0% found this document useful (0 votes)

5 views

3. Procedure for Seizing and Collecting Digital Evidence

procedure cybercrime

Uploaded by

Jovina Castillon Dimacale

We take content rights seriously. If you suspect this is your content, claim it here.

Available Formats

Download as PDF, TXT or read online on Scribd

0% found this document useful (0 votes)

5 views

3. Procedure for Seizing and Collecting Digital Evidence

procedure cybercrime

Uploaded by

Jovina Castillon Dimacale

We take content rights seriously. If you suspect this is your content, claim it here.

Available Formats

Download as PDF, TXT or read online on Scribd

You are on page 1/ 13

Procedure for

Seizing and
Collecting
Digital
Evidence
Understand the importance of
proper procedures in handling
digital evidence.

Learn the steps for seizing and

Objectives collecting digital evidence.

Highlight best practices to

maintain the integrity of
evidence.
What is Digital Evidence?

Definition of Any information stored or

Digital transmitted in digital form that
may be
Evidence
Examples:

used in legal
Emails, texts, documents, images,
videos.
Metadata, logs, internet browsing

proceedings. history.
Data on computers, mobile devices,
and cloud storage.
Importance of Proper Handling

Ensures
Maintains evidence
admissibility in
integrity.
court.

Supports Prevents
successful accusations of
prosecution of tampering or
cybercrimes. contamination.
Legal Basis

R.A. 10175 (Cybercrime

Prevention Act of 2012): Defines rules for evidence handling.

Rules on Electronic
Evidence: Admissibility of digital evidence in legal proceedings.

Chain of Custody
Requirements: Ensures evidence authenticity.
Procedure for Seizing Digital Evidence

Preparation Securing the Scene Identification of Evidence

Obtain proper authorization (warrant, consent). Ensure safety and restrict access to the area. Locate devices, storage media, and other potential sources of data.
Assemble the necessary tools and personnel. Identify and isolate devices to prevent tampering. Take note of device status (on, off, connected to networks).
Collection of Digital Evidence

Document the Evidence Preserve Evidence Integrity Label and Package Devices
Take photographs or videos of the devices and surroundings. Avoid altering or tampering with the device. Assign unique identifiers to each item.
Record serial numbers, device models, and physical condition. Use write blockers to prevent changes to data. Seal devices in anti-static bags to prevent damage.
Securing Digital Data

Imaging the Data: Hashing: Documentation:

Create exact copies (forensic images) of digital evidence. Generate hash values (MD5/SHA-1) to verify data integrity. Record every step taken during the collection process.
Use tools like EnCase, FTK Imager, or open-source tools.
Chain of Custody

Definition: The chronological documentation showing the seizure,

custody, control, transfer, analysis, and disposition of evidence.

•Key Elements:
•Date and time of collection.

Name and signature of individuals handling the evidence.

Purpose of each transfer.

Storage and Preservation

Store evidence in a secure, Limit access to authorized personnel.

temperature-controlled environment.

Regularly verify integrity using hash

values.
Challenges in Seizing Digital Evidence

Devices with encryption or password Cloud-based evidence requiring

protection. additional legal steps.

Volatile data (e.g., RAM content) that Cross-border jurisdiction issues in

may be lost if not captured immediately. accessing remote servers.
Best Practices

Have Always have legal authority (search warrant or consent).

Document Document every action meticulously.

Use Use certified forensic tools and trained personnel.

Maintain Maintain the chain of custody to ensure admissibility in court.

Conclusion

Proper procedures in seizing and crucial for successful

collecting digital evidence are investigations and prosecution.

Integrity, authenticity, and Continuous training and adherence

legality must always be upheld. to best practices are essential.

4th Module
No ratings yet
4th Module
80 pages
Lecture Notes On Mass Transfer
90% (10)
Lecture Notes On Mass Transfer
33 pages
COLLECTION AND PRESERVATION OF DIGITAL & FORENSIC EVIDENCE by Peter at JTI May 2021
No ratings yet
COLLECTION AND PRESERVATION OF DIGITAL & FORENSIC EVIDENCE by Peter at JTI May 2021
10 pages
4.electronic Evidence - Collection, Preservation and Appreciation PDF
No ratings yet
4.electronic Evidence - Collection, Preservation and Appreciation PDF
108 pages
Action Plan in Basic Calculus (Specialized)
100% (1)
Action Plan in Basic Calculus (Specialized)
2 pages
Procedure For Seizing and Collecting Digital Evidence
No ratings yet
Procedure For Seizing and Collecting Digital Evidence
13 pages
Procedure for Crime Evidence
No ratings yet
Procedure for Crime Evidence
5 pages
unit4_csdf
No ratings yet
unit4_csdf
15 pages
Cyber_Forensics Unit 2
No ratings yet
Cyber_Forensics Unit 2
35 pages
Why Is It Important To Process Digital Evidence Properly While Conducting An Investigation?
No ratings yet
Why Is It Important To Process Digital Evidence Properly While Conducting An Investigation?
2 pages
NSCF Assignment
No ratings yet
NSCF Assignment
11 pages
Unit 3
No ratings yet
Unit 3
45 pages
Digital Evidence Computer Forensics
No ratings yet
Digital Evidence Computer Forensics
18 pages
Module 2
No ratings yet
Module 2
27 pages
Cyber Forensics
From Everand
Cyber Forensics
Ophelia Marlowe
No ratings yet
FINALS
No ratings yet
FINALS
5 pages
Lesson Title Digital Investigative Techniques Learning Targets at the End of the Module, Students Will Be Able to 1. Articulate Techniques for the Detection of Cybercrime 2. Classify the Digital f
No ratings yet
Lesson Title Digital Investigative Techniques Learning Targets at the End of the Module, Students Will Be Able to 1. Articulate Techniques for the Detection of Cybercrime 2. Classify the Digital f
23 pages
Csf-Unit 3
No ratings yet
Csf-Unit 3
19 pages
ADF - Module 1
No ratings yet
ADF - Module 1
188 pages
Admissibility of Digital Evidence
No ratings yet
Admissibility of Digital Evidence
18 pages
Vnd.openxmlformats Officedocument.wordprocessingml.document&Rendition=1 3
No ratings yet
Vnd.openxmlformats Officedocument.wordprocessingml.document&Rendition=1 3
6 pages
eti_script
No ratings yet
eti_script
4 pages
CyberForensicsFlyer
No ratings yet
CyberForensicsFlyer
2 pages
Digital Forensics Chain of Custody PDF
No ratings yet
Digital Forensics Chain of Custody PDF
3 pages
Criminal Procedure and Digital Evidence Collection in the Modern Era of Technology (MODULE – 1 Part
No ratings yet
Criminal Procedure and Digital Evidence Collection in the Modern Era of Technology (MODULE – 1 Part
52 pages
Standard Operating Procedures For Investigations: Skill-02
No ratings yet
Standard Operating Procedures For Investigations: Skill-02
6 pages
DDigital Forensics-Unit 2
No ratings yet
DDigital Forensics-Unit 2
32 pages
CSF Unit 3
No ratings yet
CSF Unit 3
181 pages
Digital Forensics - A Literature Review: September 2019
No ratings yet
Digital Forensics - A Literature Review: September 2019
6 pages
Module 4 CF
No ratings yet
Module 4 CF
21 pages
Cybercrime and Cyber-Terrorism: Module 4: Practical Aspects of Cybercrime Investigations
No ratings yet
Cybercrime and Cyber-Terrorism: Module 4: Practical Aspects of Cybercrime Investigations
33 pages
Cyber Forensics 43
No ratings yet
Cyber Forensics 43
10 pages
S2-Digital Forensics Life Cycle
No ratings yet
S2-Digital Forensics Life Cycle
34 pages
vnd.openxmlformats-officedocument.wordprocessingml.document&rendition=1-2
No ratings yet
vnd.openxmlformats-officedocument.wordprocessingml.document&rendition=1-2
9 pages
Day 2 Digital Forensics
No ratings yet
Day 2 Digital Forensics
53 pages
Document
No ratings yet
Document
39 pages
Digital Evidence Collection in Cybersecurity
No ratings yet
Digital Evidence Collection in Cybersecurity
3 pages
Digitalforensics
No ratings yet
Digitalforensics
14 pages
Computer Forensics and Digital
No ratings yet
Computer Forensics and Digital
9 pages
Computer Hacking Forensic Investigator Course Content: Module 01: Computer Forensics in Today's World
100% (1)
Computer Hacking Forensic Investigator Course Content: Module 01: Computer Forensics in Today's World
96 pages
Lesson 5 Investigative Plan Compressed
100% (1)
Lesson 5 Investigative Plan Compressed
40 pages
3 Digital Evidence Seizure
No ratings yet
3 Digital Evidence Seizure
31 pages
1.digital Forensics Collection, Presservation and Appreciation of Electronic Evidence
No ratings yet
1.digital Forensics Collection, Presservation and Appreciation of Electronic Evidence
85 pages
Digital Forensics and Electronic Evidenc
No ratings yet
Digital Forensics and Electronic Evidenc
11 pages
Dig Evi and Dig Forencis - Legal Perspectives - Sent
No ratings yet
Dig Evi and Dig Forencis - Legal Perspectives - Sent
42 pages
Digital Evidence Preservation and Admissibility
No ratings yet
Digital Evidence Preservation and Admissibility
3 pages
Group 3 Evidence Acquisition Final
No ratings yet
Group 3 Evidence Acquisition Final
8 pages
Electronic Evidence Mind Mapping
No ratings yet
Electronic Evidence Mind Mapping
3 pages
FALLSEM2023-24 CSE4004 ETH VL2023240103594 2023-09-01 Reference-Material-I
No ratings yet
FALLSEM2023-24 CSE4004 ETH VL2023240103594 2023-09-01 Reference-Material-I
34 pages
CF-UNIT-I PPT (1)
No ratings yet
CF-UNIT-I PPT (1)
49 pages
Evidence Handling
No ratings yet
Evidence Handling
18 pages
Evidence Handling_Unit3 (1)
No ratings yet
Evidence Handling_Unit3 (1)
18 pages
RACU Lecture
No ratings yet
RACU Lecture
28 pages
Dfsas 2
No ratings yet
Dfsas 2
38 pages
Report 1
No ratings yet
Report 1
10 pages
Unit2 Notes Chainofcustodyand Networkforensics
No ratings yet
Unit2 Notes Chainofcustodyand Networkforensics
8 pages
CSF 3.1
No ratings yet
CSF 3.1
4 pages
Computer Hacking Forensic Investigator Version 4 (CHFI) : Course Introduction 6m Computer Forensics in Today's World
No ratings yet
Computer Hacking Forensic Investigator Version 4 (CHFI) : Course Introduction 6m Computer Forensics in Today's World
34 pages
Digital Forensics Process Model
No ratings yet
Digital Forensics Process Model
7 pages
Evidence Handling
No ratings yet
Evidence Handling
15 pages
Module-5
No ratings yet
Module-5
7 pages
Practical Digital Forensics
From Everand
Practical Digital Forensics
Richard Boddington
No ratings yet
How to Answer Interview Questions (McKee, Peggy) (Z-Library)
No ratings yet
How to Answer Interview Questions (McKee, Peggy) (Z-Library)
216 pages
Airport Choice in A Multiple Airport Region
No ratings yet
Airport Choice in A Multiple Airport Region
11 pages
Developmental Effects of Parent-Child Separation
No ratings yet
Developmental Effects of Parent-Child Separation
24 pages
English 2023
No ratings yet
English 2023
7 pages
Language
No ratings yet
Language
2 pages
Pepsico
No ratings yet
Pepsico
8 pages
History 1a
No ratings yet
History 1a
23 pages
Especificaciones Omega Bos200
No ratings yet
Especificaciones Omega Bos200
3 pages
Model Predictive Control For Mining: Process Optimization Solution
No ratings yet
Model Predictive Control For Mining: Process Optimization Solution
14 pages
Company Procedure Checpoint MNS
No ratings yet
Company Procedure Checpoint MNS
7 pages
Exercise 1
No ratings yet
Exercise 1
4 pages
A1 Present Tense PDF
No ratings yet
A1 Present Tense PDF
11 pages
TR - Rubber Production NC II
No ratings yet
TR - Rubber Production NC II
58 pages
Python Programming For Beginners
No ratings yet
Python Programming For Beginners
3 pages
Formula Sheet Class 12
100% (9)
Formula Sheet Class 12
5 pages
Final Reflective Essay Jenayamcgee
No ratings yet
Final Reflective Essay Jenayamcgee
3 pages
ACI EPD Competition 2024
No ratings yet
ACI EPD Competition 2024
5 pages
Windows 10 - Wikipedia
No ratings yet
Windows 10 - Wikipedia
37 pages
Real and Demonstrative Evidence
No ratings yet
Real and Demonstrative Evidence
3 pages
Origin of The European Cultivated Carrot
No ratings yet
Origin of The European Cultivated Carrot
24 pages
Castrol Duratec L
No ratings yet
Castrol Duratec L
5 pages
Bionet Hl7 Guide Report - Ver1.3 - Eng (140911)
No ratings yet
Bionet Hl7 Guide Report - Ver1.3 - Eng (140911)
13 pages
User Man Eng Af03gt v7 r1
No ratings yet
User Man Eng Af03gt v7 r1
84 pages
Cost Comparison
No ratings yet
Cost Comparison
11 pages
Experiment #6
71% (7)
Experiment #6
11 pages
Heteroscedasticity PDF
No ratings yet
Heteroscedasticity PDF
2 pages
Pneumothorax: Dr. Ibnu Dharmajati
No ratings yet
Pneumothorax: Dr. Ibnu Dharmajati
16 pages

Note: This service is not intended for secure transactions such as banking, social media, email, or purchasing. Use at your own risk. We assume no liability whatsoever for broken pages.

3. Procedure for Seizing and Collecting Digital Evidence

Uploaded by

3. Procedure for Seizing and Collecting Digital Evidence

Uploaded by

Procedure for

Learn the steps for seizing and

Highlight best practices to

Definition of Any information stored or

R.A. 10175 (Cybercrime

Preparation Securing the Scene Identification of Evidence

Imaging the Data: Hashing: Documentation:

Definition: The chronological documentation showing the seizure,

custody, control, transfer, analysis, and disposition of evidence.

Name and signature of individuals handling the evidence.

Purpose of each transfer.

Store evidence in a secure, Limit access to authorized personnel.

Regularly verify integrity using hash

Devices with encryption or password Cloud-based evidence requiring

Volatile data (e.g., RAM content) that Cross-border jurisdiction issues in

Have Always have legal authority (search warrant or consent).

Document Document every action meticulously.

Use Use certified forensic tools and trained personnel.

Maintain Maintain the chain of custody to ensure admissibility in court.

Proper procedures in seizing and crucial for successful

Integrity, authenticity, and Continuous training and adherence

You might also like

Pfad - The Proxy pFad of © 2024 Garber Painting. All rights reserved.