Chapter 2 - The Forensics Lab Flashcards
ANSI-ASQ National Accreditation Board (ANAB)
An organization that accredits testing and calibration laboratories, inspection bodies, and other certification organizations.
Example: ANAB accredited a digital forensics lab to ensure its adherence to industry standards and best practices.
business case
A document that outlines the justification, costs, benefits, and risks of a proposed project or initiative.
Example: A business case for implementing a new digital forensics lab would include a cost-benefit analysis and an assessment of the potential return on investment.
Certified Computer Examiner (CCE):
Definition: A certification for professionals in the digital forensics field, demonstrating knowledge and skills in computer forensics analysis and investigation.
Example: A digital forensics investigator obtaining a CCE certification to demonstrate their expertise in the field.
Certified Cyber Forensics Professional (CCFP)
A certification for professionals in the digital forensics field, demonstrating knowledge and skills in cyber forensics analysis and investigation.
Example: A digital forensics investigator obtaining a CCFP certification to demonstrate their expertise in investigating cybercrime.
Certified Forensic Computer Examiner (CFCE)
A certification for professionals in the digital forensics field, demonstrating knowledge and skills in computer forensics analysis and investigation.
Example: A digital forensics investigator obtaining a CFCE certification to demonstrate their expertise in the field.
configuration management
The process of tracking and controlling changes to a system or environment, typically used in software development or IT management.
Example: A company implementing configuration management procedures to ensure consistency and reliability in its IT infrastructure.
digital forensics lab
A specialized facility for conducting digital forensics investigations, typically equipped with specialized hardware and software tools for analyzing digital evidence.
Example: A police department setting up a digital forensics lab to investigate crimes involving digital devices and media.
High Tech Crime Network (HTCN)
An international network of digital forensics and cybercrime investigators and professionals.
Example: A digital forensics investigator joining HTCN to collaborate and share knowledge with other professionals in the field.
risk management
The process of identifying, assessing, and prioritizing potential risks and developing strategies to manage and mitigate those risks.
Example: A company conducting a risk management assessment to identify potential cybersecurity threats and develop a plan to mitigate those risks.
secure facility
A facility designed to provide physical security for sensitive or confidential information or materials.
Example: A government agency building a secure facility to store classified documents and information.
TEMPEST
A set of technical standards for preventing electronic eavesdropping and the interception of electromagnetic signals.
Example: A company implementing TEMPEST standards to protect sensitive information from electronic eavesdropping and interception.
Uniform Crime Report
An annual report published by the FBI containing statistics on crime reported to law enforcement agencies in the United States.
Example: The FBI releasing the Uniform Crime Report to provide data and insight into crime trends and statistics in the United States.
An employer can be held liable for e-mail harassment. True or False?
True
Building a business case can involve which of the following?
Protecting Trade Secrets
The ANAB mandates the procedures established for a digital forensics lab. True or False?
False
The manager of a digital forensics lab is responsible for which of the following? (Choose all that apply.) -
- Making necessary changes in lab procedures and software, 2. Ensuring that staff members have enough training to do the job, 3. Knowing the lab objectives
To determine the types of operating systems needed in your lab, list two sources of information you could use. -
Operating system vendor websites, technical manuals
What items should your business plan include?
Justification for the project, Costs, Benefits, Risks
List two popular certification programs for digital forensics.
- Certified Computer Examiner (CCE), Certified Forensic Computer Examiner (CFCE)
Why is physical security so critical for digital forensics labs?
To protect sensitive and confidential information from unauthorized access or theft.
If a visitor to your digital forensics lab is a personal friend, it’s not necessary to have him or her sign the visitor’s log. True or False?
False
What three items should you research before enlisting in a certification program?
Requirements for certification, Cost of certification, Validity of certification
Large digital forensics labs should have at least
2 exits
Typically, a(n) digital forensics lab has a
separate storage area or room for evidence.
Digital forensics facilities always have windows. True or False?
False
Evidence storage containers should have several master keys. True or False?
False
A forensic workstation should always have a direct broadband connection to the Internet. True or False?
False
Which organization provides good information on safe storage containers?
National Institute of Standards and Technology (NIST)
Which organization has guidelines on how to operate a digital forensics lab?
High Tech Crime Network (HTCN)
What term refers to labs constructed to shield EMR emissions?
TEMPEST
