Brainscape's Knowledge GenomeTM


Top Flashcards (Certified)
All Flashcards

Digital investigations > Week 2 > Flashcards

Week 2 Flashcards

1
Q

What is ACPO principles?

A

1 = “No action taken by law enforcement
agencies, persons employed within those
agencies or their agents should change
data which may subsequently be relied
upon in court.”
2 = “In circumstances where a person
finds it necessary to access original data,
that person must be competent to do so
and be able to give evidence explaining
the relevance and the implications of their
actions.”
3 = “An audit trail or other record of all
processes applied to digital evidence
should be created and preserved.
An independent third party should be
able to examine those processes and
achieve the same result.“
4= “The person in charge of the
investigation has overall responsibility for
ensuring that the law and these principles
are adhered to.”

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

What are the important ISOs?

A

27000 is the cover standard and some important ones are:
* ISO/IEC 27041 offers guidance on the assurance aspects of digital forensics e.g. ensuring that the appropriate methods and tools are used properly.
* ISO/IEC 27042 covers what happens after digital evidence has been collected i.e. its analysis and interpretation.
* ISO/IEC 27043 covers the broader incident investigation activities, within which forensics usually occur.
* ISO/IEC 27050 (in 4 parts) concerns electronic discovery which is pretty much what the other standards cover.
* British Standard BS 10008:2008 “Evidential weight and legal admissibility of electronic information.
Specification.” may also be of interest.
* ISO/IEC 17025 enables laboratories to demonstrate that they operate competently and generate valid results, thereby promoting confidence in their work both nationally and around the world

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

What are the basic 5 stages of an investigation?

A

. Identification
* Preservation
* Extraction
* Interpretation
* Presentation

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

What is a devices IMEI?

A

International mobile equipment identifier. dial *#06#. Connected to the hanset.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

What is a devices ICCID?

A

Integrated circuit card ID. On the physical sim card.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

What is a devices IMSI?

A

International mobile subscriber identity. Connected to sim card.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

What is a devices MSISDN?

A

Mobile station integrated services digital network. A phone number. Connected to sim card.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
8
Q

What are some examples of forensic software?

A

Cellebrite UFED
MSAB XRY
Oxygen
FTK
Magnet Axiom

All require a licence

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
9
Q

What are the different levels of electronically stored data?

A

Bit 1
Crumb 2
Nibble 4
Byte 8
Word 16
Double word 32

How well did you know this?
1
Not at all
2
3
4
5
Perfectly

Digital investigations (2 decks)

Brainscape helps you reach your goals faster, through stronger study habits.
© 2025 Bold Learning Solutions. Terms and Conditions