Standards and Best Practices in Digital and Multimedia Forensics Shujun LI , Mandeep K. Dhami and Anthony T. S. Ho Department of Computing and Surrey Centre for Cyber Security (sccs)

Handbook of Digital Forensics of Multimedia Data and Devices NIJ Special Report ‘Electronic Crime Scene Investigation: A Guide for First

Download 0,63 Mb.

Pdf ko'rish

bet	27/54
Sana	30.05.2023
Hajmi	0,63 Mb.
	#945953

1 ... 23 24 25 26 27 28 29 30 ... 54

Bog'liq
9781118640500.excerpt

NIJ Special Report ‘Electronic Crime Scene Investigation: An On-the-Scene Reference for First Responders’ Second Edition (2009)

64
Handbook of Digital Forensics of Multimedia Data and Devices
NIJ Special Report ‘Electronic Crime Scene Investigation: A Guide for First
Responders’ Second Edition (2008)
This report serves as a guide for law enforcement agencies and first responders
in the tasks of recognition, collection and protection of digital evidence. In the
introduction it defines digital evidence, and outlines how an agency can prepare for
handling digital evidence investigations. It provides detailed information on different
types of electronic devices on which potential evidence can be found, including
computer networks and any investigative tools and equipment used in this process.
Moreover, it outlines the process of securing and evaluating a crime scene, and
instructs first responders on how to act when they arrive at the scene. There is also
consideration of documentation, especially documenting the scene, and a list of what
pieces of information to include. Evidence collection and transportation are also
discussed towards the end, with the last chapter providing examples on categories and
considerations given for specific crimes that can involve digital evidence.
NIJ Special Report ‘Electronic Crime Scene Investigation: An On-the-Scene
Reference for First Responders’ Second Edition (2009)
This booklet style report is extracted from the above reviewed special report.
FBI ‘Digital Evidence Field Guide’ Version 1.1 (2007)
The guide starts out by mentioning five important facts about digital evidence that
every law enforcement officer should be aware of including that most crimes involve
digital evidence so that most crime scenes are digital crime scenes. Moreover, it states
that digital evidence is usually volatile and can be easily modified if not handled with
care. It also states that most digital evidence can be recovered even from damaged
computers and other devices.
The guide focuses on explaining the role of a computer (or any other digital device
in general) in a crime:
• Computers as the target of a crime, that is, related to the notion of unauthorized
access to computer systems and hacking for specific aims like espionage, cyber
terrorism and identity theft among others.
• Computers as the instrument of a crime, that is, using the computer to commit a
specific crime, as above depending on the intention of the attacker including all of
the above cases and additional cases like credit card frauds and child solicitations.
• Computer as the repository of evidence, that is, evidence on a computer can be found
in various forms, like files, images, logs, etc. This is usually associated with crimes
like frauds, child pornography, drug trafficking and email accomplices in traditional
crimes.
Finally, the guide differentiates between the two types of digital evidence found on
computers: universal (e.g. emails, logs, images) and case specific (e.g. for cyber

“c02” — 2015/6/19 — 20:53 — page 65 — #28
Standards and Best Practices in Digital and Multimedia Forensics
65
terrorism it would include computer programs making the user anonymous, IP
addresses, source code, among others).

Download 0,63 Mb.

Do'stlaringiz bilan baham:

1 ... 23 24 25 26 27 28 29 30 ... 54