UTHM Institutional Repository

Single-byte-marker for detecting JPEG JFIF header using FORIMAGE-JPEG

Mohamad, Kamaruddin Malik and Mat Deris, Mustafa Single-byte-marker for detecting JPEG JFIF header using FORIMAGE-JPEG. 2009 Fifth International Joint Conference on INC, IMS and IDC.

Full text not available from this repository.


Header and footer detection is important in digital investigation for file type detection. The use of efficient algorithm to detect them is vital to reduce time taken for analyzing ever increasing data in hard drive or physical memory. Even though there are few applications developed e.g. Foremost, Scalpel; however the algorithm used for header detection is not discussed much. This paper introduces two algorithms: single-byte-marker and 20-point-reference for header detection. Few experiments have been done using image taken from Helix Live CD from 8 MB hard disk partition, 1 GB physical memory and raw data from DFRWS 2006 challenge.The results show that single-byte-marker algorithm is more efficient for header detection.

Item Type: Article
Uncontrolled Keywords: data recovery ; digital evidence ,; JPEG JFIF ; memory forensics
Subjects: T Technology > T58.5-58.64 Information technology
Divisions: Faculty of Computer Science and Information Technology > Department of Information Security
Depositing User: Norfauzan Md Sarwin
Date Deposited: 08 Nov 2012 01:29
Last Modified: 08 Nov 2012 01:29
URI: http://eprints.uthm.edu.my/id/eprint/3232
Statistic Details: View Download Statistic

Actions (login required)

View Item View Item