Proposal / Submission Type
Peer Reviewed Paper
Location
Richmond, Virginia
Start Date
26-5-2011 1:30 PM
Abstract
Creating, building, managing a cost effective digital forensics lab including a team of qualified examiners can be a challenge for colleges [1] with multiple campuses in multiple towns, counties and states. Leaving such examination responsibilities to each of the campuses results in not only disparity in the results but more than likely excessive duplication of efforts as well as the potential for compromise of evidence. Centralizing the forensic efforts results in a team that is not subject to the political pressures of a campus and virtually eliminates the possibility of examiner favoritism. Learn what it takes to create a cost effective centralized digital forensics lab. It sounds simple but is truly quite complex when you consider the chain-of-custody issue as well as the management support needed during initial implementation. There will be resistance at some of the campuses while others will welcome the removal of a burden. We will also examine why such a lab is necessary and what can be learned about compliance to existing policy as well as the possibility of identifying the need for additional policy/standards.
Keywords: digital forensics investigation malware criminal chain-of-custody centralized lab
Scholarly Commons Citation
Johnston, Robert E., "Digital Forensics Investigation in A Collegiate Environment" (2011). Annual ADFSL Conference on Digital Forensics, Security and Law. 6.
https://commons.erau.edu/adfsl/2011/thursday/6
Included in
Computer Engineering Commons, Computer Law Commons, Electrical and Computer Engineering Commons, Forensic Science and Technology Commons, Information Security Commons
Digital Forensics Investigation in A Collegiate Environment
Richmond, Virginia
Creating, building, managing a cost effective digital forensics lab including a team of qualified examiners can be a challenge for colleges [1] with multiple campuses in multiple towns, counties and states. Leaving such examination responsibilities to each of the campuses results in not only disparity in the results but more than likely excessive duplication of efforts as well as the potential for compromise of evidence. Centralizing the forensic efforts results in a team that is not subject to the political pressures of a campus and virtually eliminates the possibility of examiner favoritism. Learn what it takes to create a cost effective centralized digital forensics lab. It sounds simple but is truly quite complex when you consider the chain-of-custody issue as well as the management support needed during initial implementation. There will be resistance at some of the campuses while others will welcome the removal of a burden. We will also examine why such a lab is necessary and what can be learned about compliance to existing policy as well as the possibility of identifying the need for additional policy/standards.
Keywords: digital forensics investigation malware criminal chain-of-custody centralized lab
