Computer Forensics

523 Words2 Pages
bulb-icon

Recommended: Importance of forensic evidence

Computer forensic science is the forensic discipline of acquiring, preserving, retrieving, and presenting electronic data. It is a process and this process consists of five stages. The first stage is intelligence. This begins with an analysis to gain the understanding of the issues surrounding the incident, crime or crime scene. The second stage is the hypothesis or theory formulation. The investigating officer will need to develop a hypothesis of the case. Stage three is evidence collection. Once the evidence is collected, it will be used to test the hypothesis. Stage four is testing. The e-evidence is examined to identify what could or could not have happened. Lastly, stage five is the conclusion. It is then determined whether or not the evidence …show more content…

They are seizing the computer. Of course, this requires a warrant. Stage two is backup. They are required to back up the device before continuing on with the investigation. Stage three is evidence extraction. The investigator enters the searches manually. The evidence is viewed through built-in content viewers within Expert Witness. Stage four is case creation. This allows the extracted information to be placed in a case file. Stage five is case analysis. Trained investigators use this process to search the computer evidence for documents, deleted files, images, e-mail, slack space and unallocated disk space. Stage six is correlation of computer events. This process is used to piece together different computer evidence to establish a timeline, order of events and related activities. Stage seven is correlation of non-computer events. This process uses telephone records, credit card receipts, testimonies, physical evidence, and reports to put other pieces together. Lastly, stage eight is case presentation. After all of the evidence and information has been analyzed and correlated, it is then ready to present to a judge or jury. (Volonino & Anzaldua,

Show More
Related

  • Briar Rose by Jane Yolen

    883 Words  | 2 Pages

    The next stage is testing. Becca’s test is her search for different data bases and resources. The prince is the one in the story who gets tested. He must kill the dragon to save the princess. The sixth stage is helpers once again.

    Read More

  • Arguments Against The Exclusionary Rule

    1212 Words  | 3 Pages

    Typically, the determination of whether evidence is admissible or whether it falls under the Poisonous Fruit of the Tree Doctrine, will occur before trial begins in a suppression hearing. During this hearing the trial court judge must decide whether an illegal search was committed and then decide if the evidence in question is a result of that search (Fruit of the Poisonous Tree - Further Readings,

    Read More

  • Overvie of CORE Methodology

    1574 Words  | 4 Pages

    Stage 2 involves dividing viewpoints documented in the first stage into clusters. This allows experts to organize functions/non-functions based on viewpoints. Which makes it easier to read of the page and neater. Furthermore, it helps the expert create a CORE viewpoint hierarchy. Example Below:

    Read More

  • Andrea Campbell Forensic Evidence

    293 Words  | 1 Pages

    In the passage “Forensic Science: Evidence, Clues, and Investigation” by Andrea Campbell, the author explains the various types of evidence that is in various court cases. In all, there have four different types of evidence presented at a trial. The author explains why forensic, or hard evidence is better than the other types.

    Read More

  • Analysis Of The Negotiation Process In 12 Angry Men

    1170 Words  | 3 Pages

    Key aspects of the preparation stage, as defined by Budjac Corvette and utilized by juror 8, include preparation occurring prior to the negotiation meeting, research, and determining negotiation tactic and style. Throughout the jury deliberation, juror 8 disclosed information

    Read More

  • Oj Simpson Trial Case Study

    1725 Words  | 4 Pages

    Next, comes prosecution of the defendant by the state attorney, then incitement, the filing of information by prosecution to decide whether to proceed to trial. Followed by arraignment, which is the plea of guilty or not guilty, pretrial detention, plea bargaining, trial, and sentencing (Process of Criminal Justice). For O. J. Simpson, this process started with the investigation of the murders of Nicole Brown Simpson and Ronald Goldman. The same day the bodies were discovered, Simpson flew back from Chicago to Los Angeles. Upon his arrival, authorities took him into custody and began their questioning.

    Read More

  • Herbert Packer's Two Models Of The Adjudication Process

    984 Words  | 2 Pages

    In the inquisitorial process, however, the focus is on the screen process and a thorough investigation that begins before a trial. The trial is then treated like part of the ongoing investigation, with the judge playing the role of main investigator. The state acts on behalf of the accuser, while the defendant is assumed to work cooperatively with the investigators. The prosecution and defense present their facts, but the ultimate decision of truth lies with the

    Read More

  • Computer Forensic Tools

    895 Words  | 2 Pages

    The use of computers in homes, schools, offices, and other places has increased in the past few years due to technological developments. As computers have become important components of modern communication, their increased use has also led to the emergence of computer crimes. Computer crimes basically involve the use of a computer system to carry out an illegal activity. In attempts to lessen the frequency and impact of computer crimes, law enforcement agencies use computer forensic to investigate these offenses. Actually, computer crimes are governed by specific laws and dealt with through conducting a computer forensic investigation (Easttom & Taylor, 2011, p.337). Notably, a computer forensic investigation is usually carried out through the use of computer forensic tools, which help in collection of evidence based on the specific offense.

    Read More

  • What is Digital Forensic?

    2655 Words  | 6 Pages

    ...captures important data on live computer evidence at any computer crime investigations, without the need of particular forensic expertise. The tool is activated after being installed on a USB flash drive then plugged into a USB port. The features the tool includes are password decryption, data extraction and Internet history recovery. The most outstanding feature that COFFEE offers is the recovery of data stored in volatile memory that could be lost if the computer was turned off.

    Read More

  • Preliminary Investigation For A Criminal Case

    985 Words  | 2 Pages

    Assemble a set of guidelines for conducting preliminary investigations in a criminal case. When there is a criminal case, there are a set of guidelines a criminal investigator should follow when conducting a preliminary inquiry. These guidelines consist of arriving at a crime scene in a timely manner, just in case the suspect may still be at or near the scene (Hess, K.M. & Orthmann, C.H., 2013). They will need to take care of any injured person or people that may need emergency care. Check to see if there are any witnesses who have seen what happened.

    Read More

  • What Is Digital Forensics And Digital Evidence?

    1557 Words  | 4 Pages

    What did they do ? Before we talk about it any further, we have to know some definitions that we use in digital forensics and digital evidence, not only two of them but the others too. This chapter will explain about it . Before we talk about it any further, we have to know the definition of what we are talking about. In the introduction we already know what digital forensic and digital evidence shortly are. In this chapter, we will more explore what they are, and some state that we found when we search about digital forensic and digital evidence. Computer forensics is a broad field and applied to the handling of crimes related to information technology. The goal of computer forensic is to securing and analyzing digital

    Read More

  • Mobilit Solvability Factors

    1622 Words  | 4 Pages

    Solvability factors are factors considered in determining whether or not a case should be assigned for a follow-up investigation. If the case scores a certain amount of points, it can be referred. The primary objective of the preliminary investigation is to determine who committed the crime and to apprehend the criminal. The evidence collected should support the occurrence of a crime, the identification of the defendant, and arrest and subsequent conviction. The initial steps in the preliminary investigation are to respond to the call, document that a crime has happened, determine when the crime occurred, and identify and assist the victim.

    Read More

  • Scientific Method Essay

    916 Words  | 2 Pages

    method it also helps support and back up there observations as to what they are saying happened. So

    Read More

  • Investigating a home burglary

    751 Words  | 2 Pages

    ...n of legally obtained evidence and statements. Each and every person involved in the process of the evidence collection and processing must be available for trial. If one of these parties is not available, it may cause some doubt in the juror’s mind, as to what was done with that piece of evidence. The case must be proven beyond a reasonable doubt. In conclusion if any piece of this investigation is not followed by using established guidelines, the outcome will not lead to the successful conviction.

    Read More

  • Questions and Answers Regarding Cyber Ethics

    1144 Words  | 3 Pages

    Its aim is to establish a conclusion based on evidence which is supported by one or more claims

    Read More

More about Computer Forensics

Open Document