Description

This project will provide an introduction to digital forensic analysis.

undefined

Digital forensic analysis is used to review and investigate data collected through digital communications and computer networks. The National Institute for Standards and Technology (NIST) has defined four fundamental phases for forensic analysis: collection, examination, analysis, and reporting. You will learn more about these concepts as you navigate throughout the steps of this project and read the literature and links found in each step.

undefined

There are four steps that will lead you through this project. Begin with Step 1: “Methodology. The deliverables for this project are as follows:

undefined

  1. Digital Forensic Research Paper: This should be a five-page double-spaced Word document with citations in APA format. The page count does not include diagrams or tables but please include them..
  2. In a Word document, share your lab experience and provide screenshots to demonstrate that you completed the lab. I will do this lab. Don’t worry about this.

undefined

Step 1: Methodology

undefined

The methodology for digital forensics follows a systems process. Identify the requirements, purpose, and objectives of the investigation. Click the links below to review information that will aid in conducting and documenting an investigation:

undefined

undefined

Learn about the investigation methodology. Consider secure programming fundamentals. Define the digital forensics analysis methodology and the phases of the digital forensics fundamentals and methodology, including the following:

undefined

  1. preparation
  2. extraction
  3. identification
  4. analysis

undefined

This information will help you understand the process you will use during an investigation.

undefined

Professionals in the Field

undefined

Digital forensics is a specialized area of cybersecurity that overlaps with criminal law and the judicial system. As mentioned in a previous project, knowledge of multiple domains is often a desirable or even necessary bona fide job qualification. For instance, knowing and applying the best practices for setting up secure information systems does not necessarily mean that the system, processes, and people will align in a way that allows for the gathering of criminal evidence admissible in a court of law. That alignment requires knowledge in multiple domains. Could that be you?

undefined

Step 2: Tools and Techniques

undefined

Select the following links to learn about forensics analysis tools, methods, and techniques:

undefined

  1. forensics analysis tools
  2. web log and session analysis
  3. hash analysis

undefined

Step 4: Digital Forensics Research Paper

undefined

Now that you have learned the basics of digital forensics analysis and methodology, and have experienced one of the common forensic tools, use the material presented in this project as well as research you have conducted outside of the course materials to write a research paper that addresses the following:

undefined

  1. digital forensics methodology
  2. the importance of using forensic tools to collect and analyze evidence (e.g., FTK Imager and EnCase)
  3. hashing in the context of digital forensics
  4. How do you ensure that the evidence collected has not been tampered with (i.e., after collection)? Why and how is this important to prove in court?

undefined

The deliverables for this project are as follows:

undefined

  1. Digital Forensics Research Paper: This should be a five-page double-spaced Word document with citations in APA format. The page count does not include diagrams or tables.
  2. In a Word document, share your lab experience and provide screenshots to demonstrate that you completed the lab.