IAAC warns companies on computer forensics
Link: IAAC warns companies on computer forensics
The Information Assurance Advisory Council (IAAC), has issued new guidelines warning that businesses are putting themselves at risk, by failing to capture essential evidence from their computer systems.
The guidelines, called the Directors and Corporate Advisors’ Guide to Digital Investigations and Evidence, aims to address a knowledge gap among companies about computer forensics. The IAAC argues that a failure to preserve computer evidence makes criminal prosecutions against hackers more difficult and makes it less likely that firms will secure proper redress in the civil courts. It can also mean that they are unable to make proper insurance claims.
The report’s author, Peter Sommer says that the need for digital evidence is obvious when hacking, fraud and denial of service attacks have taken place but “It’s also required when transactions are disputed, in employee disputes, and almost all forms of non-cyber crime, including murder, forgery, industrial espionage and terrorism. With the vast proliferation of computer ownership and usage plus the growth of low-cost always-on broadband connectivity, all organisations require a forensic readiness program.”
Mr Sommer said that firms need a strategy in place to identify and preserve digital evidence, including emails and web transactions, together with an understanding of some of the associated legal problems such as admissibility and privacy.
The guide provides general management advice plus details of procedures, techniques, applicable law and sources of further information about computer forensics. It is available for free download from IAAC’s website : http://www.iaac.org.uk/Default.aspx?tabid=65
