基于证据库的数字证据转换模型

Evidence conversion model based on evidence database

针对目前多种证据格式兼容性差、证据转换效率低、缺乏对证据文件转换过程进行科学判定及理论说明等不足,提出证据库转换模型。该模型对现有转换方法进行分析,利用证据文件是在RAW映像文件的基础上增加了元数据及专属格式信息的重要特征,引入多层签名以确保原始信息及证据文件的准确性,不改变证据文件的相关特征,完成证据格式高效转换。同时针对现有新型证据格式(AFF)转换效率慢问题,改进现有转换算法,完成与RAW文件格式的快速转换。实验结果表明,该模型能够重建证据转换流程,能够优化算法结构,提高证据文件格式转换速度。

For the compatible problem of the existing multiple forensic formats, the efficiency of evidence conversion was low and the conversion couldn＇ t make scientific judgment and theoretical description of the process of conversion, this paper improved a model of evidence format conversion and analyzed the existing method. It found that digital evidence were based on raw image and adding the metadata and the feature of special evidence information to it. Using multi-signature to guarantee the accuracy of original information, it kept the important characteristics of evidence and accomplished the conversion efficiently. This paper also improved the conversion algorithm of advanced forensic format （AFF） to solve the problem of low efficiency, and accomplished the high-efficient conversion with raw format. The experimental results show that the model can reconstruct the process of evidence conversion, optimize the construction of algorithm and improve the speed of conversion algorithm.