From the course: Cybersecurity Foundations: Computer Forensics
Definition and goals of computer forensics
From the course: Cybersecurity Foundations: Computer Forensics
Definition and goals of computer forensics
- [Instructor] The ultimate goal of computer forensics is to produce evidence for legal cases. You need to keep four objectives in mind to achieve this goal. The first objective is to prepare for an investigation by ensuring the integrity of the evidence. An example is write protecting your evidence media to avoid accidentally writing over it. The second objective is to acquire data, which includes duplicating your evidence to only work on the copy instead of the original media. Once your data is acquired, the next step is to analyze it. Conducting a search based on a keyword to find an incriminating piece of evidence is an excellent example of analyzing data. Finally, the last step is to identify evidence and present it as a written report. These reports can be autogenerated by your computer forensics tool, but you often have to edit them. When we accomplish these objectives of computer forensics, it's safe to allow investigators to submit their evidence.
Practice while you learn with exercise files
Download the files the instructor uses to teach the course. Follow along and learn by watching, listening and practicing.
Download courses and learn on the go
Watch courses on your mobile device without an internet connection. Download courses using your iOS or Android LinkedIn Learning app.
Contents
-
-
-
Definition and goals of computer forensics1m 20s
-
History3m 20s
-
Types of investigations2m 13s
-
Tools2m 49s
-
Legal implications3m 3s
-
(Locked)
Current and future trends3m 16s
-
(Locked)
Challenges3m 29s
-
(Locked)
Anti-forensics techniques3m 38s
-
(Locked)
Compliance and forensics2m 35s
-
(Locked)
Cybersecurity and forensics2m 16s
-
-
-
-
-
-
-
-