An Analysis of Forensics Evidence Gathering for Assistance in Network Intruder Prosecution

Abstract

This research develops a roadmap of legal evidence-gathering steps to assist law enforcement agencies in the identification of network intruders. This checklist will not only assist administrators in conducting network defense and safeguarding evidence but will assist them in remaining within the guidelines of the law in their network defense efforts. Legal responsibilities of network managers are highlighted with respect to legal document requirements and issues of U. S. Marine Corps liability. The aforementioned roadmap development is achieved by: 1) examining the latest advances and trends in network intrusion techniques, 2) investigating current U.S. Navy and U.S. Marine Corps Computer Network Incident Response Policies, 3) researching the current and proposed legislation covering the issue of forensic evidence requirements and preservation, and 4) examining forensics evidence gathering techniques with a focus on individual privacy rights.

Open PDF

Document Details

Document Type
Technical Report
Publication Date
Jun 01, 1999
Accession Number
ADA365606

Entities

People

  • Steven W. Kirtley

Organizations

  • Naval Postgraduate School

Tags

Communities of Interest

  • Cyber
  • Energy and Power Technologies
  • Human Systems

DTIC Thesaurus Topics

  • Application Protocols
  • Computer Crime
  • Computer Network Security
  • Computer Networks
  • Computer Programs
  • Computers
  • Cybersecurity
  • Denial Of Service Attack
  • Detection
  • Electronic Mail
  • Information Warfare
  • Intrusion Detection
  • Intrusion Detection Systems
  • Intrusion Detectors
  • Law
  • National Security
  • Operating Systems

Fields of Study

  • Computer science

Readers

  • Criminal Law
  • Defense Financial Management and Audit.
  • Systems Analysis and Design