Forensics Analysis of File Slack Based Statistic Techniques

One important task in digital investigations is the forensic analysis of file slacks. This paper firstly presents the physical structure of file slack and the formation process,then discusses entropy statistical feature. The result of our experiment demonstrates that the method based on statistic techniques achieves a competitive performance results.