Forensic analysis of digital evidence from palm personal digital assistants

McNemar, Christopher M.

January 1900

Thesis (M.S.)--West Virginia University, 2004. / Title from document title page. Document formatted into pages; contains vii, 49 p. : ill. (some col.). Includes abstract. Includes bibliographical references (p. 44-45).

A critical study of the authentication requirements of section 2 of the Computer Evidence Act No. 57 of 1983

Mapoma, Siyabulela Xhanti.

11 1900

The aim of this dissertation is to show the shortcomings of the Computer Evidence Act No 57 of 1983 , in so far as the requirements of authentication of computer generated documents before their admissibility as evidence in a court of law. / LL.M.

Authentication

Authentication requirements

Computer Evidence Act

Computer

Computer print-out

Affidavit

Admissibily

Document

347.64068

Evidence (Law) -- South Africa

A critical study of the authentication requirements of section 2 of the Computer Evidence Act No. 57 of 1983

Mapoma, Siyabulela Xhanti.

11 1900

The aim of this dissertation is to show the shortcomings of the Computer Evidence Act No 57 of 1983 , in so far as the requirements of authentication of computer generated documents before their admissibility as evidence in a court of law. / LL.M.

Authentication

Authentication requirements

Computer Evidence Act

Computer

Computer print-out

Affidavit

Admissibily

Document

347.64068

Evidence (Law) -- South Africa

Exploring the value of computer forensics in the investigation of procurement fraud

Themeli, Aluwani Rufaroh

01 1900

The research problem for this study was that forensic investigators in the Forensic Services (FS) of the City of Tshwane (CoT) are unable to successfully deal with procurement fraud as a result of the lack of knowledge, skills and resources required to conduct computer forensics during the investigation of procurement fraud. This research was conducted to ascertain the value of computer forensics in the investigation of procurement fraud. Further, the study sought to determine how to improve the CoT forensic investigators’ knowledge and competence regarding the application of computer forensics in the investigation of procurement fraud. The purpose of this study was to explore the procedures that should be followed by CoT forensic investigators when conducting computer forensics during the investigation of procurement fraud. The research also aimed to discover new information, not previously known to the researcher, related to computer forensics during the investigation of procurement fraud by exploring national and international literature. In addition, the study explored existing practices so as to use this information to improve the current CoT procedure, within the confines of the legislative requirements. The overall purpose of this study is to provide practical recommendations for best practices, based on the results of the data analysis, which address the problem and enhance the investigative skills of CoT forensic investigators. The study established that it is imperative and compulsory to apply computer forensics in any procurement fraud investigation in order to efficiently track down cyber criminals and solve complicated and complex computer crimes. It was also established that forensic investigators within the FS in the CoT lack the necessary computer skills to optimally investigate procurement fraud. It is therefore recommended that CoT forensic investigators acquire the necessary skills and essential training in computer forensics in order to improve their knowledge and competence regarding the application and understanding of the value of computer forensics in the investigation of procurement fraud. / School of Criminal Justice / M.Tech. (Forensic Investigation)

Forensic investigation

Computer forensics

Procurement fraud

Computer investigation

Red flags

Computer evidence

Network forensics

Kickbacks

Conflict of interest

Bid rigging

363.2596309682275

Om informationstekniskt bevis

Ekfeldt, Jonas

January 2016

Information technology evidence consists of a mix of representations of various applications of digital electronic equipment, and can be brought to the fore in all contexts that result in legal decisions. The occurrence of such evidence in legal proceedings, and other legal decision-making, is a phenomenon previously not researched within legal science in Sweden. The thesis examines some of the consequences resulting from the occurrence of information technology evidence within Swedish practical legal and judicial decision-making. The thesis has three main focal points. The first consists of a broad identification of legal problems that information technology evidence entails. The second focal point examines the legal terminology associated with information technology evidence. The third focal point consists of identifying sources of error pertaining to information technology evidence from the adjudicator’s point of view. The examination utilizes a Swedish legal viewpoint from a perspective of the public trust in courts. Conclusions include a number of legal problems in several areas, primarily in regards to the knowledge of the adjudicator, the qualification of different means of evidence and the consequences of representational evidence upon its evaluation. In order to properly evaluate information technology evidence, judges are – to a greater extent than for other types of evidence – in need of (objective) knowledge supplementary to that provided by parties and their witnesses and experts. Furthermore, the current Swedish evidence terminology has been identified as a complex of problems in and of itself. The thesis includes suggestions on certain additions to this terminology. Several sources of error have been identified as being attributable to different procedures associated with the handling of information technology evidence, in particular in relation to computer forensic investigations. There is a general need for future research focused on matters regarding both standards of proof for and evaluation of information technology evidence. In addition, a need for deeper legal scientific studies aimed at evidence theory has been identified, inter alia regarding the extent to which frequency theories are applicable in respect to information technology evidence. The need for related further discussions on future emerging areas such as negative evidence and predictive evidence are foreseen.

accountability

audit trail

authenticity

computer evidence

criminal procedure

data quality

digital evidence

digital images

digital traces

electronic evidence

evaluation of evidence

evidence law

evidence terminology

evidential value

evidentiary facts

forensic evidence

handling of evidence

ict-evidence

informatics

information quality

information representation

information security

it-evidence

law and information technology

legal evidence

log

log analysis

machine identity

means of evidence

personal identity

reliability

representation information

screen dump

sources of error

traceability

validity

autenticitet

bevisfakta

bevismedel

bevishantering

bevisprövning

bevisrätt

bevisterminologi

bevisvärdering

datakvalitet

digitala bevis

digitala bilder

digitala spår

elektroniska bevis

elektroniska spår

felkällor

filer

forensiska bevis

ikt

informatik

informationskvalitet

informationsrepresentation

informationsteknik

informationstekniskt bevis

it-bevis

it-säkerhet

juridiskt bevis

logganalys

maskinell identitet

personell identitet

principen om fri bevisprövning

representationsinformation

riktighet

rättsinformatik

skärmdump

spårbarhet

straffprocessrätt