SlideShare une entreprise Scribd logo

Digital Forensic

Télécharger en tant que PPT, PDF
Cleverence Kombe
Cleverence Kombe

Forensic science is a scientific method of gathering and examining information about the past which is then used in the court of law. Digital Forensics is the use of scientifically derived and proven methods toward the preservation, collection, validation, identification, analysis, interpretation, documentation, and presentation of digital evidence derived from digital devices for the purpose of facilitation or furthering the reconstruction of events found to be criminal, or helping to anticipate unauthorized actions shown to be disruptive to planned operations.

Formation
1  sur  31
1 Digital Forensics Prepared by Cleverence Kombe
Outline Forensic and Digital Forensic Definitions Digital Evidence Digital Forensic Model Digital Forensic Process Need and Benefits of Digital Forensic Applications of Digital Forensic Skills required and Challenges faced by Digital Forensic Digital Forensic Software Tools Conclusion 2
What is forensic?  Collection and analysis of evidence Using scientific test or techniques To establish facts against crime For presenting in a legal proceeding  Therefore forensic science is a scientific method of gathering and examining information about the past which is then used in court of law 3
What is digital forensic? • Digital Forensics is the use of scientifically derived and proven methods toward: the preservation, collection, validation, identification, analysis, interpretation, documentation, and presentation of digital evidence derived from digital devices for the purpose of facilitation or furthering the reconstruction of events found to be criminal, or helping to anticipate unauthorized actions shown to be disruptive to planned operations. 4
Branches of Digital Forensics • The technical aspect of an investigation is divided into several sub-branches, relating to the type of digital devices involved: Computer forensics, Firewall Forensics, Database Forensics, Network forensics, Forensic data analysis and Mobile device forensics. • The typical forensic process encompasses the seizure, forensic imaging and analysis of digital media and the production of a report into collected evidence. 5
Examples of Digital Forensic Devices 6
Digital Evidence • Evidence A piece of information that supports a conclusion • Digital evidence Any data that is recorded or preserved on any medium in or by a computer system or other similar digital device, that can be read or understood by a person or a computer system or other similar device.  It includes a display, printout or other output of that data. 7
Characteristics of Digital Evidence • An evidence must be:  Admissible  Conformity with the common law and legislative rules  Authentic  In linking data to specific individuals and events  Fragile  Easily altered, damaged, or destroyed  Accurate  Believed and is consistent  Complete  With a full story of particular circumstances.  Convincing to juries  To have probative value, subjective and practical test of presentation – To proving beyond doubt 8
Examples of Digital Evidence 9  e-mails,  digital photographs,  ATM transaction logs,  word processing documents,  Instant message histories,  files saved from accounting program,  spreadsheets,  internet browser histories,  databases,  the contents of computer memory,  computer backups, computer printouts,  Global Positioning System tracks,  logs from a hotel’s electronic door locks, and  digital video or audio files
Types of Digital Evidence • Persistant data  Meaning data that remains intact when the digital device is turned off. E.g. hard drives, disk drives and removable storage devices (such as USB drives or flash drives). • Volatile data  Which is data that would be lost if the digital device is turned off. E.g. deleted files, computer history, the computers registry, temporary files and web browsing history. 10
Location for Evidence  Internet History Files  Temporary Internet Files  Slack/Unallocated Space  Buddy lists, personal chat room records, P2P, others saved areas  News groups/club lists/posting  Settings, folder structure, file names  File Storage Dates  Software/Hardware added  File Sharing ability 11
Digital Forensic Model • Because digital forensics is a new discipline:  there is little standardization and consistency  across the courts and industry 12
Different Digital Forensic Models Published No. Digital Forensic Model or framework No of phases 1 Computer forensic process (M.Politt, 1995) 4 processes 2 Generic Investgative Process (Palmer, 2001) 7 Clases 3 Abstract model of Digital forensic procedure (Reith, Carr, & Gumsch, 2002) 9 Proceses 4 An integrated digital investigation proceses (Carrier & Spafford, 2003) 17 Process 5 End to End Digital Investigation (Stephenson, 2003) 9 Steps 6 Enhenced Integrated Disgital Investigation Process (Baryamureeba & Tushabe, 2004) 21 Phases 13
Different Digital Forensic Models Published…7 Entended Model of CiberCrime investigation Ciardhuain, (2004) 13 Activities 8 Hierachical, Objective – bases Framework (Beebe & Clark, 2004) 6 Phases 9 Event based Digital Forensic Investigation framework (Carier and Spafford, 2004) 16 Phases 10 Forensic Process (Kent K, Chevalier, Grance & Dang, 2006) 4 Proceses 11 Investigation framework (Kohn, Eloff, & Oriva 2006) 3 Stages 12 Computer forensic field Triage Process Model (K.Rogers, Goldman, Mislan, Wdge, & Debrota, 2006) 4 phases 13 Investigative Process Model ( Freiling & Schawittay, 2007) 4 phases 14
Digital Forensic Basic Model 15
Digital Forensic Process • Broad process steps: Identification Preservation Analysis Documentation Presentation 16
Identification • The first step in the forensic process:  What evidence is present  Where it is stored and  How it is stored • Electronic stores can be:  Person computers  Mobile phones  PDAs  Smart cards • Key parameters in identification:  Type of information  format 17
Preservation Isolate, secure and preserve the state of physical and digital evidence. This includes preventing people from using the digital device or allowing other electromagnetic devices to be used within an affected radius. 18
Analysis Determine significance, reconstruct fragments of data and draw conclusions based on evidence found. It may take several iterations of examination and analysis to support a crime theory. 19
Documentation A record of all visible data must be created, which helps in recreating the scene and reviewing it any time Involves proper documentation of the crime scene along with photographing, sketching and crime-scene mapping. 20
Presentation • Summarize and provide explanation of conclusions.  This should be written in a layperson’s terms using abstracted terminologies.  All abstracted terminologies should reference the specific details. 21
Need for Digital Forensics To ensure the integrity of digital system. To focus on the response to hi-tech offenses, started to intervene the system. Digital forensics has been efficiently used to track down the terrorists from the various parts of the world. To produce evidence in the court that can lead to the punishment of the criminal. 22
The Benefits of Digital Forensics Digital Forensics help to protect from and solve cases involving: •Theft of intellectual property This pertains to any act that allows access to patents, trade secrets, customer data, and any confidential information. •Financial Fraud This pertains to anything that uses fraudulent solicitation of victims information to conduct fraudulent transactions. 23
The benefits of digital forensics ... • Hacker system penetration Taking advantage of vulnerabilities of systems or software using tools such as rootkits and sniffers. • Distribution and execution of viruses and worms These are the most common forms of cyber crime and often cost the most damage. 24
Applications of Digital Forensics • Financial Fraud Detection • Criminal Prosecution  Child pornography (Michael Jackson case) • Civil Litigation (evidence in court cases and proceedings)  Perjury (false swearing) (Clinton - Lewinsky case) • Corporate Security Policy and Acceptable Use Violations  Embezzlement (Misuse, fraud, cheating etc.)  Email threats data theft-industrial espionage (spying, intelligence units) 25
Challenges faced by Digital Forensics • The increase of PC’s and internet access has made the exchange of information quick and inexpensive. Easy availability of Hacking Tools. Lack of physical evidence makes crimes harder to prosecute. • The large amount of storage space available to suspects The rapid technological changes requires constant upgrade or changes to solutions 26
Skills required for Digital Forensics Application of Programming or computer-related experience Broad understanding of operating systems and applications Strong analytical skills Strong computer science fundamentals Strong system administrative skills Knowledge of the latest intruder tools Knowledge of cryptography and steganography Strong understanding of the rules of evidence and evidence handling Ability to be an expert witness in a court of law 27
Digital Forensic Software Tools • BACKTRACK 5R3 (Linux operating system)-This OS has many forensic tools to analyze any compromised system or find security holes In that a large amount of open source bundled packages are installed in this OS. • Kali Linux is a Debian-derived Linux distribution designed for digital forensics and penetration testing It was developed through the rewrite of Backtrack 5, their previous forensics Linux distribution. 28
Conclusion  Digital forensics is important for solving crimes  with digital devices  against digitial devices  against people where evidence may reside in a device  Several sound tools and techniques exist to search and analyse digital data  Regardless of existing tools, evolving digital age and development of technology requires heavier research in digital forensics
References  www.accessdata.com.(2006).  http//www.logicubeforensics.com/.(2008).  http://www.dibsusa.com/.  http://www.computerforensicshq.com. (n.d.). Panagiotis, K. (2006).  Digital Crime and Forensic Science in Cyberspace. USA: Idea Group Publishing. Wiles Jack, C. K. (2007).  The Best Damn Cybercrime and Forensics Book Period. USA: Syngress Publishing.  www.zawya.com. (n.d.). 30
END OF THE PRESENTATION 31 Thank You

Recommandé

Digital forensics
Digital forensicsDigital forensics
Digital forensicsRoberto Ellis
 
Digital forensics
Digital forensics Digital forensics
Digital forensics vishnuv43
 
Computer forensics ppt
Computer forensics pptComputer forensics ppt
Computer forensics pptNikhil Mashruwala
 
Digital Evidence by Raghu Khimani
Digital Evidence by Raghu KhimaniDigital Evidence by Raghu Khimani
Digital Evidence by Raghu KhimaniDr Raghu Khimani
 
Cyber Forensics Overview
Cyber Forensics OverviewCyber Forensics Overview
Cyber Forensics OverviewYansi Keim
 
Digital forensics
Digital forensicsDigital forensics
Digital forensicsVidoushi B-Somrah
 
Network forensic
Network forensicNetwork forensic
Network forensicManjushree Mashal
 
Analysis of digital evidence
Analysis of digital evidenceAnalysis of digital evidence
Analysis of digital evidencerakesh mishra
 

Recommandé

Digital forensics
Digital forensicsDigital forensics
Digital forensicsRoberto Ellis
 
Digital forensics
Digital forensics Digital forensics
Digital forensics vishnuv43
 
Computer forensics ppt
Computer forensics pptComputer forensics ppt
Computer forensics pptNikhil Mashruwala
 
Digital Evidence by Raghu Khimani
Digital Evidence by Raghu KhimaniDigital Evidence by Raghu Khimani
Digital Evidence by Raghu KhimaniDr Raghu Khimani
 
Cyber Forensics Overview
Cyber Forensics OverviewCyber Forensics Overview
Cyber Forensics OverviewYansi Keim
 
Digital forensics
Digital forensicsDigital forensics
Digital forensicsVidoushi B-Somrah
 
Network forensic
Network forensicNetwork forensic
Network forensicManjushree Mashal
 
Analysis of digital evidence
Analysis of digital evidenceAnalysis of digital evidence
Analysis of digital evidencerakesh mishra
 
Mobile Forensics
Mobile ForensicsMobile Forensics
Mobile Forensicsprimeteacher32
 
Difference between Cyber and digital Forensic.pptx
Difference between Cyber and digital Forensic.pptxDifference between Cyber and digital Forensic.pptx
Difference between Cyber and digital Forensic.pptxApplied Forensic Research Sciences
 
Digital Forensic ppt
Digital Forensic pptDigital Forensic ppt
Digital Forensic pptSuchita Rawat
 
Introduction to computer forensic
Introduction to computer forensicIntroduction to computer forensic
Introduction to computer forensicOnline
 
Digital Forensics
Digital ForensicsDigital Forensics
Digital ForensicsMithileysh Sathiyanarayanan
 
Incident response process
Incident response processIncident response process
Incident response processBhupeshkumar Nanhe
 
Digital forensics
Digital forensicsDigital forensics
Digital forensicsyash sawarkar
 
Computer forensic ppt
Computer forensic pptComputer forensic ppt
Computer forensic pptPriya Manik
 
Digital Evidence in Computer Forensic Investigations
Digital Evidence in Computer Forensic InvestigationsDigital Evidence in Computer Forensic Investigations
Digital Evidence in Computer Forensic InvestigationsFilip Maertens
 
A brief Intro to Digital Forensics
A brief Intro to Digital ForensicsA brief Intro to Digital Forensics
A brief Intro to Digital ForensicsManik Bhola
 
Computer forensics powerpoint presentation
Computer forensics powerpoint presentationComputer forensics powerpoint presentation
Computer forensics powerpoint presentationSomya Johri
 
Autopsy Digital forensics tool
Autopsy Digital forensics toolAutopsy Digital forensics tool
Autopsy Digital forensics toolSreekanth Narendran
 
Collecting and preserving digital evidence
Collecting and preserving digital evidenceCollecting and preserving digital evidence
Collecting and preserving digital evidenceOnline
 
Intro to cyber forensics
Intro to cyber forensicsIntro to cyber forensics
Intro to cyber forensicsChaitanya Dhareshwar
 
Digital investigation
Digital investigationDigital investigation
Digital investigationunnilala11
 
Preserving and recovering digital evidence
Preserving and recovering digital evidencePreserving and recovering digital evidence
Preserving and recovering digital evidenceOnline
 
CS6004 Cyber Forensics
CS6004 Cyber ForensicsCS6004 Cyber Forensics
CS6004 Cyber ForensicsKathirvel Ayyaswamy
 
Forensic imaging
Forensic imagingForensic imaging
Forensic imagingDINESH KAMBLE
 
Mobile forensics
Mobile forensicsMobile forensics
Mobile forensicsnoorashams
 
Data Acquisition
Data AcquisitionData Acquisition
Data Acquisitionprimeteacher32
 
Digital Forensics
Digital ForensicsDigital Forensics
Digital ForensicsOldsun
 
Map reduce - simplified data processing on large clusters
Map reduce - simplified data processing on large clustersMap reduce - simplified data processing on large clusters
Map reduce - simplified data processing on large clustersCleverence Kombe
 

Contenu connexe

Tendances

Digital Forensic ppt
Digital Forensic pptDigital Forensic ppt
Digital Forensic pptSuchita Rawat
 
Introduction to computer forensic
Introduction to computer forensicIntroduction to computer forensic
Introduction to computer forensicOnline
 
Computer forensic ppt
Computer forensic pptComputer forensic ppt
Computer forensic pptPriya Manik
 
Digital Evidence in Computer Forensic Investigations
Digital Evidence in Computer Forensic InvestigationsDigital Evidence in Computer Forensic Investigations
Digital Evidence in Computer Forensic InvestigationsFilip Maertens
 
A brief Intro to Digital Forensics
A brief Intro to Digital ForensicsA brief Intro to Digital Forensics
A brief Intro to Digital ForensicsManik Bhola
 
Computer forensics powerpoint presentation
Computer forensics powerpoint presentationComputer forensics powerpoint presentation
Computer forensics powerpoint presentationSomya Johri
 
Collecting and preserving digital evidence
Collecting and preserving digital evidenceCollecting and preserving digital evidence
Collecting and preserving digital evidenceOnline
 
Digital investigation
Digital investigationDigital investigation
Digital investigationunnilala11
 
Preserving and recovering digital evidence
Preserving and recovering digital evidencePreserving and recovering digital evidence
Preserving and recovering digital evidenceOnline
 
Mobile forensics
Mobile forensicsMobile forensics
Mobile forensicsnoorashams
 

Tendances (20)

Mobile Forensics
Mobile ForensicsMobile Forensics
Mobile Forensics
 
Difference between Cyber and digital Forensic.pptx
Difference between Cyber and digital Forensic.pptxDifference between Cyber and digital Forensic.pptx
Difference between Cyber and digital Forensic.pptx
 
Digital Forensic ppt
Digital Forensic pptDigital Forensic ppt
Digital Forensic ppt
 
Introduction to computer forensic
Introduction to computer forensicIntroduction to computer forensic
Introduction to computer forensic
 
Digital Forensics
Digital ForensicsDigital Forensics
Digital Forensics
 
Incident response process
Incident response processIncident response process
Incident response process
 
Digital forensics
Digital forensicsDigital forensics
Digital forensics
 
Computer forensic ppt
Computer forensic pptComputer forensic ppt
Computer forensic ppt
 
Digital Evidence in Computer Forensic Investigations
Digital Evidence in Computer Forensic InvestigationsDigital Evidence in Computer Forensic Investigations
Digital Evidence in Computer Forensic Investigations
 
A brief Intro to Digital Forensics
A brief Intro to Digital ForensicsA brief Intro to Digital Forensics
A brief Intro to Digital Forensics
 
Computer forensics powerpoint presentation
Computer forensics powerpoint presentationComputer forensics powerpoint presentation
Computer forensics powerpoint presentation
 
Autopsy Digital forensics tool
Autopsy Digital forensics toolAutopsy Digital forensics tool
Autopsy Digital forensics tool
 
Collecting and preserving digital evidence
Collecting and preserving digital evidenceCollecting and preserving digital evidence
Collecting and preserving digital evidence
 
Intro to cyber forensics
Intro to cyber forensicsIntro to cyber forensics
Intro to cyber forensics
 
Digital investigation
Digital investigationDigital investigation
Digital investigation
 
Preserving and recovering digital evidence
Preserving and recovering digital evidencePreserving and recovering digital evidence
Preserving and recovering digital evidence
 
CS6004 Cyber Forensics
CS6004 Cyber ForensicsCS6004 Cyber Forensics
CS6004 Cyber Forensics
 
Forensic imaging
Forensic imagingForensic imaging
Forensic imaging
 
Mobile forensics
Mobile forensicsMobile forensics
Mobile forensics
 
Data Acquisition
Data AcquisitionData Acquisition
Data Acquisition
 

En vedette

Digital Forensics
Digital ForensicsDigital Forensics
Digital ForensicsOldsun
 
Map reduce - simplified data processing on large clusters
Map reduce - simplified data processing on large clustersMap reduce - simplified data processing on large clusters
Map reduce - simplified data processing on large clustersCleverence Kombe
 
Towards granular data placement strategies for cloud platforms
Towards granular data placement strategies for cloud platformsTowards granular data placement strategies for cloud platforms
Towards granular data placement strategies for cloud platformsCleverence Kombe
 
Digital Crime & Forensics - Presentation
Digital Crime & Forensics - PresentationDigital Crime & Forensics - Presentation
Digital Crime & Forensics - Presentationprashant3535
 
Digital Forensic: Brief Intro & Research Challenge
Digital Forensic: Brief Intro & Research ChallengeDigital Forensic: Brief Intro & Research Challenge
Digital Forensic: Brief Intro & Research ChallengeAung Thu Rha Hein
 
Intrusion Detection Systems and Intrusion Prevention Systems
Intrusion Detection Systems and Intrusion Prevention Systems Intrusion Detection Systems and Intrusion Prevention Systems
Intrusion Detection Systems and Intrusion Prevention Systems Cleverence Kombe
 
Agata overview
Agata overviewAgata overview
Agata overviewUdi Levin
 
Jacovia cartwright | Information Technology consulting services
Jacovia cartwright | Information Technology consulting servicesJacovia cartwright | Information Technology consulting services
Jacovia cartwright | Information Technology consulting servicesJacovia Cartwright
 
Intelligent water drops (Persian)
Intelligent water drops (Persian)Intelligent water drops (Persian)
Intelligent water drops (Persian)mortezaT
 
Digital Forensic tools - Application Specific
Digital Forensic tools - Application SpecificDigital Forensic tools - Application Specific
Digital Forensic tools - Application Specificideaflashed
 
Custody Chain CASI vision to Combat Food Fraud
Custody Chain CASI vision to Combat Food FraudCustody Chain CASI vision to Combat Food Fraud
Custody Chain CASI vision to Combat Food FraudPrimority Ltd
 
Kush wadhwa _mining_digital_evidence_in_windows - ClubHack2009
Kush wadhwa _mining_digital_evidence_in_windows - ClubHack2009Kush wadhwa _mining_digital_evidence_in_windows - ClubHack2009
Kush wadhwa _mining_digital_evidence_in_windows - ClubHack2009ClubHack
 
Nature-Inspired Optimization Algorithms
Nature-Inspired Optimization Algorithms Nature-Inspired Optimization Algorithms
Nature-Inspired Optimization Algorithms Xin-She Yang
 

En vedette (17)

Digital Forensics
Digital ForensicsDigital Forensics
Digital Forensics
 
Map reduce - simplified data processing on large clusters
Map reduce - simplified data processing on large clustersMap reduce - simplified data processing on large clusters
Map reduce - simplified data processing on large clusters
 
Towards granular data placement strategies for cloud platforms
Towards granular data placement strategies for cloud platformsTowards granular data placement strategies for cloud platforms
Towards granular data placement strategies for cloud platforms
 
Digital Crime & Forensics - Presentation
Digital Crime & Forensics - PresentationDigital Crime & Forensics - Presentation
Digital Crime & Forensics - Presentation
 
Digital Forensic: Brief Intro & Research Challenge
Digital Forensic: Brief Intro & Research ChallengeDigital Forensic: Brief Intro & Research Challenge
Digital Forensic: Brief Intro & Research Challenge
 
Intrusion Detection Systems and Intrusion Prevention Systems
Intrusion Detection Systems and Intrusion Prevention Systems Intrusion Detection Systems and Intrusion Prevention Systems
Intrusion Detection Systems and Intrusion Prevention Systems
 
Agata overview
Agata overviewAgata overview
Agata overview
 
Jacovia cartwright | Information Technology consulting services
Jacovia cartwright | Information Technology consulting servicesJacovia cartwright | Information Technology consulting services
Jacovia cartwright | Information Technology consulting services
 
Intelligent water drops (Persian)
Intelligent water drops (Persian)Intelligent water drops (Persian)
Intelligent water drops (Persian)
 
Digital Forensic tools - Application Specific
Digital Forensic tools - Application SpecificDigital Forensic tools - Application Specific
Digital Forensic tools - Application Specific
 
File000149
File000149File000149
File000149
 
아모레퍼시픽 -090430- 알고리즘 기업분석 보고서
아모레퍼시픽 -090430- 알고리즘 기업분석 보고서아모레퍼시픽 -090430- 알고리즘 기업분석 보고서
아모레퍼시픽 -090430- 알고리즘 기업분석 보고서
 
Codebits 2010
Codebits 2010Codebits 2010
Codebits 2010
 
Custody Chain CASI vision to Combat Food Fraud
Custody Chain CASI vision to Combat Food FraudCustody Chain CASI vision to Combat Food Fraud
Custody Chain CASI vision to Combat Food Fraud
 
Kush wadhwa _mining_digital_evidence_in_windows - ClubHack2009
Kush wadhwa _mining_digital_evidence_in_windows - ClubHack2009Kush wadhwa _mining_digital_evidence_in_windows - ClubHack2009
Kush wadhwa _mining_digital_evidence_in_windows - ClubHack2009
 
Nature-Inspired Optimization Algorithms
Nature-Inspired Optimization Algorithms Nature-Inspired Optimization Algorithms
Nature-Inspired Optimization Algorithms
 
Digital evidence
Digital evidenceDigital evidence
Digital evidence
 

Similaire à Digital Forensic

Fundamental digital forensik
Fundamental digital forensikFundamental digital forensik
Fundamental digital forensiknewbie2019
 
Digital forensics Steps
Digital forensics StepsDigital forensics Steps
Digital forensics Stepsgamemaker762
 
What is Digital Forensics.docx
What is Digital Forensics.docxWhat is Digital Forensics.docx
What is Digital Forensics.docxAliAshraf68199
 
Digital forensic science and its scope manesh t
Digital forensic science and its scope manesh tDigital forensic science and its scope manesh t
Digital forensic science and its scope manesh tManesh T
 
Cyber security course near me | Cyber security institute near me.pdf
Cyber security course near me | Cyber security institute near me.pdfCyber security course near me | Cyber security institute near me.pdf
Cyber security course near me | Cyber security institute near me.pdfshyamv3005
 
Cyber security course in Kerala, Kochi.pdf
Cyber security course in Kerala, Kochi.pdfCyber security course in Kerala, Kochi.pdf
Cyber security course in Kerala, Kochi.pdfamallblitz0
 
cyber forensic courses in kerala,kochi..
cyber forensic courses in kerala,kochi..cyber forensic courses in kerala,kochi..
cyber forensic courses in kerala,kochi..mohammadbinshad332
 
Cyber security course in kerala | C|HFI | Blitz Academy
Cyber security course in kerala | C|HFI | Blitz AcademyCyber security course in kerala | C|HFI | Blitz Academy
Cyber security course in kerala | C|HFI | Blitz Academytrashbin306
 
" Become a Certified Ethical Hacker at Blitz Academy | Near Me"
" Become a Certified Ethical Hacker at Blitz Academy | Near Me"" Become a Certified Ethical Hacker at Blitz Academy | Near Me"
" Become a Certified Ethical Hacker at Blitz Academy | Near Me"sharinblitz
 
computer-forensics-8727-OHvDvOm.pptx
computer-forensics-8727-OHvDvOm.pptxcomputer-forensics-8727-OHvDvOm.pptx
computer-forensics-8727-OHvDvOm.pptxDaniyaHuzaifa
 
computer-forensics-8727-OHvDvOm.pptx
computer-forensics-8727-OHvDvOm.pptxcomputer-forensics-8727-OHvDvOm.pptx
computer-forensics-8727-OHvDvOm.pptxssuser2bf502
 
Digital Forensics by William C. Barker (NIST)
Digital Forensics by William C. Barker (NIST)Digital Forensics by William C. Barker (NIST)
Digital Forensics by William C. Barker (NIST)AltheimPrivacy
 
Computer forensics Slides
Computer forensics SlidesComputer forensics Slides
Computer forensics SlidesVarun Sehgal
 

Similaire à Digital Forensic (20)

Fundamental digital forensik
Fundamental digital forensikFundamental digital forensik
Fundamental digital forensik
 
Cyber forensics and auditing
Cyber forensics and auditingCyber forensics and auditing
Cyber forensics and auditing
 
Digital forensics Steps
Digital forensics StepsDigital forensics Steps
Digital forensics Steps
 
What is Digital Forensics.docx
What is Digital Forensics.docxWhat is Digital Forensics.docx
What is Digital Forensics.docx
 
3170725_Unit-1.pptx
3170725_Unit-1.pptx3170725_Unit-1.pptx
3170725_Unit-1.pptx
 
3170725_Unit-1.pptx
3170725_Unit-1.pptx3170725_Unit-1.pptx
3170725_Unit-1.pptx
 
Digital forensic science and its scope manesh t
Digital forensic science and its scope manesh tDigital forensic science and its scope manesh t
Digital forensic science and its scope manesh t
 
Cyber security course near me | Cyber security institute near me.pdf
Cyber security course near me | Cyber security institute near me.pdfCyber security course near me | Cyber security institute near me.pdf
Cyber security course near me | Cyber security institute near me.pdf
 
Cyber security course in Kerala, Kochi.pdf
Cyber security course in Kerala, Kochi.pdfCyber security course in Kerala, Kochi.pdf
Cyber security course in Kerala, Kochi.pdf
 
cyber forensic courses in kerala,kochi..
cyber forensic courses in kerala,kochi..cyber forensic courses in kerala,kochi..
cyber forensic courses in kerala,kochi..
 
Cyber security course in kerala | C|HFI | Blitz Academy
Cyber security course in kerala | C|HFI | Blitz AcademyCyber security course in kerala | C|HFI | Blitz Academy
Cyber security course in kerala | C|HFI | Blitz Academy
 
" Become a Certified Ethical Hacker at Blitz Academy | Near Me"
" Become a Certified Ethical Hacker at Blitz Academy | Near Me"" Become a Certified Ethical Hacker at Blitz Academy | Near Me"
" Become a Certified Ethical Hacker at Blitz Academy | Near Me"
 
computer-forensics-8727-OHvDvOm.pptx
computer-forensics-8727-OHvDvOm.pptxcomputer-forensics-8727-OHvDvOm.pptx
computer-forensics-8727-OHvDvOm.pptx
 
computer-forensics-8727-OHvDvOm.pptx
computer-forensics-8727-OHvDvOm.pptxcomputer-forensics-8727-OHvDvOm.pptx
computer-forensics-8727-OHvDvOm.pptx
 
File000117
File000117File000117
File000117
 
Computer forencis
Computer forencisComputer forencis
Computer forencis
 
Digital Forensics by William C. Barker (NIST)
Digital Forensics by William C. Barker (NIST)Digital Forensics by William C. Barker (NIST)
Digital Forensics by William C. Barker (NIST)
 
Computer Forensics.pptx
Computer Forensics.pptxComputer Forensics.pptx
Computer Forensics.pptx
 
Computer forensics Slides
Computer forensics SlidesComputer forensics Slides
Computer forensics Slides
 
Digital forensics
Digital forensicsDigital forensics
Digital forensics
 

Dernier

Measures of Central Tendency: Mean, Median and Mode
Measures of Central Tendency: Mean, Median and ModeMeasures of Central Tendency: Mean, Median and Mode
Measures of Central Tendency: Mean, Median and ModeThiyagu K
 
Ecological Succession. ( ECOSYSTEM, B. Pharmacy, 1st Year, Sem-II, Environmen...
Ecological Succession. ( ECOSYSTEM, B. Pharmacy, 1st Year, Sem-II, Environmen...Ecological Succession. ( ECOSYSTEM, B. Pharmacy, 1st Year, Sem-II, Environmen...
Ecological Succession. ( ECOSYSTEM, B. Pharmacy, 1st Year, Sem-II, Environmen...Shubhangi Sonawane
 
Russian Escort Service in Delhi 11k Hotel Foreigner Russian Call Girls in Delhi
Russian Escort Service in Delhi 11k Hotel Foreigner Russian Call Girls in DelhiRussian Escort Service in Delhi 11k Hotel Foreigner Russian Call Girls in Delhi
Russian Escort Service in Delhi 11k Hotel Foreigner Russian Call Girls in Delhikauryashika82
 
Beyond the EU: DORA and NIS 2 Directive's Global Impact
Beyond the EU: DORA and NIS 2 Directive's Global ImpactBeyond the EU: DORA and NIS 2 Directive's Global Impact
Beyond the EU: DORA and NIS 2 Directive's Global ImpactPECB
 
Nutritional Needs Presentation - HLTH 104
Nutritional Needs Presentation - HLTH 104Nutritional Needs Presentation - HLTH 104
Nutritional Needs Presentation - HLTH 104misteraugie
 
How to Give a Domain for a Field in Odoo 17
How to Give a Domain for a Field in Odoo 17How to Give a Domain for a Field in Odoo 17
How to Give a Domain for a Field in Odoo 17Celine George
 
Sports & Fitness Value Added Course FY..
Sports & Fitness Value Added Course FY..Sports & Fitness Value Added Course FY..
Sports & Fitness Value Added Course FY..Disha Kariya
 
Key note speaker Neum_Admir Softic_ENG.pdf
Key note speaker Neum_Admir Softic_ENG.pdfKey note speaker Neum_Admir Softic_ENG.pdf
Key note speaker Neum_Admir Softic_ENG.pdfAdmir Softic
 
Making and Justifying Mathematical Decisions.pdf
Making and Justifying Mathematical Decisions.pdfMaking and Justifying Mathematical Decisions.pdf
Making and Justifying Mathematical Decisions.pdfChris Hunter
 
psychiatric nursing HISTORY COLLECTION .docx
psychiatric nursing HISTORY COLLECTION .docxpsychiatric nursing HISTORY COLLECTION .docx
psychiatric nursing HISTORY COLLECTION .docxPoojaSen20
 
Z Score,T Score, Percential Rank and Box Plot Graph
Z Score,T Score, Percential Rank and Box Plot GraphZ Score,T Score, Percential Rank and Box Plot Graph
Z Score,T Score, Percential Rank and Box Plot GraphThiyagu K
 
1029-Danh muc Sach Giao Khoa khoi 6.pdf
1029-Danh muc Sach Giao Khoa khoi 6.pdf1029-Danh muc Sach Giao Khoa khoi 6.pdf
1029-Danh muc Sach Giao Khoa khoi 6.pdfQucHHunhnh
 
fourth grading exam for kindergarten in writing
fourth grading exam for kindergarten in writingfourth grading exam for kindergarten in writing
fourth grading exam for kindergarten in writingTeacherCyreneCayanan
 
Paris 2024 Olympic Geographies - an activity
Paris 2024 Olympic Geographies - an activityParis 2024 Olympic Geographies - an activity
Paris 2024 Olympic Geographies - an activityGeoBlogs
 
Basic Civil Engineering first year Notes- Chapter 4 Building.pptx
Basic Civil Engineering first year Notes- Chapter 4 Building.pptxBasic Civil Engineering first year Notes- Chapter 4 Building.pptx
Basic Civil Engineering first year Notes- Chapter 4 Building.pptxDenish Jangid
 

Dernier (20)

Measures of Central Tendency: Mean, Median and Mode
Measures of Central Tendency: Mean, Median and ModeMeasures of Central Tendency: Mean, Median and Mode
Measures of Central Tendency: Mean, Median and Mode
 
Ecological Succession. ( ECOSYSTEM, B. Pharmacy, 1st Year, Sem-II, Environmen...
Ecological Succession. ( ECOSYSTEM, B. Pharmacy, 1st Year, Sem-II, Environmen...Ecological Succession. ( ECOSYSTEM, B. Pharmacy, 1st Year, Sem-II, Environmen...
Ecological Succession. ( ECOSYSTEM, B. Pharmacy, 1st Year, Sem-II, Environmen...
 
Código Creativo y Arte de Software | Unidad 1
Código Creativo y Arte de Software | Unidad 1Código Creativo y Arte de Software | Unidad 1
Código Creativo y Arte de Software | Unidad 1
 
INDIA QUIZ 2024 RLAC DELHI UNIVERSITY.pptx
INDIA QUIZ 2024 RLAC DELHI UNIVERSITY.pptxINDIA QUIZ 2024 RLAC DELHI UNIVERSITY.pptx
INDIA QUIZ 2024 RLAC DELHI UNIVERSITY.pptx
 
Russian Escort Service in Delhi 11k Hotel Foreigner Russian Call Girls in Delhi
Russian Escort Service in Delhi 11k Hotel Foreigner Russian Call Girls in DelhiRussian Escort Service in Delhi 11k Hotel Foreigner Russian Call Girls in Delhi
Russian Escort Service in Delhi 11k Hotel Foreigner Russian Call Girls in Delhi
 
Beyond the EU: DORA and NIS 2 Directive's Global Impact
Beyond the EU: DORA and NIS 2 Directive's Global ImpactBeyond the EU: DORA and NIS 2 Directive's Global Impact
Beyond the EU: DORA and NIS 2 Directive's Global Impact
 
Nutritional Needs Presentation - HLTH 104
Nutritional Needs Presentation - HLTH 104Nutritional Needs Presentation - HLTH 104
Nutritional Needs Presentation - HLTH 104
 
How to Give a Domain for a Field in Odoo 17
How to Give a Domain for a Field in Odoo 17How to Give a Domain for a Field in Odoo 17
How to Give a Domain for a Field in Odoo 17
 
Sports & Fitness Value Added Course FY..
Sports & Fitness Value Added Course FY..Sports & Fitness Value Added Course FY..
Sports & Fitness Value Added Course FY..
 
Key note speaker Neum_Admir Softic_ENG.pdf
Key note speaker Neum_Admir Softic_ENG.pdfKey note speaker Neum_Admir Softic_ENG.pdf
Key note speaker Neum_Admir Softic_ENG.pdf
 
Making and Justifying Mathematical Decisions.pdf
Making and Justifying Mathematical Decisions.pdfMaking and Justifying Mathematical Decisions.pdf
Making and Justifying Mathematical Decisions.pdf
 
psychiatric nursing HISTORY COLLECTION .docx
psychiatric nursing HISTORY COLLECTION .docxpsychiatric nursing HISTORY COLLECTION .docx
psychiatric nursing HISTORY COLLECTION .docx
 
Advance Mobile Application Development class 07
Advance Mobile Application Development class 07Advance Mobile Application Development class 07
Advance Mobile Application Development class 07
 
Z Score,T Score, Percential Rank and Box Plot Graph
Z Score,T Score, Percential Rank and Box Plot GraphZ Score,T Score, Percential Rank and Box Plot Graph
Z Score,T Score, Percential Rank and Box Plot Graph
 
1029-Danh muc Sach Giao Khoa khoi 6.pdf
1029-Danh muc Sach Giao Khoa khoi 6.pdf1029-Danh muc Sach Giao Khoa khoi 6.pdf
1029-Danh muc Sach Giao Khoa khoi 6.pdf
 
fourth grading exam for kindergarten in writing
fourth grading exam for kindergarten in writingfourth grading exam for kindergarten in writing
fourth grading exam for kindergarten in writing
 
Paris 2024 Olympic Geographies - an activity
Paris 2024 Olympic Geographies - an activityParis 2024 Olympic Geographies - an activity
Paris 2024 Olympic Geographies - an activity
 
Mehran University Newsletter Vol-X, Issue-I, 2024
Mehran University Newsletter Vol-X, Issue-I, 2024Mehran University Newsletter Vol-X, Issue-I, 2024
Mehran University Newsletter Vol-X, Issue-I, 2024
 
Mattingly "AI & Prompt Design: The Basics of Prompt Design"
Mattingly "AI & Prompt Design: The Basics of Prompt Design"Mattingly "AI & Prompt Design: The Basics of Prompt Design"
Mattingly "AI & Prompt Design: The Basics of Prompt Design"
 
Basic Civil Engineering first year Notes- Chapter 4 Building.pptx
Basic Civil Engineering first year Notes- Chapter 4 Building.pptxBasic Civil Engineering first year Notes- Chapter 4 Building.pptx
Basic Civil Engineering first year Notes- Chapter 4 Building.pptx
 

Digital Forensic

  • 2. Outline Forensic and Digital Forensic Definitions Digital Evidence Digital Forensic Model Digital Forensic Process Need and Benefits of Digital Forensic Applications of Digital Forensic Skills required and Challenges faced by Digital Forensic Digital Forensic Software Tools Conclusion 2
  • 3. What is forensic?  Collection and analysis of evidence Using scientific test or techniques To establish facts against crime For presenting in a legal proceeding  Therefore forensic science is a scientific method of gathering and examining information about the past which is then used in court of law 3
  • 4. What is digital forensic? • Digital Forensics is the use of scientifically derived and proven methods toward: the preservation, collection, validation, identification, analysis, interpretation, documentation, and presentation of digital evidence derived from digital devices for the purpose of facilitation or furthering the reconstruction of events found to be criminal, or helping to anticipate unauthorized actions shown to be disruptive to planned operations. 4
  • 5. Branches of Digital Forensics • The technical aspect of an investigation is divided into several sub-branches, relating to the type of digital devices involved: Computer forensics, Firewall Forensics, Database Forensics, Network forensics, Forensic data analysis and Mobile device forensics. • The typical forensic process encompasses the seizure, forensic imaging and analysis of digital media and the production of a report into collected evidence. 5
  • 6. Examples of Digital Forensic Devices 6
  • 7. Digital Evidence • Evidence A piece of information that supports a conclusion • Digital evidence Any data that is recorded or preserved on any medium in or by a computer system or other similar digital device, that can be read or understood by a person or a computer system or other similar device.  It includes a display, printout or other output of that data. 7
  • 8. Characteristics of Digital Evidence • An evidence must be:  Admissible  Conformity with the common law and legislative rules  Authentic  In linking data to specific individuals and events  Fragile  Easily altered, damaged, or destroyed  Accurate  Believed and is consistent  Complete  With a full story of particular circumstances.  Convincing to juries  To have probative value, subjective and practical test of presentation – To proving beyond doubt 8
  • 9. Examples of Digital Evidence 9  e-mails,  digital photographs,  ATM transaction logs,  word processing documents,  Instant message histories,  files saved from accounting program,  spreadsheets,  internet browser histories,  databases,  the contents of computer memory,  computer backups, computer printouts,  Global Positioning System tracks,  logs from a hotel’s electronic door locks, and  digital video or audio files
  • 10. Types of Digital Evidence • Persistant data  Meaning data that remains intact when the digital device is turned off. E.g. hard drives, disk drives and removable storage devices (such as USB drives or flash drives). • Volatile data  Which is data that would be lost if the digital device is turned off. E.g. deleted files, computer history, the computers registry, temporary files and web browsing history. 10
  • 11. Location for Evidence  Internet History Files  Temporary Internet Files  Slack/Unallocated Space  Buddy lists, personal chat room records, P2P, others saved areas  News groups/club lists/posting  Settings, folder structure, file names  File Storage Dates  Software/Hardware added  File Sharing ability 11
  • 12. Digital Forensic Model • Because digital forensics is a new discipline:  there is little standardization and consistency  across the courts and industry 12
  • 13. Different Digital Forensic Models Published No. Digital Forensic Model or framework No of phases 1 Computer forensic process (M.Politt, 1995) 4 processes 2 Generic Investgative Process (Palmer, 2001) 7 Clases 3 Abstract model of Digital forensic procedure (Reith, Carr, & Gumsch, 2002) 9 Proceses 4 An integrated digital investigation proceses (Carrier & Spafford, 2003) 17 Process 5 End to End Digital Investigation (Stephenson, 2003) 9 Steps 6 Enhenced Integrated Disgital Investigation Process (Baryamureeba & Tushabe, 2004) 21 Phases 13
  • 14. Different Digital Forensic Models Published…7 Entended Model of CiberCrime investigation Ciardhuain, (2004) 13 Activities 8 Hierachical, Objective – bases Framework (Beebe & Clark, 2004) 6 Phases 9 Event based Digital Forensic Investigation framework (Carier and Spafford, 2004) 16 Phases 10 Forensic Process (Kent K, Chevalier, Grance & Dang, 2006) 4 Proceses 11 Investigation framework (Kohn, Eloff, & Oriva 2006) 3 Stages 12 Computer forensic field Triage Process Model (K.Rogers, Goldman, Mislan, Wdge, & Debrota, 2006) 4 phases 13 Investigative Process Model ( Freiling & Schawittay, 2007) 4 phases 14
  • 16. Digital Forensic Process • Broad process steps: Identification Preservation Analysis Documentation Presentation 16
  • 17. Identification • The first step in the forensic process:  What evidence is present  Where it is stored and  How it is stored • Electronic stores can be:  Person computers  Mobile phones  PDAs  Smart cards • Key parameters in identification:  Type of information  format 17
  • 18. Preservation Isolate, secure and preserve the state of physical and digital evidence. This includes preventing people from using the digital device or allowing other electromagnetic devices to be used within an affected radius. 18
  • 19. Analysis Determine significance, reconstruct fragments of data and draw conclusions based on evidence found. It may take several iterations of examination and analysis to support a crime theory. 19
  • 20. Documentation A record of all visible data must be created, which helps in recreating the scene and reviewing it any time Involves proper documentation of the crime scene along with photographing, sketching and crime-scene mapping. 20
  • 21. Presentation • Summarize and provide explanation of conclusions.  This should be written in a layperson’s terms using abstracted terminologies.  All abstracted terminologies should reference the specific details. 21
  • 22. Need for Digital Forensics To ensure the integrity of digital system. To focus on the response to hi-tech offenses, started to intervene the system. Digital forensics has been efficiently used to track down the terrorists from the various parts of the world. To produce evidence in the court that can lead to the punishment of the criminal. 22
  • 23. The Benefits of Digital Forensics Digital Forensics help to protect from and solve cases involving: •Theft of intellectual property This pertains to any act that allows access to patents, trade secrets, customer data, and any confidential information. •Financial Fraud This pertains to anything that uses fraudulent solicitation of victims information to conduct fraudulent transactions. 23
  • 24. The benefits of digital forensics ... • Hacker system penetration Taking advantage of vulnerabilities of systems or software using tools such as rootkits and sniffers. • Distribution and execution of viruses and worms These are the most common forms of cyber crime and often cost the most damage. 24
  • 25. Applications of Digital Forensics • Financial Fraud Detection • Criminal Prosecution  Child pornography (Michael Jackson case) • Civil Litigation (evidence in court cases and proceedings)  Perjury (false swearing) (Clinton - Lewinsky case) • Corporate Security Policy and Acceptable Use Violations  Embezzlement (Misuse, fraud, cheating etc.)  Email threats data theft-industrial espionage (spying, intelligence units) 25
  • 26. Challenges faced by Digital Forensics • The increase of PC’s and internet access has made the exchange of information quick and inexpensive. Easy availability of Hacking Tools. Lack of physical evidence makes crimes harder to prosecute. • The large amount of storage space available to suspects The rapid technological changes requires constant upgrade or changes to solutions 26
  • 27. Skills required for Digital Forensics Application of Programming or computer-related experience Broad understanding of operating systems and applications Strong analytical skills Strong computer science fundamentals Strong system administrative skills Knowledge of the latest intruder tools Knowledge of cryptography and steganography Strong understanding of the rules of evidence and evidence handling Ability to be an expert witness in a court of law 27
  • 28. Digital Forensic Software Tools • BACKTRACK 5R3 (Linux operating system)-This OS has many forensic tools to analyze any compromised system or find security holes In that a large amount of open source bundled packages are installed in this OS. • Kali Linux is a Debian-derived Linux distribution designed for digital forensics and penetration testing It was developed through the rewrite of Backtrack 5, their previous forensics Linux distribution. 28
  • 29. Conclusion  Digital forensics is important for solving crimes  with digital devices  against digitial devices  against people where evidence may reside in a device  Several sound tools and techniques exist to search and analyse digital data  Regardless of existing tools, evolving digital age and development of technology requires heavier research in digital forensics
  • 30. References  www.accessdata.com.(2006).  http//www.logicubeforensics.com/.(2008).  http://www.dibsusa.com/.  http://www.computerforensicshq.com. (n.d.). Panagiotis, K. (2006).  Digital Crime and Forensic Science in Cyberspace. USA: Idea Group Publishing. Wiles Jack, C. K. (2007).  The Best Damn Cybercrime and Forensics Book Period. USA: Syngress Publishing.  www.zawya.com. (n.d.). 30
  • 31. END OF THE PRESENTATION 31 Thank You