Research Article
Taxonomy of Data Fragment Classification Techniques
@INPROCEEDINGS{10.1007/978-3-319-14289-0_6, author={Rainer Poisel and Marlies Rybnicek and Simon Tjoa}, title={Taxonomy of Data Fragment Classification Techniques}, proceedings={Digital Forensics and Cyber Crime. Fifth International Conference, ICDF2C 2013, Moscow, Russia, September 26-27, 2013, Revised Selected Papers}, proceedings_a={ICDF2C}, year={2015}, month={2}, keywords={Digital forensics Computer forensics Data fragment Classification Taxonomy File carving Recovery Collating}, doi={10.1007/978-3-319-14289-0_6} }- Rainer Poisel
Marlies Rybnicek
Simon Tjoa
Year: 2015
Taxonomy of Data Fragment Classification Techniques
ICDF2C
Springer
DOI: 10.1007/978-3-319-14289-0_6
Abstract
Several fields of digital forensics (i.e. file carving, memory forensics, network forensics) require the reliable data type classification of digital fragments. Up to now, a multitude of research papers proposing new classification approaches have been published. Within this paper we comprehensively review existing classification approaches and classify them into categories. For each category, approaches are grouped based on shared commonalities. The major contribution of this paper is a novel taxonomy of existing data fragment classification approaches. We highlight progress made by previous work facilitating the identification of future research directions. Furthermore, the taxonomy can provide the foundation for future knowledge-based classification approaches.