Forensic Computing: A Practitioner’s Guide

Přední strana obálky
Springer Science & Business Media, 17. 4. 2013 - Počet stran: 295

In this book, Tony Sammes and Brian Jenkinson show how information held in computer systems can be recovered and how it may be deliberately hidden or subverted for criminal purposes. "Forensic Computing: A Practitioner's Guide" is illustrated by plenty of case studies and worked examples, and will help practitioners and students gain a clear understanding of:
* how to recover information from computer systems in such a way as to ensure that its integrity cannot be challenged and that it will be accepted as admissible evidence in court
* the principles involved in password protection and data encryption
* the evaluation procedures used in circumventing these safeguards
* the particular legal issues associated with computer-generated evidence and how to ensure admissibility of such evidence.

 

Vybrané stránky

Obsah

Forensic Computing
1
Appendices
3
IT Systems Concepts
43
PC Hardware and Inside the
65
7
82
Disk Geometry
89
9
92
Construction of Hard Disk Systems
98
IDEATA Problems and Workarounds
122
53
126
The POSTBoot Sequence
133
67
136
The Master Boot Record and Partitions
144
FATS Directories and File Systems
155
Hiding and Recovering Information
166
The ACPO Good Practice Guide
175

23
103
The Formatting Process
110
35
112
4243
119
The Treatment of Electronic Organizers
204
Looking Ahead Just a Little Bit
217
Answers to Exercises
267
Autorská práva

Běžně se vyskytující výrazy a sousloví

13h BIOS interface 63 sectors address bus algorithm ASCII bad sector big endian binary patterns boot sector byte 31 byte 35 byte byte address CHS address cluster CMOS copy counter register cylinder data bus devices disk controller Disk Editor electronic electronic organizers encryption endian format evidence example execute expansion card extended partition file system floppy disk forensic computing analyst four bytes Gbyte graphics hardware hexadecimal IDE/ATA IDE/ATA interface instruction INT 13h BIOS Intel interpret little endian low-level format machine master boot record maximum Mbyte motherboard MS-DOS number of sectors offset operating system organizer partition table password Pentium Physical CHS primary partition problem processor real mode result root directory Seagate sectors per track sequence shown in Fig socket specific standard starting subdirectory subtract switched Technology Western Digital word register

Bibliografické údaje

NázevForensic Computing: A Practitioner’s Guide
Practitioner Series
AutořiAnthony Sammes, Brian Jenkinson
Vydáníilustrované vydání
VydavatelSpringer Science & Business Media, 2013
ISBN1447136616, 9781447136613
DélkaPočet stran: 295
  
Exportovat citaciBiBTeX EndNote RefMan