4.6 – Incidents & Regulations

Question 1

• Chain of Custody

Answer 1

o Chronological documentation

o Paper trail – sequence

o Control

o Transfer

o Analysis

o Disposition of materials [physical & electronic evidence]

Question 2

• Inform management / police as necessary

Question 3

• Copy of drive [data integrity & preservation]

Answer 3

Bit by bit copy = copies every sector / deleted data

Question 4

• Documentation of incident

Answer 4

Information about the incident

Question 5

• Licensing

Answer 5

o Licensing / DRM = digital rights management
—Protects from copying
—Software / DVD / Blu-ray

o EULA = End user license agreement

o Valid licenses

o Non-expired licenses

o Personal use licenses vs corporate use licenses

o Open-source licenses

Question 6

• Regulations

Answer 6

o Regulated data
—Credit card transactions
—Payment Card Industry Data Security Standard
———Information security standard for organizations to handle branded credit cards

—Personal government issued information

Question 7

• PII = Personally Identifiable Information

Answer 7

o Personal information about you

o Address, credit number, social security number

o GDPR = General Data Protection Regulations
—-An EU law on data protection & privacy in EU & the European Economic Area

Question 8

• Healthcare Data

Answer 8

o Medicine / disease

o HIPAA = Health Insurance Portability & Accountability Act

o Healthcare info, how personally identifiable info is maintained by the healthcare & insurance industries should be protected

Question 9

• Data Retention Requirements

Answer 9

How long to hold the data [usually defined by law]