A new method of file type identification based on two level 2DPCA

Forgery of files is an important part of anti-forensic techniques, the malicious third party utilizes the technologies of forgery and steganography to forge files (Jain et al., 2014), and they are aiming at stealing, faking, hiding important information and spreading viruses, etc. At the same time, the increasing of the compound file types, file with less features and long cycle of detection are challenging the existing method of file identification (Cao et al., 2010). So it is necessary to improve the method of detection to correct the false or unknown file type and protect the security of information in the host.