• DocumentCode
    252455
  • Title

    A review and comparative evaluation of forensics guidelines of NIST SP 800-101 Rev.1:2014 and ISO/IEC 27037:2012

  • Author

    Ajijola, Akinola ; Zavarsky, Pavol ; Ruhl, Ron

  • Author_Institution
    Inf. Syst. Security Manage., Concordia Univ. Edmonton, Edmonton, AB, Canada
  • fYear
    2014
  • fDate
    8-10 Dec. 2014
  • Firstpage
    66
  • Lastpage
    73
  • Abstract
    In this paper, we present a review and comparative evaluation of forensics guidelines of NIST SP 800-101 Rev.1:2014 and ISO/IEC 27037:2012. This study proposes and analyzes an integrated implementation of these two forensic guidelines. The result of this will provide a forensic investigator with a good understanding of the two forensic standards, and present an opportunity to forensic investigators, organizations and jurisdictions that are compliant in one standard to realize the benefits of the other standard. As it is shown, no single standard addresses all processes of digital forensic investigations. This comparison identifies areas of forensics guidelines covered by each standard, commonalities and differences in the two standards, and their limitations.
  • Keywords
    IEC standards; ISO standards; digital forensics; ISO/IEC 27037:2012; NIST SP 800-101 Rev.1:2014; digital forensic investigations; forensic investigator; forensic jurisdictions; forensic organizations; forensic standards; forensics guidelines; Europe; Guidelines; IEC; ISO; ISO standards; NIST; chain of custody; digital evidence; digital handling process; forensic investigation; forensic tools;
  • fLanguage
    English
  • Publisher
    ieee
  • Conference_Titel
    Internet Security (WorldCIS), 2014 World Congress on
  • Conference_Location
    London
  • Type

    conf

  • DOI
    10.1109/WorldCIS.2014.7028169
  • Filename
    7028169
    • Link To Document
    https://search.isc.ac/dl/search/defaultta.aspx?DTC=49&DC=252455