This Article 
   
 Share 
   
 Bibliographic References 
   
 Add to: 
 
Digg
Furl
Spurl
Blink
Simpy
Google
Del.icio.us
Y!MyWeb
 
 Search 
   
Distinct Sector Hashes for Target File Detection
Dec. 2012 (vol. 45 no. 12)
pp. 28-35
Joel Young, Naval Postgraduate School
Kristina Foster, Naval Postgraduate School
Simson Garfinkel, Naval Postgraduate School
Kevin Fairbanks, Johns Hopkins University
Using an alternative approach to traditional file hashing, digital forensic investigators can hash individually sampled subject drives on sector boundaries and then check these hashes against a prebuilt database, making it possible to process raw media without reference to the underlying file system.
Index Terms:
Digital forensics,Malware,Computers,Forensics,File systems,Cryptography,sector hashing,digital forensics,computer security
Citation:
Joel Young, Kristina Foster, Simson Garfinkel, Kevin Fairbanks, "Distinct Sector Hashes for Target File Detection," Computer, vol. 45, no. 12, pp. 28-35, Dec. 2012, doi:10.1109/MC.2012.327
Usage of this product signifies your acceptance of the Terms of Use.