We will discuss about Computer Forensics which is a part of forensics. Forensics is a vast ocean and computer forensics is an important part of it especially now-a-days. The knowledge of Computer forensics is used especially after a cyber attack takes place to determine the cause of attack which will eventually give a perfect lead to the origin of attack and the attacker will be tracked down.
The main goal of Computer forensics are as mentioned below:
- Identifying
- Preserving
- Recovering
- Analyzing
- Presenting
Each process in done in the pretext of evidence.
There are forensics teams in various fields ,especially in Law
enforcements that usually investigates the cyber crimes.
Digital evidence can be stated as down-breaking not only for cyber
crimes but also for case that comes to a dead end due a less physical evidence.
The cyber/computer forensics investigator are keen to identify the
digital evidence in crime scene or the area of cyber-attack. After identifying
the evidence the investigator takes extreme care that the evidence are not altered
in any way as altered evidence are not accepted by the court and the perpetrator
can easily get away with it.
For this the investigator maintains a "CHAIN OF CUSTODY"
as it is mentioned the forensics to protect the evidence from getting altered. Some
evidence are temporarily loss like deleted contents, which can be recovered
using some forensics procedures and analysed to get a better understand of it. After
the process of identifying, preserving ,recovering , analysing there comes the
last step that is presenting the evidence in the court in a convincing way.
To show
support for LogOut Gujarat’s 1st Cyber Awareness Conference Visit http://comexpocybersecurity.com/support to show your support for privacy and
security by changing your Facebook Profile picture. #logout #staysafe #stayprotected
Comments
Post a Comment