Magnolia Hotel in Denver
Conference Location: 
Magnolia Denver
Denver, CO
United States


Media Forensics Analysis in Digital Times

Catalin Grigoras

Abstract: Media Forensics is a discipline within the digital and multimedia evidence (DME) field of forensics. DME includes digital evidence such as computers and mobile phones as well as recorded evidence in the form of digital audio, video, or still images. This confluence comes as a result of the ubiquity of digital technology and the commonality of media used to store digital data. For example, an external hard drive that is collected at a crime scene may contain audio recordings and images relevant to a case while the digital video recorder-based security system in the next room recorded audio and video to a hard disk drive during the events being investigated. Or, a cell phone found on a suspect may have been used to record voice notes, videos and still images all related to a case under investigation. Because these items of evidence coexist in a digital realm that is not tangible as most other forensic Sciences are known to be, the necessities of handling digital evidence must be respected throughout the DME discipline. This paper presents a general framework for media forensics analysis and neutral methodologies to interpret and present the results using multiple robust analysis techniques.

Bio: As Director of the National Center for Media Forensics, Grigoras has the privilege to coordinate the Center.s activity, including education and scientific projects. His research encompasses digital signal processing in forensic multimedia, including digital recording authentication, audio/image analysis, enhancement, and automatic speaker recognition. His research into digital signal processing has resulted in advanced methods to authenticate digital audio/video recordings and semiautomatic systems for forensic speaker recognition. Grigoras was chairman of the European Network of Forensic Science Institutes - Forensic Speech and Audio Analysis Working Group between 2007-2009. He is a member of the Audio Engineering Society Subcommittee on Forensic Audio and the International Association of Forensic Phonetics and Acoustics. He has published numerous forensic audio/video articles and is a co-author of Best Practice Guidelines for ENF Analysis in Forensic Authentication of Digital Evidence (2009).

Dr. Grigoras is also co-author of the Encyclopedia of Forensic Science 2nd Ed., Academic Press, chapters on "Audio Enhancement and Authentication" and "Digital Imaging Enhancement and Authentication" (2013).

Some Practical Thoughts Concerning Active Disk Antiforensics

Travis Goodspeed

Abstract: Imaging a disk before analyzing its contents is usually good forensics practice, but what happens if that disk has been programmed to self-destruct when imaged? This fast-paced lecture describes how a disk can be built to defend itself from forensic imaging, but also some techniques that might be used to defeat anti-forensic features.

Bio: Travis Goodspeed is a reverse engineer from Southern Appalachia. With neighbors from Dartmouth, he crafted the Facedancer board for USB device emulation and device driver fuzzing, as well as the Packet-in-Packet technique for remotely injecting into Layer 1 from Layer 7 on wireless networks. With neighbors from Eurecom, he built a remotely accessible backdoor that hides in the firmware of a hard disk. He rebuilt a naval satellite dish to track LEO satellites, and his iPod will give up only Rick Astley lyrics when imaged.


Best Paper: 

Forensics Challenge: 



Registration is closed


The DFRWS Annual Conference is made possible because of the hours that the organizing committee volunteers and because of the donations from our sponsors. Sponsors help to provide a neutral environment where new research can be presented and discussed, while keeping the registration prices low. Please support the sponsors that help DFRWS.

DFRWS 2014 Student Scholarship 
Google's mission is to organize the world's information and make it universally accessible and useful. Google is pleased to sponsor a student scholarship to DFRWS.

DFRWS 2014 Welcome Reception
Dell SecureWorks focuses exclusively on information security services to protect thousands of customers around the world. 
As a security service provider, we strive to be a world leader in everything related to information security; from firewall management services, combating advanced persistent threats to ensuring your PCI readiness for compliance. Our Global Headquarters located in Atlanta, GA is where a large amount of monitoring and research is performed while working in tandem with our other US, Europe and Japan offices. Many industries and IT security companies need assistance in maintaining or even building a new infrastructure for their information security and we have the expert security analysts to assist you along the way through consulting, audits, assessments, and tests.

DFRWS 2014 In-Kind Donation