Computer Forensics Essay

863 Words2 Pages

The goal of a computer forensic investigator is to find information relevant to a case and to also determine what events lead to the creation of that information. A lot of this information is stored by the operating system. This information includes file time stamps, internet search history, user registry information, username and passwords, encrypted files, and many other types of information which may be admissible in court. Depending on how an operating system is design and implemented, it may hinder or support a digital forensic investigation.
In Huebner and Henskens article, The Role of Operating Systems in Computer Forensics, they introduce several papers which discuss several of the problems found in computer forensics that are associated with operating systems. This report will discuss some of the underlying problems in computer forensics in conjunction with the issues brought up by Huebner and Henskens. The problems addressed include operating systems instrumentation, software issues in digital forensics, computer forensics of virtual systems, disk encryption in forensic analysis, and computer forensics case management.
The problem with operating systems used instrumentally for digital forensics is that current digital forensic techniques do not fully utilize the existing forensic capabilities of an operating system. For example, live data acquisition requires the acquisition of volatile storage on RAM before the computer is shut down. There are currently no forensically sound methods of acquiring an image of a system’s memory without attaching specialized hardware (Kornblum & Libster). Inserting an external device may change the state of the system such as altering the SYSTEM hive of the registry on a Windows machine, w...

... middle of paper ...

...onitor a virtual machine allowing the user to extract information from it without affecting its functionality or state (Flores & Atkison). From a digital forensic point of view this is very useful because this will allow the investigator to perform a live analysis on the virtual machine without affecting the state of the machine. A problem with virtual machine introspection is that a raw representation of data is obtained when in introspection is performed on a virtual machine. The data is difficult to understand because the native operating system’s application programming interface is not available to interpret the data. The inability to obtain high level data from low level data is known as the semantic gap (Flores & Atkison). A solution to overcome the semantic gap is to create extensions from existing forensic framework and combine them with VMI methodologies.

Forensic Community Essay
560 Words | 2 Pages
It is the computer forensics job to look through all of the computer files, even the deleted ones, to see if there are any incriminating files that would prove them guilty. Even reporting them to the jury is one of the jobs that a computer forensic person might have. Not only does this community work closely with eh police force, they can also work within the FBI or a company that uses computers in their business like Apple. Th...
Read More
Physical And Environmental Security Impact On Forensics Investigations
1934 Words | 4 Pages
Forensics investigations that require the analyzation and processing of digital evidence can be influenced both positively and negatively by a number of outside sources. In this paper, we will explore how physical security plays a role in forensics investigations activities. We will start by examining how physical and environmental security might impact the forensics investigation process. Next, we will discuss the role that physical and logical security zones play in supporting effective forensics activities. We will illustrate how centralized and decentralized physical and environmental security affects the forensics professional’s approach toward the investigation. Lastly, we will evaluate some potential areas of risk related to the physical security of our case study organization, Widget Factory, identified in Attachment 1.
Read More
Trace Evidence
1592 Words | 4 Pages
The last type of evidence I will discuss are documents. Everyone has a different handwriting and different characteristics that make it unique. Computers are also unique in the way they type and print out things. Document examiners can look over these and establish the similarities in the handwriting and computer forensic specialists can extract logs and other data from most devices.
Read More
Forensic Evaluation Essay
820 Words | 2 Pages
A forensic evaluation is a comprehensive and elaborate process that incorporates collection, analysis, and integration of information form multiple sources. Child welfare related evaluations are one of the most complex types of forensic evaluations requiring expert opinion and recommendations on matters pertaining to child custody and visitation, parental fitness and termination of parental rights, and evaluation of adoptive and foster parents. The primary purpose of these evaluations is to inform the court and facilitate decision-making process in child welfare cases. During a child custody evaluation the main doctrine to uphold is the “best interest of the child.” The safety of the child is of paramount consideration. This along with well-being
Read More
Linux Forensics Tools
2638 Words | 6 Pages
Nowadays, most of the web, email, database and fileservers are Linux servers. Linux is a UNIX system which implies that it has solid compatibility, stability and security features. Linux is used for the mentioned environments because these services require high security. Further, an increase of attacks on these servers can be observed. Additionally, the methods to prevent intrusions on Linux machines are insufficient. Further, the analysis of incidents on Linux systems are not considered appropriately (Choi, Savoldi, Gubian, Lee, & Lee, 2008). It can also be observed that a lot of investigators do not have experience with Linux forensics (Altheide, 2004).
Read More
Using Forensic Science to Identify Criminals
1906 Words | 4 Pages
Rape, murder, theft, and other crimes almost always leave a devastating mark on the victim. More often than not, it would be impossible to identify the perpetrator a crime without forensic science and the technology it uses. Forensic science allows investigators to unmask the secrets of the crime scene. Evidence gathered at the crime scene helps to identify the guilty party, murder weapon, and even the identity of the victim (Harkawy, 1991: 276). The new technologies enables the forensic experts to have better and faster access to accumulated information, to be more accurate in the identification of victims or delinquents, and minimizes the possibility of wrongful accusations. New technology has improved the methods and techniques that forensic scientists and law enforcement investigators use, in order to provide a safer environment for other people. Information technology is one of the most important aspects in forensic science. It is very important for the forensic experts to receive the undisturbed evidence, such as fingerprints left at the crime scene, as quickly as possible, for more accurate readings. Thus using space technology, such as satellite communication, enables the forensic experts to "gather and digitize evidence at the crime scene, enter it into an on-site computer, and beam the data to a crime lab for swift analysis" (Paula, 1998: 12). Therefore, due to the use of this technology, forensic experts in laboratories can examine the evidence in short time, and the possibility of damage or unlawful manipulation of the evidence before the trial is minimal (Paula, 1998: 12). More often than not, "criminals" wear gloves at the time of the crime, thus to obtain a fingerprint...
Read More
Forensic Essay
553 Words | 2 Pages
Overall, though, I believe that Stein is the closest scholar here-mentioned to have accounted for the explanation behind these controversies. The main mistake made by many modern scholars lies in the planning and the research – too much effort is spent on seeking to explain this opposition between the Proculians and the Sabinians in terms of two internally coherent law schools which differ entirely and have held controversies stemming from a specific occurrence. I have personally, as a student of the Roman law, found it difficult in reading the sources and differing theories from scholars to do just this – because, as Scarano Ussani stated, nowhere, in the mass of research that has been done, have any definitive results been reached. As afore-mentioned, I ruled out the political explanation for the purpose of answering this question, and the social explanation does not add a great deal to the debate for me. The theories supporting the social standpoint as addressed in this essay are among the worst for choosing to ignore many of the hard facts in order to make their theory fit better. This leaves only the philosophical and methodological explanations. The philosophical explanation is a reasonably sound one, although as explored above, I do believe that its significance has been largely exaggerated. There is no doubt over the fact that philosophy has played an influential role - even if you only look at Gaius’ ius gentium which contains a certain level of Stoic influence, but as mentioned above there are major differences which have been overlooked slightly in those arguments. The methodological explanation is another seemingly logical one, and the most reliable of all theorems explored in this essay, in my opinion, as it i...
Read More
Forensic Psychology Essay
569 Words | 2 Pages
The 20th century was a pivotal time period for psychology. During this time period many sub-disciplines of psychology were created which in essence contributed to the growth and further development of psychology. One of those sub-disciplines of psychology that seems to constantly grow and has gained momentum over the years has been forensic psychology. Although Munsterberg was not the first to suggest that psychology should be applied to the law, instead it was Freud in 1906 during a speech to an Australian judge that there are factors within psychology that should be applied to the law. Although he was the man behind the discovery of forensic psychology and several other sub-disciplines of psychology.
Read More
Forensic Evidence Essay
1204 Words | 3 Pages
Forensic evidence can provide just outcomes in criminal matters. However, it is not yet an exact science as it can be flawed. It can be misrepresented through the reliability of the evidence, through nonstandard guidelines, and through public perception. Forensic science can be dangerously faulty without focus on the ‘science’ aspect. It can at times be just matching patterns based on an individual’s interpretations. This can lead to a miscarriage of justice and forever alter a person’s life due to a perceived “grey area” (Merritt C, 2010) resulting in a loss of confidence in the reliability of forensic evidence.
Read More
Computer Forensic Tools
895 Words | 2 Pages
The use of computers in homes, schools, offices, and other places has increased in the past few years due to technological developments. As computers have become important components of modern communication, their increased use has also led to the emergence of computer crimes. Computer crimes basically involve the use of a computer system to carry out an illegal activity. In attempts to lessen the frequency and impact of computer crimes, law enforcement agencies use computer forensic to investigate these offenses. Actually, computer crimes are governed by specific laws and dealt with through conducting a computer forensic investigation (Easttom & Taylor, 2011, p.337). Notably, a computer forensic investigation is usually carried out through the use of computer forensic tools, which help in collection of evidence based on the specific offense.
Read More
Forensic Science Essay
797 Words | 2 Pages
According to the American academy of forensic science, the forensic sciences form a vital part if the entire justice and regulatory system. Forensic science is an enticing career having to do with science and criminal justice, a large variety of schooling is needed to start this job Despite the fact that it can be a dangerous environment it can be an exciting profession to pursue. There are many different fields in forensic science that you can study or major in but they all have the same objectives.
Read More
Data Acquisition
1744 Words | 4 Pages
Live acquisition: The future of data acquisitions is shifting toward live acquisitions because of the use of disk encryption with newer operating systems (OSs). In addition to encryption concerns, collecting any data that’s active in a suspect’s computer RAM is becoming more important to digital investigations. The processes and data integrity requirements for static and live acquisitions are the same. The only shortcoming with live acquisitions is not being able to perform repeatable processes, which are critical for collecting digital evidence.
Read More
What Is Digital Forensics And Digital Evidence?
1557 Words | 4 Pages
What did they do ? Before we talk about it any further, we have to know some definitions that we use in digital forensics and digital evidence, not only two of them but the others too. This chapter will explain about it . Before we talk about it any further, we have to know the definition of what we are talking about. In the introduction we already know what digital forensic and digital evidence shortly are. In this chapter, we will more explore what they are, and some state that we found when we search about digital forensic and digital evidence. Computer forensics is a broad field and applied to the handling of crimes related to information technology. The goal of computer forensic is to securing and analyzing digital
Read More
Forensic Science History Essay
836 Words | 2 Pages
The topic I find such fascinating is Forensic Science and how forensic science has significantly changed over the years. “The area of forensic science has grown considerably over the last 150 years and more so since the mid 1980’s.” (Lyman, 2016) Forensic science has gone from taking basic information, and fingerprints to DNA and blood splatter. During a crime scene investigation evidence is collected, analyzed in a crime laboratory and then if needed are presented to the court. However, today the crime laboratory is becoming mobile and can go to the scene to analyze the evidence. Each crime scene and investigation is unique and distinctive, with the help of forensics it can help solve a case.
Read More
What is Digital Forensic?
2655 Words | 6 Pages
In our modern society, computers and other digital devices are becoming ubiquitous. In the late 1970’s the number of crimes that involved digital devices and computers has been increasing rapidly. As a result of that, computer experts specified the need for permanently improving digital forensic tools and practices.
Read More

Open Document

Wait a second!

Computer Forensics Essay

Forensic Community Essay

Physical And Environmental Security Impact On Forensics Investigations

Trace Evidence

Forensic Evaluation Essay

Linux Forensics Tools

Using Forensic Science to Identify Criminals

Forensic Essay

Forensic Psychology Essay

Forensic Evidence Essay

Computer Forensic Tools

Forensic Science Essay

Data Acquisition

What Is Digital Forensics And Digital Evidence?

Forensic Science History Essay

What is Digital Forensic?

More about Computer Forensics Essay