Abstract
Digital forensic readiness enables an organization to prepare itself to perform digital forensic investigations in an efficient and effective manner. The benefits include enhancing the admissibility of digital evidence, better utilization of resources and greater incident awareness. However, a harmonized process model for digital forensic readiness does not currently exist and, thus, there is a lack of effective and standardized implementations of digital forensic readiness within organizations. This paper presents a harmonized process model for digital forensic investigation readiness. The proposed model is holistic in nature and properly considers readiness and investigative activities along with the interface between the two types of activities.
Chapter PDF
Similar content being viewed by others
References
N. Beebe and J. Clark, A hierarchical, objectives-based framework for the digital investigations process, Digital Investigation, vol. 2(2), pp. 146–166, 2005.
B. Carrier and E. Spafford, Getting physical with the digital investigation process, International Journal of Digital Evidence, vol. 2(2), 2003.
B. Carrier and E. Spafford, An event-based digital forensic investigation framework, Proceedings of the Fourth Digital Forensics Research Workshop, 2004.
International Standards Organization and International Electrotechnical Commission, ISO/IEC 12207, Systems and Software Engineering – Software Life Cycle Processes, Geneva, Switzerland, 2008.
International Standards Organization and International Electrotechnical Commission, ISO/IEC 27043 – Information Technology – Security Techniques – Digital Evidence Investigation Principles and Processes (Draft), Geneva, Switzerland, 2012.
K. Mandia, C. Prosise and M. Pepe, Incident Response and Computer Forensics, McGraw-Hill/Osborne, Emeryville, California, 2003.
Y. Manzano and A. Yasinsac, Policies to enhance computer and network forensics, Proceedings of the Second Annual IEEE SMC Information Assurance Workshop, pp. 289–295, 2001.
G. Palmer, A Road Map for Digital Forensic Research, DFRWS Technical Report DTR-T001-01 Final, Digital Forensic Research Workshop, Utica, New York ( www.dfrws.org/2001/dfrws-rm- final.pdf ), 2001.
R. Rowlingson, A ten step process for forensic readiness, International Journal of Digital Evidence, vol. 2(3), 2004.
J. Tan, Forensic readiness: Strategic thinking on incident response, presented at the Second Annual CanSecWest Conference, 2001.
A. Valjarevic and H. Venter, Harmonized digital forensic investigation process model, Proceedings of Eleventh Annual South African Information Security Conference, 2012.
J. Wolfe-Wilson and H. Wolfe, Management strategies for implementing forensic security measures, Information Security Technical Report, vol. 8(2), pp. 55–64, 2003.
Author information
Authors and Affiliations
Editor information
Editors and Affiliations
Rights and permissions
Copyright information
© 2013 IFIP International Federation for Information Processing
About this paper
Cite this paper
Valjarevic, A., Venter, H. (2013). A Harmonized Process Model for Digital Forensic Investigation Readiness. In: Peterson, G., Shenoi, S. (eds) Advances in Digital Forensics IX. DigitalForensics 2013. IFIP Advances in Information and Communication Technology, vol 410. Springer, Berlin, Heidelberg. https://doi.org/10.1007/978-3-642-41148-9_5
Download citation
DOI: https://doi.org/10.1007/978-3-642-41148-9_5
Publisher Name: Springer, Berlin, Heidelberg
Print ISBN: 978-3-642-41147-2
Online ISBN: 978-3-642-41148-9
eBook Packages: Computer ScienceComputer Science (R0)