File Type Identification - Computational Intelligence for Digital Forensics
Uloženo v:
| Název: | File Type Identification - Computational Intelligence for Digital Forensics |
|---|---|
| Autoři: | Karampidis, Konstantinos, Papadourakis, Giorgos |
| Zdroj: | Journal of Digital Forensics, Security and Law |
| Informace o vydavateli: | Scholarly Commons 1558-7223 |
| Rok vydání: | 2017 |
| Sbírka: | Embry-Riddle Aeronautical University: ERAU Scholarly Commons |
| Témata: | digital forensics, file type identification, computational intelligence, genetic algorithm, neural network, data integrity, Computer Law, Information Security |
| Popis: | In modern world, the use of digital devices for leisure or professional reasons is growing quickly; nevertheless, criminals try to fool authorities and hide evidence in a computer by changing the file type. File type detection is a very demanding task for a digital forensic examiner. In this paper, a new methodology is proposed – in a digital forensics perspective- to identify altered file types with high accuracy by employing computational intelligence techniques. The proposed methodology is applied to the three most common image file types (jpg, png and gif) as well as to uncompressed tiff images. A three-stage process involving feature extraction (Byte Frequency Distribution), feature selection (genetic algorithm) and classification (neural network) is proposed. Experimental results were conducted having files altered in a digital forensics perspective and the results are presented. The proposed model shows very high and exceptional accuracy in file type identification. |
| Druh dokumentu: | text |
| Popis souboru: | application/pdf |
| Jazyk: | unknown |
| Relation: | https://commons.erau.edu/jdfsl/vol12/iss2/6; https://commons.erau.edu/context/jdfsl/article/1472/viewcontent/2._FILE_TYPE_IDENTIFICATION__.pdf |
| DOI: | 10.15394/jdfsl.2017.1472 |
| Dostupnost: | https://commons.erau.edu/jdfsl/vol12/iss2/6 https://doi.org/10.15394/jdfsl.2017.1472 https://commons.erau.edu/context/jdfsl/article/1472/viewcontent/2._FILE_TYPE_IDENTIFICATION__.pdf |
| Přístupové číslo: | edsbas.DE0F30FA |
| Databáze: | BASE |
Nájsť tento článok vo Web of Science | Abstrakt: | In modern world, the use of digital devices for leisure or professional reasons is growing quickly; nevertheless, criminals try to fool authorities and hide evidence in a computer by changing the file type. File type detection is a very demanding task for a digital forensic examiner. In this paper, a new methodology is proposed – in a digital forensics perspective- to identify altered file types with high accuracy by employing computational intelligence techniques. The proposed methodology is applied to the three most common image file types (jpg, png and gif) as well as to uncompressed tiff images. A three-stage process involving feature extraction (Byte Frequency Distribution), feature selection (genetic algorithm) and classification (neural network) is proposed. Experimental results were conducted having files altered in a digital forensics perspective and the results are presented. The proposed model shows very high and exceptional accuracy in file type identification. |
|---|---|
| DOI: | 10.15394/jdfsl.2017.1472 |