Purchase Solution

Computer Forensics

Not what you're looking for?

Ask Custom Question

Q1) Digital evidence refers to digital data that is able to establish a crime has been committed, can provide a link between a crime and its victim, or can provide a link between a crime and the perpetrator.

Source:
Carrier & Spafford, 2003, "Getting physical with the digital investigation process"

Describe further based on the above definition:
- How does collecting digital evidence differ from normal evidence?
- What are the challenges?

Q2) Elaborate further (include a supporting example too) based on EACH of the following 4 principles of cyber forensics:

(i) The act of collecting digital evidence should not result in any alteration of the data in question, wherever this is possible
(ii) All handling of digital evidence from collection through to preservation and analysis must be fully documented
(iii) Access to original digital evidence should be restricted to those deemed "forensically competent"
(iv) Your actions taken should not affect the integrity of the evidence

Source:
http://www.forensicfocus.com/principles-of-computer-forensics

Purchase this Solution
Solution Summary

This solution discusses digital evidence within computer forensics.

Solution Preview

Q1: Difference between collecting digital evidence and physical evidence

Digital evidence must be carefully collected so as to protect the physical device as well as the data it contains. Such evidence is also prone to destruction by electromagnetic fields such as those generated by radio, transmitters, magnets, and other devices. When devices such as pager, mobile phones, smart phones or PDAs are collected as evidence, they must be prevented to sending and receiving data. Thus, while collecting digital evidence, responders should document any activity on the device, confirm the power state of the device, and check for other important parameters like whether sound is on, whether display is blank, whether lights are on and so on.

Collecting physical evidence deals more with the physical aspects of the evidence as there is no data inside that evidence which has to be further protected.

Challenges in collecting digital evidence
• There is an increased risk of process failures and data loss while collecting, storing or transporting the evidence
• There is possibility that ...

Purchase this Solution
Free BrainMass Quizzes
Academic Reading and Writing: Critical Thinking

Importance of Critical Thinking

Marketing Research and Forecasting

The following quiz will assess your ability to identify steps in the marketing research process. Understanding this information will provide fundamental knowledge related to marketing research.

Income Streams

In our ever changing world, developing secondary income streams is becoming more important. This quiz provides a brief overview of income sources.

Understanding the Accounting Equation

These 10 questions help a new student of accounting to understand the basic premise of accounting and how it is applied to the business world.

Basics of corporate finance

These questions will test you on your knowledge of finance.

View More Free Quizzes
Related BrainMass Solutions

  • Future Trends in Computer Forensics

    172372 Future Trends in Computer Forensics Discuss future trends in computer forensics and international cooperation. What are the future trends that are likely to dominate the Computer Forensics sector over the coming decade?

  • Differences between Computer Forensics and Normal Forensics

    172371 Differences Between Computer Forensics and Normal Forensics What is the essential difference between computer forensics and "normal" forensics? Explain in brief.

  • Computer Forensic Tools

    333231 Computer Forensics: Research five computer forensics tools. Using the Library and other internet resources, research five computer forensics tools. For each tool, list the vendor and its functions.

  • Digital Stratigraphy and Computer Forensics

    172378 Digital Stratigraphy and Computer Forensics What is digital stratigraphy? Give an example to illustrate how digital stratigraphy is important in the field of Computer Forensics.

  • Case: Krenar Lusha and Scott Tyree

    The Most Famous Computer Forensics Cases. Retrieved February 25, 2016, fromhttp://www.technews24h.com/2012/05/most-famous-computer-forensics-cases.html. The expert examines the case for Krenar Lusha and Scott Tyree.

  • Trusted Computing Group Specifications

    Hence in my opinion, this specification of the Trusted Computing Group is quite vital in terms of computer forensics with regards to computer design.

  • Several major functions performed by computer forensics software

    616987 Several major functions performed by computer forensics software Explain several major functions performed by computer forensics software such as FTK and Prodiscover. Please identify and explain at least 3 important differences.

  • Forensic tools for investigations

    What is 1 example of a way in which an investigation can be corrupted by not using computer forensics tools? Not using computer forensics could result in the defense alleging that evidence was planted by cops or the prosecution.

  • Digital Evidence as Alibi: Computer Forensics

    249499 Computer Forensics: Digital Evidence as Alibi Discuss the issues related to the use of "digital evidence as an alibi" in computer forensics investigations. There are a lot of issues which are related to using digital evidence as an alibi.

  • Disaster Recovery Solutions

    The services provided by MD5 include (Md5.co.uk, 2007): • Computer data recovery & computer file recovery • Computer forensics • Reverse engineering of computer viruses to demonstrate the potential usage of viruses • Data analysis One of the

View More Related Solutions