Problem
Evidence integrity is essential for digital evidence to be admissible in court.
1. Explain what the chain of custody is and why it is important in ensuring evidence integrity.
2. Explain the concept of hashing and how it can be used to verify file integrity.
3. Explain what EXIF data is and give an example showing why it is relevant in digital forensics.
4. Explain one difficulty of using the hash value to verify image integrity in social media
5. Describe two methods for malware detection. Compare these two methods in dealing with zero-day attack.
6. Sensor noise analysis is important in multimedia forensics
a. Explain the objective of performing sensor noise analysis in multimedia forensics
b. Explain two difficulties of using sensor noise in multimedia forensics in practical situations.