How FAT and NFTS differ

How FAT and NFTS differ

Serdar Yegulalp, Contributor

How do FAT file systems and NTFS file systems differ from one another, and what are the implications, if any, in regards to data recovery?

Requires Free Membership to View

Login

By submitting your registration information to SearchWindowsServer.com you agree to receive email communications from TechTarget and TechTarget partners. We encourage you to read our Privacy Policy which contains important disclosures about how we collect and use your registration and other information. If you reside outside of the United States, by submitting this registration information you consent to having your personal data transferred to and processed in the United States. Your use of SearchWindowsServer.com is governed by our Terms of Use. You may contact us at webmaster@TechTarget.com.

NTFS was designed to address many issues that surfaced with FAT; a number of which affect how evidence can be recovered from a hard disk drive in a forensic environment. For one, the MFT, or Master File Table (the NTFS version of FAT's File Allocation Table), typically exists in two copies on every NTFS volume, under the reserved filename $MftMirr. The duplicate MFT contains the first four records of the original MFT, in the event the original becomes damaged.

Another NTFS element that may have forensic implications is the presence of alternate data streams (ADS). ADS allows a file to be associated with more than one data batches on the disk (though the data in a file's ADS will be lost if it's moved to a non-NTFS volume). ADSes cannot be detected by a simple DIR command; they have to be revealed using specialized software.

To learn more about the potentially forensic implications, check out Microsoft's description of how NTFS works.

Dig Deeper

People who read this also read...

Related glossary terms

Terms for Whatis.com - the technology online dictionary

Show me more

This was first published in May 2007

Join the conversationComment

Share

Comments

Results

Contribute to the conversation

All fields are required. Comments will appear at the bottom of the article.

Back to top

More from Related TechTarget Sites

Server Virtualization
Cloud computing
Exchange
SQL Server
Windows IT
Enterprise Desktop
Virtual Desktop

Server Virtualization
- Ten easy ways to extend virtual host resources on the cheap
  
  Virtual host resources are the lifeblood a virtualization project. Finding ways to extend them will promote growth, even during lean budgetary times.
- Taking the pain out of the Internet Explorer requirement for RHEV 3.0
  
  Despite the hoopla over ditching Windows Server, RHEV 3.0 still requires Internet Explorer. But configuring IE doesn’t need to be a hassle.
- VMware pros glean vSphere roadmap from CTO in VMUG videos
  
  VMware customers hope that vSphere virtualization products will soon have more automation and integration.
Cloud computing
- Download the Private Cloud E-Zine
  
  Get exclusive access to this expert bi-monthly e-zine with essential resources for building your private cloud infrastructure.
- What makes a good cloud provider?
  
  Fair costs and SLAs were once enough to discern top cloud providers. In today’s packed cloud market, vendors must bring more to the table.
- Azure’s identity crisis and other cloud computing sound bites
  
  Microsoft Azure wants to be called Loretta. No, that’s not true. Or is it? Find out that answer and other news overheard in the cloud this past week.
Exchange
- Download the Exchange Insider E-Zine
  
  Get exclusive access to the Exchange Insider E-Zine, compiled by the independent experts and analysts at SearchExchange.com
- How to fix Exchange 2010 virtual directory re-creation problems
  
  Re-creating virtual directories in Exchange 2010 is a straightforward process, but that doesn't mean problems won't occur. First, check these trouble spots.
- How Microsoft’s new certification program affects Exchange admins
  
  Microsoft recently updated its certification program, but what does that mean for Exchange admins? Long-time expert and MVP Tony Redmond chimes in.
SQL Server
- Three new T-SQL commands in SQL Server 2012 to make your life easier
  
  Each release of SQL Server brings changes to Transact SQL. In this tip, expert Serdar Yegulalp gives a walkthrough of tweaks like WITH RESULT SETS for renaming columns and THROW for catching errors.
- Configuring SSRS the easy way
  
  Demystify the SQL Server Reporting Services (SSRS) configuration process. Get an overview of this tool and guidelines for how to set up each screen in SSRS from industry professional Roman Rehak.
- SQL Server Upgrade Advisor, Upgrade Assistant can ease transition pains
  
  You probably think you’re ready to upgrade to the new release, but you might not be as prepared as you think. Before you upgrade, there are some tools to become familiar with, says Bob Sheldon.
Windows IT
- Understanding management gets your IT department what it needs
  
  Crafting the perfect pitch can be difficult in a budget-conscious workplace. Knowing how management will react to proposals can help.
- What's in a name? Azure branding confusion and the meaning of 'badware'
  
  Find out why Microsoft had some questioning its mental health and what mosquitos have to do with the ongoing malware fight.
- Active Directory domain joins and Microsoft certifications: less important than you think
  
  In this new feature, we examine Windows quotes and tell the stories behind the sound bites. First up: Why you need to rethink Active Directory domain joins.
Enterprise Desktop
- Group Policy settings FAQ: Why they matter
  
  Group Policy settings in Microsoft's Active Directory are useful not only for managing user access and applications, but IT admins can also apply them to desktop and server security.
- What place do biometric passwords have in enterprise security?
  
  Traditional passwords and smart cards alone may not be enough to protect data anymore, so biometric passwords could be the next big thing in enterprise security.
- Tuning and tweaking device drivers on the Windows 8 Consumer Preview
  
  The Windows 8 Consumer Preview recognizes most hardware, but you should keep up on OS and chipset developments and review Windows device drivers. Here's where to start.
Virtual Desktop
- Deconstructing the post-PC era: Cloud-based services won't kill Windows
  
  The so-called post-PC era we've entered doesn't necessarily negate the need for Windows. Cloud-based services are all the rage, but we'll still need desktop management.
- Uncovering hidden VDI cost savings: How to boost your VDI ROI
  
  Dig around and you might just find some VDI cost savings you wouldn't expect. Remote access, server discounts and storage consolidation can help you increase VDI ROI.
- Citrix Project Avalon offers BYOD shops Windows as a Service
  
  Project Avalon isn't available yet, but already IT pros are speculating about whether it has the potential to transform enterprise environments to the cloud.

All Rights Reserved, Copyright - 2012, TechTarget