Difference between pages "Common Log File System (CLFS)" and "Golden G. Richard III"

From ForensicsWiki
(Difference between pages)
Jump to: navigation, search
(External links)
 
m
 
Line 1: Line 1:
The '''Common Log File System''' ('''CLFS''') is a special purpose file (sub)system designed for transaction logging and/or recovery. The CLFS is not a file system in the traditional meaning of a disk file system, but more of a logical (special purpose) file system that operates in combination with a disk file system like [[NTFS]].
 
  
== Overview ==
+
Golden G. Richard III is Professor of Computer Science, University Research Professor, and Director of the Greater New Orleans Center for Information Assurance (GNOCIA) at the University of New Orleans, where he has taught and done research in cybersecurity, operating systems internals, reverse engineering, and malware analysis since 1994.  Golden earned a Ph.D. in Computer Science from The Ohio State University in 1995.  He is also the Founder and Owner of Arcane Alloy, LLC, a private digital forensics and cybersecurity firm, the original author of the [[Scalpel]] file [[Carving|carving]] tool, and a professional music photographer.
A CLFS log consists of a base log file (.blf) and one or more container files.
+
  
There are two types of logs:
+
He maintains a [[Blogs|blog]] called "Outlook Purple" and can be found on Twitter at @nolaforensix.  
* dedicated logs; contains a single stream of log records.
+
* multiplexed (or common) logs; contains several streams of log records.
+
  
== Implementation ==
+
== See Also ==
  
According to Wikipedia CLFS was introduced in Windows server 2003 R2.
+
[[Forensics on GPUs]]
  
In Windows Vista the CLFS is implemented as a driver named: clfs.sys. User space equivalent functionality is provided by clfsw32.dll, which communicates to the driver by DeviceIoControl calls.
+
== External Links ==
  
== Also see ==
+
* [http://www.cs.uno.edu/~golden/ Official website]
Windows Internals 5 by Mark E. Russinovich and David A. Solomon
+
* [http://www.arcanealloy.com]
 +
* [http://outlookpurple.blogspot.com]
 +
* [http://www.highisomusic.com]
  
== External links ==
+
[[Category:People]]
* [http://msdn.microsoft.com/en-us/library/bb986747%28VS.85%29.aspx MSDN on Common Log File System]
+
* [http://en.wikipedia.org/wiki/Common_Log_File_System Wikipedia on Common Log File System]
+
* [http://code.google.com/p/libfslibs/downloads/detail?name=Common%20Log%20File%20System%20%28CLFS%29.pdf Common Log File System (CLFS)], by the [[libfslibs|libfslibs project]], November 2010
+
 
+
[[Category:Logical file systems]]
+
[[Category:File Systems]]
+

Revision as of 15:31, 28 January 2014

Golden G. Richard III is Professor of Computer Science, University Research Professor, and Director of the Greater New Orleans Center for Information Assurance (GNOCIA) at the University of New Orleans, where he has taught and done research in cybersecurity, operating systems internals, reverse engineering, and malware analysis since 1994. Golden earned a Ph.D. in Computer Science from The Ohio State University in 1995. He is also the Founder and Owner of Arcane Alloy, LLC, a private digital forensics and cybersecurity firm, the original author of the Scalpel file carving tool, and a professional music photographer.

He maintains a blog called "Outlook Purple" and can be found on Twitter at @nolaforensix.

See Also

Forensics on GPUs

External Links