Advantages And Disadvantages Of Digital Forensics

Such as: operating systems, programming languages, media storage computers, networking, routing, communication protocols and security, cryptology, techniques inverted programming, investigative techniques, forensic computer devices, forms / formats files, and all digital devices forensic hardware and software. Then should get training or specialized training Digital Forensics from various institutions as evidenced by a certificate of expertise is not small, among others, Certified Information System Security Professional (CISSP) and Certified Forensics Analyst (CFA), Experienced Computer Forensic Examiner (ECFE), Certified Computer Examiner (CCE), Computer Hacking Forensic Investigator (CHFI) and Advanced Information Security (AIS). A Digital Forensic experts also determined the capacity of how many long he engaged in this, any cases that have been handled, and never asked his testimony as an expert witness in certain cases. Important for remember that a Digital Forensic expert is also bound by the rules or code of ethics such as honesty, truth, accuracy, precision action, not tampering with evidence and

Corrective controls such as practicing the incident response plan and alert process can help when attacks occur and help identify gaps in the plan so they can be fixed for when a real attack happens. j. Preventive controls such as testing the systems and securing access by requiring proper verification of the users attempting to obtain dial-in access. Remote authentication dial-in user service is one way of verifying users for this. k. Preventive controls such as securing wireless access by encrypting wireless traffic and authenticating all devices that try to access the network before allowing them use to the IP address.

Ballistics experts are also involved in crime scene mapping, which involves using computer design programs and laser measuring tools. Crime scene mapping is used to create diagrams for police reports and to present in court. It is common for them to lift fingerprints or to collect DNA samples from bullet’s round. After completing ballistics testing, ballistics experts must write detailed reports that can be used by in court. They may also be required to serve as expert

Data mining is the computational process of discovering patterns in large data sets involving methods at the intersection of artificial intelligence, machine learning, statistics, and database systems. The overall goal of the data mining process is to extract information from a data set and transform it into an understandable structure for further use. Aside from the raw analysis step, it involves database and data management aspects, data preprocessing, model and inference considerations, interestingness metrics, complexity considerations, post-processing of discovered structures, visualization, and online updating. B.2 Introduction The growing popularity and development of data mining technologies bring serious threat to the security of individual's

Evidence Preservation Forensic evidence is anything presented in court to support or refute a theory of statement. In a healthcare setting, common types of evidence include clothing, body fluids, bloodstains, and bullets. In the course of a physical exam, you're also likely to find other evidence such as hairs and fibers, for instance, as well as pieces of materials such as paint, glass, or wood. Gloves should be worn at all times when collecting or handling potential evidence to prevent contamination. If you're not sure if something could be used as evidence, gather and secure it anyway, and allow forensic experts to make that determination.

In the search of the car they also find a few of his tools, and Bobs fingerprints on the car. This is Forensic evidence, the staple of modern investigative process. Since it is running through a computer and matched up microscopically there are no mistakes to be made. This is a game changer, if you can prove something that helps your case is one hundred percent true, then the case is basically just won. That is why forensic evidence is the most used and most reliable evidence that all prosecutors and defense attorneys use.

Rank the technologies by the level of effectiveness and reliability. In order by effectiveness and reliability from lowest to highest is electrostatic detection apparatus: which is a specialized piece of equipment used in questioned document examination. Then Automated Finger Identification System (AFIS): is a biometric identification methodology that uses digital imaging technology to obtain, store, and analyze fingerprint data as stated in ("What is Automated Fingerprint Identification System (AFIS)? - Definition from WhatIs.com," n.d.) and then the Portable light source: is a light that reveals fingerprints, blood, gunshot residue and more. Miranda: At what point was the suspect read his Miranda rights?

The skills that investigators require can be categorized as follows: 6.1. Technology skills: The techniques used to solve a crime range from the very complex to very simple. Knowledge about computers and related technologies is an absolute must in today’s electronic era. For e.g. an examination of digital media can reveal internet activity, journals, videos or audio recordings.

But other aspects may be involved in the acquisition of evidence. some forensic investigators believe in gathering evidence before shutting down the suspect.s computer; this is a source of arguments within the forensics community whether to shutdown the computer immediately and preserve the exact state that it was found, or to gather evidence before shutting down in order to gain any volatile data that might be destroyed on shutdown. And the second step is the authentication of the evidence is the process of ensuring that the evidence has not been altered during the acquisition process. Investigators authenticate the hard drive evidence by generating a checksum of the contents of the hard drive. This checksum is like an electronic fingerprint in that it is almost impossible for two hard drives with different data.

Create rough sketch of crime scene to identify all the possible locations where evidence can be find IV. Photographic and video recording planning 1.2 Documenting the scene and evidence The state of crime scene must be properly documented in order to record the conditions of crime scene and physical evidence. There are 4 major tasks in documenting crime scene which involve note taking, photography, sketching and videography. This documentation will help the analyst to understand how the evidence relates to overall scene and solve the mystery (Girard 2013). Note taking : Note taking is the core of the crime scene.