Detecting and manipulating compressed alternate data streams in a forensics investigation

Martini, A. I.; Zaharis, A.; Ilioudis, C.

Autore

Martini, A. I.; Zaharis, A.; Ilioudis, C.

Data

2008

DOI

10.1109/WDFIA.2008.9

Soggetto

Computer forensics

Data hiding

Data stream

Data communication systems

Electronic crime countermeasures

Mostra tutti i dati dell'item

Abstract

Data hiding technique through Alternate Data Streams in compressed form is poorly documented and less known among Forensic experts. This paper deals with the documentation of Compressed ADS and their attributes concerning hiding information, provides a simple technique of creating compressed ADS and using it in a malicious manner. Finally a method is presented in order to detect and manipulate ADS in a proper way, complying with the Computer Forensic techniques. © 2008 IEEE.

URI

http://hdl.handle.net/11615/30759

Collections

Δημοσιεύσεις σε περιοδικά, συνέδρια, κεφάλαια βιβλίων κλπ. [19705]