Weaknesse in Computer Forensics

Play Audio
Click here to Listen to this Article


Play Audio
Use this article on your own website:
Syndication Guidelines
Contributed by Andrew Whitehead

Weaknesses in Computer Forensics

Within the field of computer forensic science, as in any relatively young discipline, there are weaknesses to be found. In computer forensics the main culprits are training, operational standards, and international standardization.

Computer Forensic Training

There are many private organizations offering computer forensic seminars and classes. With the growth of computer crime, computer forensic training is a worthwhile investment for any organization - but who should receive it? Computer forensic evidence is very volatile, to preserve it law enforcement personnel should be trained to handle it. Network operators should also be trained, to improve their abilities in intrusion detection, and lawyers should receive some training to give a basic understanding of computer evidence.

Operational Standards in Computer Forensics

Computer crime, perhaps more than any other, can be international in scope. There is a need for basic guidelines for the evidence collection process to be established worldwide. This ranges from broad principle that apply to nearly every investigation, through organizational practices so that a minimum standard of planning, performance, monitoring, recording, and reporting is maintained, to recommended procedures, software, and hardware solutions.

International Standardization of Computer Forensics

Different countries each have their own computer forensic methods, standards, and laws. What is acceptable evidence in one country may not be in another. This is a serious problem when dealing with international crimes, as computer crime often is. The Internet may have no boundaries, but law enforcement does. Investigations that leap from server to server, from country to country, crossing many borders on the way are complicated not only by evidence handling differences, but also by political differences and legal differences.

There are some countries in which the networks are owned and controlled by government agencies, who may have little or no reason to cooperate with foreign governments investigating a crime. What is considered to be hacking in the US is not considered to be a crime in other countries, protecting the individual that committed the crime. Fortunately efforts are being made to bring some standardization to procedures regarding digital evidence. The G8 group has recommended six principles for digital evidence gathering:-

1) All standard forensic and procedural principles must be applied.

2) Upon seizing digital evidence, actions taken should not alter the evidence.

3) People accessing the original digital evidence should be trained to do so.

4) All activities relating to the seizure, access, storage, or transfer of digital

evidence must be completely documented.

5) Individuals are responsible for all actions taken while the digital evidence is

in their possession.

6) Any agency that is responsible for seizing, accessing, storing, or transferring

digital evidence is responsible for complying with these principles.

This is a start in standardizing computer forensic evidence gathering procedures but there is still a long way to go. Many countries have not adopted these recommendations, and probably will not if they do not have the necessary training resources. The sting in the tail is that these are the countries that pose the greatest computer crime threat.

Andrew Whitehead is a contributor at Free-backup.info -- the home of the popular Amazon S3 based software for online data backup -- Back2zip. This article can be found at http://free-backup.info/weaknesse-in-computer-forensics.html



very      not
 
Did you find this article helpful? 18 other readers gave it an average usefulness of 56.4%.
Tell us what you think!!

Some Other Contributions by Andrew Whitehead

A Trip into the World of Computer Forensics (2005-08-08)  »

Computer forensics is the investigation and analysis of a suspects computer, to uncover evidence of a crime. For instance, theft of trade secrets, theft or destruction of intellectual property, or fraud.

Advantages and Problems with Online Backup Systems (2005-08-08)  »

Having an online backup system will save your day should your premises ever burn down, or the fireproof box containing your backup disks get stolen. The easiest means of backing up online is to set up a leased line to a remote server, and transfer da...

Alternate Site Disaster Recovery (2005-08-08)  »

In considering alternate site disaster recovery, the two main issues are the reconfiguring or rebuilding infrastructure, and moving data between the primary site and the alternate site.

Backup Software for Larger Systems (2005-08-08)  »

For a systems administrator, one of his most important roles is backing up, and being able to restore, the organizations data. When he chooses his backup software, to ensure that they meet his requirements he must evaluate the product's backup featur...

Backup Software Functions (2005-08-08)  »

It's probably true to say that most backup software applications available will do a reasonable job of making a backup. That does not mean that all backup software is created equal, and choosing the one that suits your requirements is worth spending ...

Backup to CD (2005-08-08)  »

If you have ever wondered about the importance of keeping a backup, imagine how you would feel if a virus destroyed the contents of your hard drive? Or a problem could only be solved by using a system recovery CD, wiping out all your data in the proc...

Basic Data Recovery (2005-08-07)  »

Have you ever wondered how much data is stored in your PC, and how much time and energy would go into its recovery? Your computer almost certainly contains a lot of personal data - financial data, names, addresses, and telephone numbers, bank account...

Brief Overview of Online Backup (2005-08-07)  »

Online backup is possibly the most convenient form of backing up files, leaving you with few excuses not to do it. Losing your files is something that is going to happen to you one day, not something that might happen, and if you do not backup your d...

Choosing Backup Media (2005-08-07)  »

Matching the capacity of the backup medium to the amount of data you intend to backup is very important, especially as hard disks capacities grow. The more disk or tape swaps required to perform a backup, the less likely it is that you will do it rou...

Computer Forensic: Siezing the Evidence (2005-08-07)  »

The computer forensic experts have to conform with many rules and regulations if the evidence they uncover is to be acceptable to the courts. The first step in obtaining computer forensic evidence is obtaining a search warrant to seize the suspect sy...

email this pageSend page to a Friend! »

bookmark this siteBookmark this Site! »  

all articles rssAll Articles RSS Feed! »  

all articles rssAll Podcast  »  

Most Popular Articles

popular articles audio podcast popular articles rss

Why Should a Small Business Spend Time and Money on Data Backups? (100%)»
Online Backup Websites (95%)»
Hidden in Plain Site - Internet Backup (94%)»
A Few Simple Steps to an Outlook Express Backup (91%)»
Solutions for Online Data Backup Woes (91%)»
How to Make a Backup of Your Registry Using Regedit (88%)»
Overview of Disaster Recovery (88%)»
Brief Overview of Online Backup (87%)»
How to Restore Your Outlook Express Backup (84%)»
Data Recovery and Importance of Disk Images (82%)»

New Articles & Contributions

recent articles audio podcast recent articles rss

X-Drive and Internet Backup (2006-01-01) »
Zen and the Art of Computer Backup (2005-09-05) »
Wonderful Ways to Have a Handy Backup of Your Files (2005-09-04) »
Why Do I Need to Backup My Files? (2005-09-03) »
Why Do I Need to Backup My Data? (2005-09-03) »
What to Look for When Choosing Backup Software (2005-09-02) »
What is an Online Backup? (2005-09-02) »
What Exactly are Online Backup Services? (2005-09-01) »
Weaknesse in Computer Forensics (2005-09-01) »
Using Windows Backup Software (2005-08-31) »

Similar Articles

Computer Forensics Training and Careers »
Computer Forensics Guidelines »
A Trip into the World of Computer Forensics »
Computer Forensic: Siezing the Evidence »
No Time for a Career in Computer Forensics? Try a Online University! »
Computer Forensics Inc »
Computer Forensic: Siezing the Evidence »
The Changing Face of Computer Forensics »
A Trip into the World of Computer Forensics »
No Time for a Career in Computer Forensics? Try a Online University! »

My Recent Projects

Notepad.com - My own personal stab at an education and resources cms site. »»
YourSphere.com - A cutting-edge safe social network for young people. »»
RJ-woodworking.com - A website for a friend of mine showcasing his Sacramento Carpentry service. »»