文章基本信息

标题：A File Fragment Classification Method Based on Grayscale Image
本地全文：下载
作者：Xu, Tantan ; Xu, Ming ; Ren, Yizhi 等
期刊名称：Journal of Computers
印刷版ISSN：1796-203X
出版年度：2014
卷号：9
期号：8
页码：1863-1870
DOI：10.4304/jcp.9.8.1863-1870
语种：English
出版社：Academy Publisher
摘要：File fragment classification is an important and difficult problem in digital forensics. Previous works in this area mainly relied on specific byte sequences in file headers and footers, or statistical analysis and machine learning algorithms on data from the middle of the file. This paper introduces a new approach to classify file fragment based on grayscale image. The proposed method treats a file fragment as a grayscale image, and uses image classification method to classify file fragment. Furthermore, two models based on file-unbiased and type-unbiased are proposed to verify the validity of the proposed method. Compared with previous works, the experimental results are promising. An average classification accuracy of 39.7% in file-unbiased model and 54.7% in type-unbiased model are achieved on 29 file types.
关键词：file fragment classification;digital forensic;grayscale image