Introduction
In this project we are going to talk
about Digital Forensics. Digital Forensics is a section of forensic science
that is meant to deal with the recovery and investigation of material found in
digital devices. Digital evidence from computers, mobile phones and GPS
technologies can provide critical details to an investigation so the purpose of
digital forensics in case of an attack is to analyze the devices to determine
what happened, when did it happen, how did it happen and who was involved. Therefore
to get the job done and help collect evidence digital forensics covers specific
areas for example:-
1- Computer Security Incidents.
2- Misuse of Computer Systems.
3- Crimes using Computers.
4- Crimes against a Computer System.
5- Theft of Information.
6- Timelines of Computer Activity.
Simply, to describe the functions of
digital forensics it is “The preservation, identification, extraction,
interpretation, and documentation of computer evidence, to include the rules of
evidence, legal processes, integrity of evidence, factual reporting of the
information found, and providing expert opinion’ in a court of law or other
legal and/or administrative proceeding as to what was found” (Steve Hailey,
2002). This being said, Digital forensics techniques and methodologies are
commonly used for conducting general investigations to determine the details or
information it wants to recover instead of recovering all the information. In
many instances, information that is gathered during a digital forensics
investigation is not available or viewed by an average computer user, these
information include deleted files, data in an unallocated area on a hard drive
in addition, computers continually monitors and details the action of their
users and to view these actions you need special skills and tools that is why
digital forensics exists.
Conclusion
In conclusion, digital forensics techniques are commonly used to
analyze computer systems which are involved in a cyber-crime and to recover
data in the event of a hardware or software failure. Moreover it analyzes a
computer system after a break-in to determine how the attacker gained access
and what the attacker did. Because of this, digital forensics is important for
solving cyber-crimes and collecting evidence with digital devices, against
digital devices and against people where evidence may reside in a device. For
this purpose there exist several tools and techniques to search and analyze
digital data but regardless of these existing tools I believe that in evolving
digital field and development of technology we need to focus our research more
in digital forensics because today’s tools can’t keep up with the increasing
complexity of cyber-crime.
As we mentioned above, after
few years when Memristors will be available commercially, the issues we are
facing today will all disappear leaving a bright future for digital forensics.
On top of this computer evidence represented by physical items such as boards,
chips, monitors, central processing units, storage media and printers will be
described easily and correctly as a unique form of physical evidence.
There are still some years left
considering that HP plans to offer these commercially by 2012 and it is
believed by some that these devices will replace the existing models between
2014-2016. This may take a while, but things move swiftly. Say goodbye to yesterday
and hello to tomorrow.
ليست هناك تعليقات:
إرسال تعليق