key":"19_CR14","doi-asserted-by":"publisher","first-page":"7","DOI":"10.14257\/ijsia.2015.9.3.02","volume":"9","author":"J Park","year":"2015","unstructured":"Park, J., Choi, S.: Studying security weaknesses of Android systems. International Journal of Security and its Applications 9(3), 7\u201312 (2015)","journal-title":"International Journal of Security and its Applications"},{"issue":"S1","key":"19_CR15","doi-asserted-by":"publisher","first-page":"S112","DOI":"10.1016\/j.diin.2014.03.014","volume":"11","author":"J Stuttgen","year":"2014","unstructured":"Stuttgen, J., Cohen, M.: Robust Linux memory acquisition with minimal target impact. Digital Investigation 11(S1), S112\u2013S119 (2014)","journal-title":"Digital Investigation"},{"doi-asserted-by":"crossref","unstructured":"Sun, H., Sun, K., Wang, Y., Jing, J., Jajodia, S.: TrustDump: reliable memory acquisition from smartphones. In: Proceedings of the Nineteenth European Symposium on Research in Computer Security, pp. 202\u2013218 (2014)","key":"19_CR16","DOI":"10.1007\/978-3-319-11203-9_12"},{"issue":"3\u20134","key":"19_CR17","doi-asserted-by":"publisher","first-page":"175","DOI":"10.1016\/j.diin.2011.10.003","volume":"8","author":"J Sylve","year":"2012","unstructured":"Sylve, J., Case, A., Marziale, L., Richard, G.: Acquisition and analysis of volatile memory from Android devices. Digital Investigation 8(3\u20134), 175\u2013184 (2012)","journal-title":"Digital Investigation"},{"issue":"S","key":"19_CR18","doi-asserted-by":"publisher","first-page":"S74","DOI":"10.1016\/j.diin.2010.05.010","volume":"7","author":"V Thing","year":"2010","unstructured":"Thing, V., Ng, K., Chang, E.: Live memory forensics of mobile phones. Digital Investigation 7(S), S74\u2013S82 (2010)","journal-title":"Digital Investigation"},{"unstructured":"Volatility Foundation, Volatility Framework (2016). \n                    www.volatilityfoundation.org","key":"19_CR19"},{"doi-asserted-by":"crossref","unstructured":"Willassen, S.: Forensic analysis of mobile phone internal memory. In: Pollitt, M., Shenoi, S. (eds.) Advances in Digital Forensics, pp. 191\u2013204. Springer, Boston (2005)","key":"19_CR20","DOI":"10.1007\/0-387-31163-7_16"},{"unstructured":"Xu, W.: Ah! Universal Android rooting is back. Presented at the Black Hat USA Conference (2015)","key":"19_CR21"},{"unstructured":"Xu, W., Fu, Y.: Own your Android! Yet another universal root. Presented at the Ninth USENIX Workshop on Offensive Technologies (2015)","key":"19_CR22"}],"container-title":["IFIP Advances in Information and Communication Technology","Advances in Digital Forensics XII"],"original-title":[],"language":"en","link":[{"URL":"http:\/\/link.springer.com\/content\/pdf\/10.1007\/978-3-319-46279-0_19","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2020,9,19]],"date-time":"2020-09-19T00:57:20Z","timestamp":1600477040000},"score":1,"resource":{"primary":{"URL":"http:\/\/link.springer.com\/10.1007\/978-3-319-46279-0_19"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2016]]},"ISBN":["9783319462783","9783319462790"],"references-count":22,"URL":"https:\/\/doi.org\/10.1007\/978-3-319-46279-0_19","relation":{},"ISSN":["1868-4238","1868-422X"],"issn-type":[{"type":"print","value":"1868-4238"},{"type":"electronic","value":"1868-422X"}],"subject":[],"published":{"date-parts":[[2016]]},"assertion":[{"value":"20 September 2016","order":1,"name":"first_online","label":"First Online","group":{"name":"ChapterHistory","label":"Chapter History"}},{"value":"DigitalForensics","order":1,"name":"conference_acronym","label":"Conference Acronym","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"IFIP International Conference on Digital Forensics","order":2,"name":"conference_name","label":"Conference Name","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"New Delhi","order":3,"name":"conference_city","label":"Conference City","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"India","order":4,"name":"conference_country","label":"Conference Country","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"2016","order":5,"name":"conference_year","label":"Conference Year","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"4 January 2016","order":7,"name":"conference_start_date","label":"Conference Start Date","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"6 January 2016","order":8,"name":"conference_end_date","label":"Conference End Date","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"12","order":9,"name":"conference_number","label":"Conference Number","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"digitalforensics2016","order":10,"name":"conference_id","label":"Conference ID","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"This content has been made available to all.","name":"free","label":"Free to read"}]}}