By Topic

Analysis of DB files based on compound document format

Sign In

Cookies must be enabled to login.After enabling cookies , please use refresh or reload or ctrl+f5 on the browser for the login options.

Formats Non-Member Member
$31 $13
Learn how you can qualify for the best price for this item!
Become an IEEE Member or Subscribe to
IEEE Xplore for exclusive pricing!
close button

puzzle piece

IEEE membership options for an individual and IEEE Xplore subscriptions for an organization offer the most affordable access to essential journal articles, conference papers, standards, eBooks, and eLearning courses.

Learn more about:

IEEE membership

IEEE Xplore subscriptions

4 Author(s)
Jiajia Liu ; Dept. of Autom., Xiamen Univ., Xiamen, China ; Fanlin Meng ; Jialong He ; Shunxiang Wu

In Internet era, instant messaging software are closely linked with Net users. However, with enormous growth of instant messaging software users, a lot of lawbreakers carry out criminal activities using them as a medium. Then, mining and analyzing the useful clues from raw data left on the computer has become a significant means and research area for investigation and forensics. In this paper, taking Tencent QQ2008, which is China's most popular instant messaging software, as an example, we firstly deeply research into the information storage structures as well as the data encryption method of QQ Friends List file and QQ Chat Log file whose file suffix known as DB. Based on this, through parsing the DB files, we have obtained comprehensive analysis results of friends list and chat log. Most importantly, an analysis tool has been developed, which proves to be useful for computer investigation and forensics in practical use.

Published in:

Computational Intelligence and Industrial Applications, 2009. PACIIA 2009. Asia-Pacific Conference on  (Volume:1 )

Date of Conference:

28-29 Nov. 2009