Specifying digital forensics: A forensics policy approach

Taylor, Carol A.; Endicott-Popovsky, Barbara; Frincke, Deborah A.

doi:10.1016/j.diin.2007.06.006

Cited by 30 publications

(31 citation statements)

References 3 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Meanwhile, [47] define a forensics policy as closely related to forensics readiness. Forensics policy and forensics readiness are policies that will encourage an institution to undertake activities which will ensure a minimum cost and maximum environment ability to get digital evidence.…”

Section: Security Standard and Forensics Policymentioning

confidence: 99%

Secure and Trusted Environment as a Strategy to Maintain the Integrity and Authenticity of Digital Evidence

Prayudi¹,

Priyambodo²

2015

IJSIA

View full text Add to dashboard Cite

show abstract

Section: Security Standard and Forensics Policymentioning

confidence: 99%

Secure and Trusted Environment as a Strategy to Maintain the Integrity and Authenticity of Digital Evidence

Prayudi¹,

Priyambodo²

2015

IJSIA

View full text Add to dashboard Cite

show abstract

“…Several researchers have focused on the organizational aspects of forensic readiness. Yasinsac and Manzano [23] have defined policies for computer and network forensics; Wolfe [23] has discussed forensic policies in organizations; Rowlingson [19] has specified a ten step process for implementing forensic readiness; Luoma [13] has proposed the establishment of a multi-disciplinary management team to ensure legal compliance with discovery requests; and Taylor, et al [21] have studied forensic policy specification and its use in forensic readiness.…”

Section: Related Workmentioning

confidence: 99%

“…Businesses processes do not specify the boundaries for acceptable use. Ideally, acceptable use is specified via policies [21] derived from authoritative sources such as information privacy laws and ethical guidelines. In some instances, eth-ical guidelines (such as the Fair Information Principles) may require the creation of "privacy-specific business processes" that deal with private information.…”

Section: Rationalementioning

confidence: 99%

See 1 more Smart Citation

A Forensic Framework for Handling Information Privacy Incidents

Reddy

Venter

2009

Advances in Digital Forensics V

View full text Add to dashboard Cite

This paper presents a framework designed to assist enterprises in implementing a forensic readiness capability for information privacy incidents.In particular, the framework provides guidance for specifying high-level policies, business processes and organizational functions, and for determining the device-level forensic procedures, standards and processes required to handle information privacy incidents.

show abstract

“…Organisational policy, such as an overall forensics policy, should form the basis for DFR (Yasinsac & Manzano 2001) (Rowlingson 2005) (Taylor et al 2007). Thus, the staff involved with DFR should have access to the necessary policies to inform their decision making.…”

Section: Dfr Informationmentioning

confidence: 99%

The architecture of a digital forensic readiness management system

Reddy¹,

Venter²

2013

Computers & Security

View full text Add to dashboard Cite

A coordinated approach to digital forensic readiness (DFR) in a large organisation requires the management and monitoring of a wide variety of resources, both human and technical. The resources involved in DFR in large organisations typically include staff from multiple departments and business units, as well as network infrastructure and computing platforms. The state of DFR within large organisations may therefore be adversely affected if the myriad human and technical resources involved are not managed in an optimal manner. This paper contributes to DFR by proposing the novel concept of a digital forensic readiness management system (DFRMS). The purpose of a DFRMS is to assist large organisations in achieving an optimal level of management for DFR. In addition to this, we offer an architecture for a DFRMS. This architecture is based on requirements for DFR that we ascertained from an exhaustive review of the DFR literature. We describe the architecture in detail and show that it meets the requirements set out in the DFR literature. The merits and disadvantages of the architecture are also discussed. Finally, we describe and explain an early prototype of a DFRMS.

show abstract

Specifying digital forensics: A forensics policy approach

Cited by 30 publications

References 3 publications

Secure and Trusted Environment as a Strategy to Maintain the Integrity and Authenticity of Digital Evidence

Secure and Trusted Environment as a Strategy to Maintain the Integrity and Authenticity of Digital Evidence

A Forensic Framework for Handling Information Privacy Incidents

The architecture of a digital forensic readiness management system

Contact Info

Product

Resources

About