Digital Forensics

Digital Forensics

by André Årnes
Released July 2017
Publisher(s): Wiley
ISBN: 9781119262381

Read it now on the O’Reilly learning platform with a 10-day free trial.

O’Reilly members get unlimited access to books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.

Start your free trial

Book description

The definitive text for students of digital forensics, as well as professionals looking to deepen their understanding of an increasingly critical field

Written by faculty members and associates of the world-renowned Norwegian Information Security Laboratory (NisLab) at the Norwegian University of Science and Technology (NTNU), this textbook takes a scientific approach to digital forensics ideally suited for university courses in digital forensics and information security. Each chapter was written by an accomplished expert in his or her field, many of them with extensive experience in law enforcement and industry. The author team comprises experts in digital forensics, cybercrime law, information security and related areas.  

Digital forensics is a key competency in meeting the growing risks of cybercrime, as well as for criminal investigation generally. Considering the astonishing pace at which new information technology – and new ways of exploiting information technology – is brought on line, researchers and practitioners regularly face new technical challenges, forcing them to continuously upgrade their investigatory skills. Designed to prepare the next generation to rise to those challenges, the material contained in Digital Forensics has been tested and refined by use in both graduate and undergraduate programs and subjected to formal evaluations for more than ten years.

  • Encompasses all aspects of the field, including methodological, scientific, technical and legal matters
  • Based on the latest research, it provides novel insights for students, including an informed look at the future of digital forensics
  • Includes test questions from actual exam sets, multiple choice questions suitable for online use and numerous visuals, illustrations and case example images
  • Features real-word examples and scenarios, including court cases and technical problems, as well as a rich library of academic references and references to online media

Digital Forensics is an excellent introductory text for programs in computer science and computer engineering and for master degree programs in military and police education. It is also a valuable reference for legal practitioners, police officers, investigators, and forensic practitioners seeking to gain a deeper understanding of digital forensics and cybercrime.

Table of contents

  1. Cover
  2. Title Page
  3. Copyright
  4. Preface
  5. List of Contributors
  6. List of Figures
  7. List of Tables
  8. List of Examples
  9. List of Definitions
  10. List of Abbreviations
  11. Chapter 1: Introduction
    1. 1.1 Forensic Science
    2. 1.2 Digital Forensics
    3. 1.3 Digital Evidence
    4. 1.4 Further Reading
    5. 1.5 Chapter Overview
    6. 1.6 Comments on Citation and Notation
  12. Chapter 2: The Digital Forensics Process
    1. 2.1 Introduction
    2. 2.2 The Identification Phase
    3. 2.3 The Collection Phase
    4. 2.4 The Examination Phase
    5. 2.5 The Analysis Phase
    6. 2.6 The Presentation Phase
    7. 2.7 Summary
    8. 2.8 Exercises
  13. Chapter 3: Cybercrime Law
    1. 3.1 Introduction
    2. 3.2 The International Legal Framework of Cybercrime Law
    3. 3.3 Digital Crime – Substantive Criminal Law
    4. 3.4 Investigation Methods for Collecting Digital Evidence
    5. 3.5 International Cooperation in Order to Collect Digital Evidence
    6. 3.6 Summary
    7. Exercises
  14. Chapter 4: Digital Forensic Readiness
    1. 4.1 Introduction
    2. 4.2 Definition
    3. 4.3 Law Enforcement versus Enterprise Digital Forensic Readiness
    4. 4.4 Why? A Rationale for Digital Forensic Readiness
    5. 4.5 Frameworks, Standards, and Methodologies
    6. 4.6 Becoming “Digital Forensic” Ready
    7. 4.7 Enterprise Digital Forensic Readiness
    8. 4.8 Considerations for Law Enforcement
    9. 4.9 Summary
    10. 4.10 Exercises
  15. Chapter 5: Computer Forensics
    1. 5.1 Introduction
    2. 5.2 Evidence Collection
    3. 5.3 Examination
    4. 5.4 Analysis
    5. 5.5 Summary
    6. 5.6 Exercises
  16. Chapter 6: Mobile and Embedded Forensics
    1. 6.1 Introduction
    2. 6.2 Collection Phase
    3. 6.3 Examination Phase
    4. 6.4 Reverse Engineering and Analysis of Applications
    5. 6.5 Summary
    6. 6.6 Exercises
  17. Chapter 7: Internet Forensics
    1. 7.1 Introduction
    2. 7.2 Computer Networking
    3. 7.3 Layers of Network Abstraction
    4. 7.4 The Internet
    5. 7.5 Tracing Information on the Internet
    6. 7.6 Collection Phase – Local Acquisition
    7. 7.7 Collection Phase – Network Acquisition
    8. 7.8 Collection Phase – Remote Acquisition
    9. 7.9 Other Considerations
    10. 7.10 The Examination and Analysis Phases
    11. 7.11 Summary
    12. Exercises
  18. Chapter 8: Challenges in Digital Forensics
    1. 8.1 Computational Forensics
    2. 8.2 Automation and Standardization
    3. 8.3 Research Agenda
    4. 8.4 Summary
  19. Chapter 9: Educational Guide
    1. 9.1 Teacher's Guide
    2. 9.2 Student's Guide
    3. 9.3 Summary
  20. References
  21. Index
  22. End User License Agreement

Product information

  • Title: Digital Forensics
  • Author(s): André Årnes
  • Release date: July 2017
  • Publisher(s): Wiley
  • ISBN: 9781119262381