{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,6,8]],"date-time":"2026-06-08T14:08:00Z","timestamp":1780927680259,"version":"3.54.1"},"reference-count":25,"publisher":"MDPI AG","issue":"11","license":[{"start":{"date-parts":[[2022,5,24]],"date-time":"2022-05-24T00:00:00Z","timestamp":1653350400000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/creativecommons.org\/licenses\/by\/4.0\/"}],"funder":[{"name":"Energy Cloud R&amp;D Program through the National Research Foundation of Korea (NRF) funded by the Ministry of Science, ICT","award":["NRF-2019M3F2A1073385"],"award-info":[{"award-number":["NRF-2019M3F2A1073385"]}]},{"name":"Energy Cloud R&amp;D Program through the National Research Foundation of Korea (NRF) funded by the Ministry of Science, ICT","award":["NRF5199991514504"],"award-info":[{"award-number":["NRF5199991514504"]}]},{"name":"BK21 FOUR program of the National Research Foundation of Korea funded by the Ministry of Education","award":["NRF-2019M3F2A1073385"],"award-info":[{"award-number":["NRF-2019M3F2A1073385"]}]},{"name":"BK21 FOUR program of the National Research Foundation of Korea funded by the Ministry of Education","award":["NRF5199991514504"],"award-info":[{"award-number":["NRF5199991514504"]}]}],"content-domain":{"domain":[],"crossmark-restriction":false},"short-container-title":["Sensors"],"abstract":"<jats:p>The Android platform accounts for 85% of the global smartphone operating-system market share, and recently, it has also been installed on Internet-of-Things (IoT) devices such as wearable devices and vehicles. These Android-based devices store various personal information such as user IDs, addresses, and payment information and device usage data when providing convenient functions to users. Insufficient security for the management and deletion of data stored in the device can lead to various cyber security threats such as personal information leakage and identity theft. Therefore, research on the protection of personal information stored in the device is very important. However, there is a limitation that the current research for protection of personal information on the existing Android platform was only conducted on Android platform 6 or lower. In this paper, we analyze the deleted data remaining on the device and the possibility of recovery to improve user privacy for smartphones using Android platforms 9 and 10. The deleted data analysis is performed based on three data deletion scenarios: data deletion using the app\u2019s own function, data deletion using the system app\u2019s data and cache deletion function, and uninstallation of installed apps. It demonstrates the potential user privacy problems that can occur when using Android platforms 9 and 10 due to the leakage of recovered data. It also highlights the need for improving the security of personal user information by erasing the traces of deleted data that remain in the journal area and directory entry area of the filesystem used in Android platforms 9 and 10.<\/jats:p>","DOI":"10.3390\/s22113971","type":"journal-article","created":{"date-parts":[[2022,5,25]],"date-time":"2022-05-25T00:14:14Z","timestamp":1653437654000},"page":"3971","update-policy":"https:\/\/doi.org\/10.3390\/mdpi_crossmark_policy","source":"Crossref","is-referenced-by-count":10,"title":["Digital Forensic Analysis to Improve User Privacy on Android"],"prefix":"10.3390","volume":"22","author":[{"ORCID":"https:\/\/orcid.org\/0000-0002-6160-2887","authenticated-orcid":false,"given":"Hyungchan","family":"Kim","sequence":"first","affiliation":[{"name":"Platform Tech Team, WINS Co., Ltd., Seongnam 13487, Korea"},{"name":"Department of Artificial Intelligence Convergence Network, Ajou University, Suwon 16499, Korea"}],"role":[{"vocabulary":"crossref","role":"author"}]},{"given":"Yeonghun","family":"Shin","sequence":"additional","affiliation":[{"name":"Department of Artificial Intelligence Convergence Network, Ajou University, Suwon 16499, Korea"}],"role":[{"vocabulary":"crossref","role":"author"}]},{"given":"Sungbum","family":"Kim","sequence":"additional","affiliation":[{"name":"Department of Artificial Intelligence Convergence Network, Ajou University, Suwon 16499, Korea"}],"role":[{"vocabulary":"crossref","role":"author"}]},{"ORCID":"https:\/\/orcid.org\/0000-0002-6595-0117","authenticated-orcid":false,"given":"Wooyeon","family":"Jo","sequence":"additional","affiliation":[{"name":"Department of Computer Engineering, Ajou University, Suwon 16499, Korea"}],"role":[{"vocabulary":"crossref","role":"author"}]},{"given":"Minju","family":"Kim","sequence":"additional","affiliation":[{"name":"Department of Artificial Intelligence Convergence Network, Ajou University, Suwon 16499, Korea"}],"role":[{"vocabulary":"crossref","role":"author"}]},{"given":"Taeshik","family":"Shon","sequence":"additional","affiliation":[{"name":"Department of Artificial Intelligence Convergence Network, Ajou University, Suwon 16499, Korea"},{"name":"Department of Cyber Security, Ajou University, Suwon 16499, Korea"}],"role":[{"vocabulary":"crossref","role":"author"}]}],"member":"1968","published-online":{"date-parts":[[2022,5,24]]},"reference":[{"key":"ref_1","first-page":"301010","article-title":"Certificate Injection-Based Encrypted Traffic Forensics in AI Speaker Ecosystem","volume":"33","author":"Shin","year":"2020","journal-title":"Forensic Sci. Int. Digit. Investig."},{"key":"ref_2","unstructured":"Business Leader (2021, April 28). Used, Not Useless: Data on Second-Hand Devices Creates a Cybersecurity Concern for Businesses. Available online: https:\/\/www.businessleader.co.uk\/used-not-useless-data-on-second-hand-devices-creates-a-cybersecurity-concern-for-businesses\/107570\/."},{"key":"ref_3","unstructured":"The Atlantic (2021, April 28). Used Phones Are Full of Previous Owners\u2019 Data. Available online: https:\/\/www.theatlantic.com\/technology\/archive\/2016\/02\/used-phones-are-full-of-previous-owners-data\/470787\/."},{"key":"ref_4","doi-asserted-by":"crossref","first-page":"1595","DOI":"10.1007\/s10586-017-1088-9","article-title":"An improved anonymous authentication scheme for distributed mobile cloud computing services","volume":"22","author":"Chaudhry","year":"2019","journal-title":"Clust. Comput."},{"key":"ref_5","doi-asserted-by":"crossref","first-page":"3","DOI":"10.1016\/j.diin.2016.11.002","article-title":"Forensic analysis of WeChat on Android smartphones","volume":"21","author":"Wu","year":"2017","journal-title":"Digit. Investig."},{"key":"ref_6","unstructured":"and Lin, X. (2017, January 12\u201314). Android digital forensics: Data, extraction and analysis. Proceedings of the ACM Turing 50th Celebration Conference, Shanghai, China."},{"key":"ref_7","unstructured":"Kitsaki, T.-I., Angelogianni, A., Ntantogian, C., and Xenakis, C. (December, January 29). A forensic investigation of Android mobile applications. Proceedings of the 22nd Pan-Hellenic Conference on Informatics, Athens, Greece."},{"key":"ref_8","doi-asserted-by":"crossref","first-page":"S59","DOI":"10.1016\/j.diin.2018.04.012","article-title":"Automated forensic analysis of mobile applications on Android devices","volume":"26","author":"Lin","year":"2018","journal-title":"Digit. Investig."},{"key":"ref_9","doi-asserted-by":"crossref","first-page":"1","DOI":"10.1145\/3007211","article-title":"Why Data Deletion Fails? A Study on Deletion Flaws and Data Remanence in Android Systems","volume":"16","author":"Shu","year":"2017","journal-title":"ACM Trans. Embed. Comput. Syst. (TECS)"},{"key":"ref_10","first-page":"200897","article-title":"Study of identifying and managing the potential evidence for effective Android forensics","volume":"33","author":"Kim","year":"2020","journal-title":"Forensic Sci. Int. Digit. Investig."},{"key":"ref_11","doi-asserted-by":"crossref","first-page":"31","DOI":"10.1016\/j.diin.2017.09.002","article-title":"Forensic analysis of Telegram Messenger on Android smartphones","volume":"23","author":"Anglano","year":"2017","journal-title":"Digit. Investig."},{"key":"ref_12","first-page":"301138","article-title":"Forensic analysis of instant messaging apps: Decrypting Wickr and private text messaging data","volume":"37","author":"Kim","year":"2021","journal-title":"Forensic Sci. Int. Digit. Investig."},{"key":"ref_13","first-page":"301169","article-title":"A new model for forensic data extraction from encrypted mobile devices","volume":"38","author":"Fukami","year":"2021","journal-title":"Forensic Sci. Int. Digit. Investig."},{"key":"ref_14","doi-asserted-by":"crossref","unstructured":"Mirza, M.M., Salamh, F.E., and Karabiyik, U. (2020, January 1\u20132). An Android Case Study on Technical Anti-Forensic Chal-lenges of WhatsApp Application. Proceedings of the IEEE 2020 8th International Symposium on Digital Forensics and Security (ISDFS), Beirut, Lebanon.","DOI":"10.1109\/ISDFS49300.2020.9116192"},{"key":"ref_15","doi-asserted-by":"crossref","first-page":"S83","DOI":"10.1016\/j.diin.2017.01.003","article-title":"AFEIC: Advanced forensic Ext4 inode carving","volume":"20","author":"Dewald","year":"2017","journal-title":"Digit. Investig."},{"key":"ref_16","doi-asserted-by":"crossref","first-page":"444","DOI":"10.1016\/j.ins.2019.05.052","article-title":"Exploiting location-related behaviors without the GPS data on smartphones","volume":"527","author":"Li","year":"2019","journal-title":"Inf. Sci."},{"key":"ref_17","doi-asserted-by":"crossref","first-page":"600","DOI":"10.1016\/j.ins.2019.11.008","article-title":"Deep and broad URL feature mining for android malware detection","volume":"513","author":"Wang","year":"2019","journal-title":"Inf. Sci."},{"key":"ref_18","doi-asserted-by":"crossref","first-page":"230","DOI":"10.1016\/j.ins.2020.10.058","article-title":"One enhanced secure access scheme for outsourced data","volume":"561","author":"Fan","year":"2020","journal-title":"Inf. Sci."},{"key":"ref_19","doi-asserted-by":"crossref","first-page":"255","DOI":"10.1016\/j.ins.2019.01.073","article-title":"A lightweight machine learning-based authentication framework for smart IoT devices","volume":"484","author":"Punithavathi","year":"2019","journal-title":"Inf. Sci."},{"key":"ref_20","doi-asserted-by":"crossref","unstructured":"Kim, H., Kim, S., Shin, Y., Jo, W., Lee, S., and Shon, T. (2021). Ext4 and XFS File System Forensic Framework Based on TSK. Electronics, 10.","DOI":"10.3390\/electronics10182310"},{"key":"ref_21","doi-asserted-by":"crossref","first-page":"S80","DOI":"10.1016\/j.diin.2019.04.013","article-title":"Digital Forensic Practices and Methodologies for AI Speaker Ecosystems","volume":"29","author":"Jo","year":"2019","journal-title":"Digit. Investig."},{"key":"ref_22","doi-asserted-by":"crossref","first-page":"S118","DOI":"10.1016\/j.diin.2012.05.010","article-title":"An analysis of Ext4 for digital forensics","volume":"9","author":"Fairbanks","year":"2012","journal-title":"Digit. Investig."},{"key":"ref_23","doi-asserted-by":"crossref","unstructured":"Fairbanks, K.D. (2015, January 1\u20135). A Technique for Measuring Data Persistence Using the Ext4 File System Journal. Proceedings of the 2015 IEEE 39th Annual Computer Software and Applications Conference, Taichung, Taiwan.","DOI":"10.1109\/COMPSAC.2015.164"},{"key":"ref_24","doi-asserted-by":"crossref","first-page":"16093","DOI":"10.1007\/s11042-019-7199-y","article-title":"ExtSFR: Scalable file recovery framework based on an Ext file system","volume":"79","author":"Lee","year":"2019","journal-title":"Multimed. Tools Appl."},{"key":"ref_25","unstructured":"Counterpoint (2021, April 30). Global Smartphone Quarterly Market Data (2018Q1\u20132021Q1). Available online: https:\/\/www.counterpointresearch.com\/global-smartphone-share\/."}],"container-title":["Sensors"],"original-title":[],"language":"en","link":[{"URL":"https:\/\/www.mdpi.com\/1424-8220\/22\/11\/3971\/pdf","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2025,10,10]],"date-time":"2025-10-10T23:17:33Z","timestamp":1760138253000},"score":1,"resource":{"primary":{"URL":"https:\/\/www.mdpi.com\/1424-8220\/22\/11\/3971"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2022,5,24]]},"references-count":25,"journal-issue":{"issue":"11","published-online":{"date-parts":[[2022,6]]}},"alternative-id":["s22113971"],"URL":"https:\/\/doi.org\/10.3390\/s22113971","relation":{},"ISSN":["1424-8220"],"issn-type":[{"value":"1424-8220","type":"electronic"}],"subject":[],"published":{"date-parts":[[2022,5,24]]}}}