Basic & Fundamental Concepts of Cell Forensics MCQs is the first topic of our systematic designed Mobile Forensic MCQ Series Section. In this section, MCQs are designed related to the general introduction and definition of Cell Forensics.

Basic & Fundamental Concepts of Cell Forensics

This section of mobile forensic included 19 MCQs along with their answers and explanation. This is the 1st part of the sub-categories of digital forensic. You can browse all MCQs related to digital forensic from here.

1. Which is NOT a type of data that is used in storage or mobile devices?

  1. Conceptual Data
  2. Address Data
  3. Logical Data
  4. Physical Data

Answer: (2) Address Data

Explanation:
There are basically three types of data i.e. logical data, physical data, and conceptual data.
And according to perspectives of mobile forensics, logical and physical data is most useful.

2. Which data file form generally NOT included the deleted files?

  1. Logical Data
  2. Physical Data
  3. Conceptual Data
  4. Both (1) & (2)

Answer: (1) Logical Data

Explanation:
Logical data have limited data storage access which can only hold for GUI extraction, through which deleted records cannot be extracted.
Example: A person sends a message to ‘Y’ and after reading the message the person ‘Y’ deleted the message. In this case, one can’t able to see the message in the sent folder of the phone. However, it can be extracted using the physical data extraction method.

3. Which data form that can be easily understood?

  1. Conceptual Data
  2. Logical Data
  3. Physical Data 
  4. All of the above

Answer: (2) Logical Data

Explanation:
Logical Data are easy to understand because the data is converted in a readable form using the GUI process.

4. Which data can be viewed through the device’s Graphical User Interface (GUI)?

  1. Logical Data
  2. Physical Data
  3. Conceptual Data
  4. None of the above

Answer: (1) Logical Data

Explanation:
Logical Data are easy to understand because, after the conversion of the data, it is represented as graphics on the output device which generally is monitor or tablet screens.

5. Which is NOT a tool or method for logical data extraction?

  1. File system
  2. Android backups
  3. Advanced Logical
  4. Chip – off method

Answer: (4) Chip – off method

Explanation:
Tools for logical data extraction are file system, android backups, and advanced logical.
But Chip-off method is a physical data extraction technique.

6. The deleted data can be extracted using

  1. Logical Data Extraction
  2. Physical Data Extraction
  3. Both (1) & (2)
  4. None of the above

Answer: (2) Physical Data Extraction

Explanation:
Physical data Extraction can be used to extract delete data using the desired extraction method like the chip-off method.
A detailed article link: Mobile Forensic Data Acquisition Methods and Tools

7. Cross tool validation in digital mobile forensic means

  1. Use more than one forensic tool in the extraction
  2. Use an open-source tool for validation
  3. Use of one product tool to confirm the finding of other tools
  4. Validation of two or more files that originated from the same source

Answer: (3) Use of one product tool to confirm the finding of other tools.

Explanation:
When one tool is used to validate the finding of others it is called a Cross tool validation.
For instance, FTK (Forensic Tool Kit) and BitPim interpret the same result or we can say that the Bitpim tool can be used to validate the finding of the FTK tool.

8. Which of the following is NOT an example of logical data?

  1. SMS
  2. GPS
  3. Web History
  4. Relational Tables
  5. Videos

Answer: (4) Relational Tables

Explanation:
Commonly interpreted logical data in mobile forensic are SMS, MMS, Call history, Chats, Videos, web history, bookmarks, GPS, and user-installed applications.
Relational tables are an example of physical data.

9. CDRs in mobile forensic stands for

  1. Call Details Records
  2. Compact Disk Rewritable
  3. Compact Disk Readers
  4. Call Data Records

Answer: (1) Call Details Records

Explanation:
In Mobile Forensic, CDRs stands for Call Details Records which is crucial evidence.

10. Data that is often used in court or judicial proceedings?

  1. Logical Data 
  2. Physical Data 
  3. Conceptual Data
  4. Both 1. & 2.
  5. None of the above

Answer: (1) Logical Data

Explanation:
Logical data is a readable form of the data which is why they are a common form of data in court and judicial proceedings.
Moreover, even physical data extracted are being converted to Logical data that judicial administrators and common people can understand.

11. In mobile forensic, visual validation means

  1. The examiner checks for physicals damage signs and validate it with a recovered evidence report by the collected officer.
  2. The examiner uses the GUI of the mobile device to confirm the findings from the forensic tool.
  3. The examiners validate the findings of the image file and depict it with the extracted image files from forensic tool applications and hash values.
  4. None of the above

Answer: (2) The examiner uses the GUI of the mobile device to confirm the findings from the forensic tool.

Explanation:
A detailed article link- Click here

12. In visual validation, the cell device’s _____ is used to validate the recovered files from a forensic tool.

  1. GUI
  2. CUI
  3. Encase
  4. Mobile screen

Answer: (1) GUI

Explanation:
In mobile forensics, when Graphical User Interface (GUI) used to verify the finding of a forensic tool then this type of validation is called visual validation.

13. In digital forensic, Hand Carving is defined as

  1. Removing the ROM chip from the mobile device for forensic examination.
  2. Use mobile’s undamaged hardware to carving them to a new device to extracted data.
  3. Uses more than one physical extraction technique.
  4. Manually navigate the file system to locate encoded raw data.

Answer: (4) Manually navigate the file system to locate encoded raw data.

Explanation:
Hand Carving is the process in which the examiner would manually navigate into the device’s file system and locate its encoded raw data stored in the cell device.

14. What is the full form of SOP in cell device forensic?

  1. Standard Operating Procedure
  2. Standard of Preservation
  3. Safety Operational Procedure
  4. Set Operational Procedure

Answer: (1) Standard Operating Procedure

Explanation:
SOP addresses to a step by step operating procedure while dealing with digital evidence.

15. NIST stands for

  1. National Institute of Safety and Test
  2. National Institute of Safety and Technology
  3. National Institute of Standards and Technology
  4. National Institute of Safety and Transportation

Answer: (3) National Institute of Standards and Technology

Explanation:
NIST stands for the National Institute of Standards and Technology. NIST’s mission is to promote innovation and industrial competitiveness.
Founded: 1901
Headquarters: Gaithersburg, Maryland and the United States

16. Which year NIST was founded?

  1. 1899
  2. 1901
  3. 1902
  4. 1903

Answer: (2) 1901

Explanation:
National Institute of Standards and Technology (NIST) was founded in 1901 and is a non-regulatory agency of the US Department of Commerce.

17. The first publication of NIST in the field of mobile device titled as

  1. Guidelines on Cell Phone Forensic
  2. Standard Protocol for Mobile phone Forensic
  3. Set procedure for Mobile Forensic
  4. None of the above

Answer: (1) Guidelines on Cell Phone Forensic

Explanation:
Guidelines on Cell Phone Forensics is the first publication by NIST in the field of mobile forensic.

18. Guidelines on Cell Phone Forensic was published on

  1. March 2007
  2. April 2007
  3. May 2007
  4. June 2007

Answer: (3) May 2007

Explanation:
No explanation for this Basic & Fundamental Concepts of Cell Forensics MCQ

19. When was the first revised publication of Guidelines on Cell Phone Forensic published?

  1. May 2012
  2. May 2013
  3. May 2014
  4. May 2015

Answer: (3) May 2014

Explanation:
No explanation for this Basic & Fundamental Concepts of Cell Forensics MCQ.

Jump to Mobile Forensic MCQ Series Section

Leave a Reply