In this paper we investigate the applicability of different parts of the JPEG2000 codestream for authentication. Apart from the packet body different classes of information contained in the packet header are investigated. We report on experimental results obtained with a large test set of natural images to assess how discriminative and how sensitive each class of information is. Specific attacks against authentication schemes, that use selective hashing of either packet bodies (as proposed in literature) or packet headers, are presented.