摘要
通过芯片直读,越过设备系统层直接获取手机存储的完整镜像,可以弥补安卓系统权限特殊性导致无法访问底层扇区问题.介绍了eMMC芯片存储部分的工作原理,与数据恢复相关的读、写和擦除等操作的定义;还分析了厂商对eMMC芯片存储区域的划分、各分区的含义和作用.通过芯片直读的方法得到镜像,从而可以进行分析和数据恢复.
Over th e system-level devices,obtaining a complete image of th e phone memory by reading the chip directly, can remedy problems of preventing access to the basic sectors caused by android system permissions particularity. This paper introduces the working principle of the data area of eMMC chip and the definition of operations such as reading, writing and wiping related to data recovery. Moreover, this paper also analyzes the manufacturer's division of eMMC chip dataarea ,the meanings and functions of th e districts. Through the chip direct reading method,images can be carried out and then analysis and data recovery can be made.
出处
《信息安全研究》
2016年第4期317-323,共7页
Journal of Information Security Research
基金
国家"八六三"高技术研究发展计划基金项目(2015AA017204)
