Detecting JFIF header using FORHEADER
Header and footer are important in digital investigation for JPEG file detection as only 16% of files are fragmented. The use of efficient algorithm to detect them is vital to reduce time taken for analyzing ever increasing data in hard drive or physical memory. Even though there are few application...
Saved in:
| Main Authors: | , , |
|---|---|
| Format: | Article |
| Language: | English |
| Published: |
Science and Engineering Research Support Society
2011
|
| Subjects: | |
| Online Access: | http://umpir.ump.edu.my/id/eprint/25589/1/Detecting%20JFIF%20header%20using%20FORHEADER.pdf http://umpir.ump.edu.my/id/eprint/25589/ https://pdfs.semanticscholar.org/e0ea/8d5d68d3440fc67e1b5ffca5a1bd3e9d9d84.pdf |
| Tags: |
Add Tag
No Tags, Be the first to tag this record!
|
| id |
my.ump.umpir.25589 |
|---|---|
| record_format |
eprints |
| spelling |
my.ump.umpir.255892020-02-11T07:27:54Z http://umpir.ump.edu.my/id/eprint/25589/ Detecting JFIF header using FORHEADER Kamaruddin Malik, Mohamad Herawan, Tutut Mustafa, Mat Deris QA76 Computer software Header and footer are important in digital investigation for JPEG file detection as only 16% of files are fragmented. The use of efficient algorithm to detect them is vital to reduce time taken for analyzing ever increasing data in hard drive or physical memory. Even though there are few applications developed for file carving that rely on header and footer e.g. Foremost, Scalpel; however the algorithm used for header detection is not much discussed. In this paper, we introduce three novel algorithms; single-byte-marker, dual-byte-marker and 20-point-reference for JPEG File Interchange Format (JFIF) header detection using a newly introduced FORHEADER model. Three experiments have been carried out using an image from hard disk and physical memory; and raw data from Digital Workshop Forensics Research Workshop 2006 (DFRWS 2006) challenge. The results obtained showed that dualbyte-marker algorithm provides better performance in terms of processing time for JFIF header detection. Science and Engineering Research Support Society 2011 Article PeerReviewed pdf en http://umpir.ump.edu.my/id/eprint/25589/1/Detecting%20JFIF%20header%20using%20FORHEADER.pdf Kamaruddin Malik, Mohamad and Herawan, Tutut and Mustafa, Mat Deris (2011) Detecting JFIF header using FORHEADER. International Journal of Security and its Applications, 5 (4). pp. 23-36. ISSN 1738-9976 https://pdfs.semanticscholar.org/e0ea/8d5d68d3440fc67e1b5ffca5a1bd3e9d9d84.pdf |
| institution |
Universiti Malaysia Pahang |
| building |
UMP Library |
| collection |
Institutional Repository |
| continent |
Asia |
| country |
Malaysia |
| content_provider |
Universiti Malaysia Pahang |
| content_source |
UMP Institutional Repository |
| url_provider |
http://umpir.ump.edu.my/ |
| language |
English |
| topic |
QA76 Computer software |
| spellingShingle |
QA76 Computer software Kamaruddin Malik, Mohamad Herawan, Tutut Mustafa, Mat Deris Detecting JFIF header using FORHEADER |
| description |
Header and footer are important in digital investigation for JPEG file detection as only 16% of files are fragmented. The use of efficient algorithm to detect them is vital to reduce time taken for analyzing ever increasing data in hard drive or physical memory. Even though there are few applications developed for file carving that rely on header and footer e.g. Foremost, Scalpel; however the algorithm used for header detection is not much discussed. In this paper, we introduce three novel algorithms; single-byte-marker, dual-byte-marker and 20-point-reference for JPEG File Interchange Format (JFIF) header detection using a newly introduced FORHEADER model. Three experiments have been carried out using an image from hard disk and physical memory; and raw data from Digital Workshop Forensics Research Workshop 2006 (DFRWS 2006) challenge. The results obtained showed that dualbyte-marker algorithm provides better performance in terms of processing time for JFIF header detection. |
| format |
Article |
| author |
Kamaruddin Malik, Mohamad Herawan, Tutut Mustafa, Mat Deris |
| author_facet |
Kamaruddin Malik, Mohamad Herawan, Tutut Mustafa, Mat Deris |
| author_sort |
Kamaruddin Malik, Mohamad |
| title |
Detecting JFIF header using FORHEADER |
| title_short |
Detecting JFIF header using FORHEADER |
| title_full |
Detecting JFIF header using FORHEADER |
| title_fullStr |
Detecting JFIF header using FORHEADER |
| title_full_unstemmed |
Detecting JFIF header using FORHEADER |
| title_sort |
detecting jfif header using forheader |
| publisher |
Science and Engineering Research Support Society |
| publishDate |
2011 |
| url |
http://umpir.ump.edu.my/id/eprint/25589/1/Detecting%20JFIF%20header%20using%20FORHEADER.pdf http://umpir.ump.edu.my/id/eprint/25589/ https://pdfs.semanticscholar.org/e0ea/8d5d68d3440fc67e1b5ffca5a1bd3e9d9d84.pdf |
| _version_ |
1662754719160860672 |
| score |
13.211869 |