Book Image

Practical Digital Forensics

By : Richard Boddington
Book Image

Practical Digital Forensics

By: Richard Boddington

Overview of this book

Digital Forensics is a methodology which includes using various tools, techniques, and programming language. This book will get you started with digital forensics and then follow on to preparing investigation plan and preparing toolkit for investigation. In this book you will explore new and promising forensic processes and tools based on ‘disruptive technology’ that offer experienced and budding practitioners the means to regain control of their caseloads. During the course of the book, you will get to know about the technical side of digital forensics and various tools that are needed to perform digital forensics. This book will begin with giving a quick insight into the nature of digital evidence, where it is located and how it can be recovered and forensically examined to assist investigators. This book will take you through a series of chapters that look at the nature and circumstances of digital forensic examinations and explains the processes of evidence recovery and preservation from a range of digital devices, including mobile phones, and other media. This book has a range of case studies and simulations will allow you to apply the knowledge of the theory gained to real-life situations. By the end of this book you will have gained a sound insight into digital forensics and its key components.
Table of Contents (18 chapters)
Practical Digital Forensics
Credits
About the Author
Acknowledgment
About the Reviewer
www.PacktPub.com
Preface
Index

Case studies


The following examples highlight a small sample of previous cases that rely on digital evidence. Chapter 3, The Nature and Special Properties of Digital Evidence, will describe digital evidence in more detail.

The Aaron Caffrey case – United Kingdom, 2003

In 2003, Caffrey was acquitted of an offence: the unauthorized modification of computer material by sending data from his computer that shut down the Port of Houston computer servers. This was one of a few cases where a malware defense was accepted by the court without any proof of it controlling the computer. You can find details here:

http://digitalcommons.law.scu.edu/cgi/viewcontent.cgi?article=1370&context=chtlj.

The Julie Amero case – Connecticut, 2007

School teacher Julie Amero had serious charges of the possession of indecent images, which were seen by her students; she was dismissed, thereby avoiding a lengthy jail sentence. The police examination was shown to be faulty, and malware on Amero's computer was thought responsible for the downloading of the indecent files. Refer to these links for details:

The Michael Fiola case – Massachusetts, 2008

A similar case was dismissed when the defendant was able to obtain confirmation from a practitioner that malware was probably responsible for the presence of the indecent files you will find details here:

http://truthinjustice.org/fiola.htm.