yannaing wrote:
corey_h wrote:
This webpage outlines the various principles in the digital forensics process.
http://www.fbi.gov/about-us/lab/forensic-science-communications/fsc/april2000/swgde.htm
Corey HarrellI found the brief standard to follow in digital forensics process in this webpage <img src="images/smiles/icon_smile.gif" alt="Smile" title="Smile" />
Thank you Corey Harrell
The above weblink leads to information that makes no reference to, or statement about, 'cyber'. The content at the weblink is concerned with "collect and preserve digital evidence". To me this makes sense as it is a referral to and reference about digital evidence and digital forensics procedures associated with it.
At best "Cyber" is nothing more than a 'label/title' being applied to generically label any factual or assumed unlawful activity on/over e.g. certain technologies. At worst 'cyber' is a 'sticking plaster' which is being crudely applied to make everything appear technology/science neutral and thus a subset of 'cyber'.
Cyber has no defined forensics standards of its own, so it requires using existing standards out there which are not referenced to 'cyber'. A good example of this is the UK Forensic Regulator use of standards, which make no reference to cyber:
Codes of Practice and Conduct
Appendix: Digital Forensic Services
FSR-C-107-001
Consultation Draft
http://www.homeoffice.gov.uk/publications/about-us/consultations/forensic-science-regulator/digital-forensic-cons?view=Binary
Neither does cyber have its principles or practices that haven't already been adopted and implemented in existing areas of e.g. digital evidence. Corey's weblink above is a good example of this.
However, it is important to be seen to be objective in discussing 'cyber' and to highlight where guidelines do refer to 'cyber'. ACPO Guidelines 2012 makes reference to cyber:"This best practice guide has been produced by the ACPO Crime Business Area and was originally approved by ACPO Cabinet in December 2007. The purpose of this document is to provide guidance not only to assist law enforcement but for all that assists in investigating cyber security incidents and crime. It will be updated according to legislative and policy changes and republished as required."http://library.npia.police.uk/docs/acpo/digital-evidence-2012.pdf
It would appear largely difficult though for ACPO to avoid using the term 'cyber' because the Guidelines document is labelled with the Police Central e-Crime Unit (PCeU) logo. PCeU is due to be integrated into the National Cyber Crime Unit (NCCU):
http://www.techweekeurope.co.uk/news/fixing-cyber-police-security-pceu-soca-national-crime-agency-106466
If you all have not yet died of boredom, there is some further reading about cyber here (if you can stand it <img src="images/smiles/icon_lol.gif" alt="Laughing" title="Laughing" /> )
http://trewmte.blogspot.co.uk/2013/02/cyber-wrapping.html
http://trewmte.blogspot.co.uk/2013/02/one-hit-hits-all.html
http://trewmte.blogspot.co.uk/2012/05/new-malware-invokes-label-cyber-weapon.html
http://trewmte.blogspot.co.uk/2011/10/cybercrime-really-its-ict-crime-by-any.html
http://trewmte.blogspot.co.uk/2011/09/cybercrime-procedures-deterrent-and.html
http://trewmte.blogspot.co.uk/2011/08/research-critiques-of-author.html
http://trewmte.blogspot.co.uk/2010/10/cyber-what.html
↧