首页    期刊浏览 2024年11月27日 星期三
登录注册

文章基本信息

  • 标题:The Impact of Hard Disk Firmware Steganography on Computer Forensics
  • 本地全文:下载
  • 作者:Iain Sutherland ; Gareth Davies ; Nick Pringle
  • 期刊名称:Journal of Digital Forensics, Security and Law
  • 印刷版ISSN:1558-7215
  • 电子版ISSN:1558-7223
  • 出版年度:2009
  • 卷号:2
  • 期号:1702
  • 页码:73-84
  • 语种:English
  • 出版社:Association of Digital Forensics, Security and Law
  • 摘要:The hard disk drive is probably the predominant form of storage media and is a primary data source in a forensic investigation. The majority of available software tools and literature relating to the investigation of the structure and content contained within a hard disk drive concerns the extraction and analysis of evidence from the various file systems which can reside in the user accessible area of the disk. It is known that there are other areas of the hard disk drive which could be used to conceal information, such as the Host Protected Area and the Device Configuration Overlay. There are recommended methods for the detection and forensic analysis of these areas using appropriate tools and techniques. However, there are additional areas of a disk that have currently been overlooked. The Service Area or Platter Resident Firmware Area is used to store code and control structures responsible for the functionality of the drive and for logging failing or failed sectors. This paper provides an introduction into initial research into the investigation and identification of issues relating to the analysis of the Platter Resident Firmware Area. In particular, the possibility that the Platter Resident Firmware Area could be manipulated and exploited to facilitate a form of steganography, enabling information to be concealed by a user and potentially from a digital forensic investigator.
国家哲学社会科学文献中心版权所有