NIST CFTT
Definition
The National Institute of Standards and Technology Computer Forensics Tool Testing programme. It publishes independent test reports for digital forensic tools, including mobile and network platforms. CFTT reports document supported features, known limitations, and error conditions for specific tool versions.
Related terms
- Daubert standard
- The US federal evidentiary standard (Daubert v. Merrell Dow Pharmaceuticals, 1993) requiring that expert testimony be based on scientifically valid methods with...
- ISO/IEC 17025
- The international standard for testing and calibration laboratories, published jointly by the International Organization for Standardization and the International Electrotechnical Commission. It...
- C2PA
- Coalition for Content Provenance and Authenticity. A cross-industry group that has published an open technical specification for embedding cryptographically signed provenance manifests...
- Device profile
- A vendor-maintained database entry describing how to communicate with a specific make, model, and firmware version of a mobile device. The profile...
- Distribution shift
- In machine learning, distribution shift occurs when the statistical characteristics of data the model encounters in deployment differ from those of the...
- Frye standard
- The US legal test for admissibility of scientific evidence, originating from Frye v. United States (1923), which required that a technique be...
- Known error rate
- One of the four Daubert factors. For a forensic tool, the error rate is determined by testing against reference datasets where the...
- Logical extraction
- NIST SP 800-101 R1 Level 2 acquisition. Uses the OS-exposed backup APIs (Android ADB backup, iOS iTunes/Finder backup, MTP for media) to...
- PCAP file
- A packet capture file storing raw network frames in the libpcap format. PCAP files are the standard exchange format between network forensic...
- Physical extraction
- An acquisition method that reads the raw storage medium, producing a bit-for-bit image from which allocated and deleted data can both be...
- SWGDE
- Scientific Working Group for Digital Evidence. A US multi-agency body that publishes consensus best-practice documents for digital forensic disciplines, including image authentication,...
- Validation test plan
- A structured document that defines the test devices, functions to be tested, expected outcomes, and pass/fail criteria before a new tool is...
Explained in these topics
- Mobile and Network Forensics ToolchainsThe National Institute of Standards and Technology Computer Forensics Tool Testing programme. It publishes independent test reports for digital forensic tools,...
- Standards and Validation Frameworks in Media ForensicsThe Computer Forensics Tool Testing programme run by the National Institute of Standards and Technology. CFTT publishes test methodologies and reference datase...
- Tool Validation and Scientific ReliabilityThe Computer Forensics Tool Testing programme operated by the US National Institute of Standards and Technology. It independently tests forensic tools against...