Title :
A review and comparative evaluation of forensics guidelines of NIST SP 800-101 Rev.1:2014 and ISO/IEC 27037:2012
Author :
Ajijola, Akinola ; Zavarsky, Pavol ; Ruhl, Ron
Author_Institution :
Inf. Syst. Security Manage., Concordia Univ. Edmonton, Edmonton, AB, Canada
Abstract :
In this paper, we present a review and comparative evaluation of forensics guidelines of NIST SP 800-101 Rev.1:2014 and ISO/IEC 27037:2012. This study proposes and analyzes an integrated implementation of these two forensic guidelines. The result of this will provide a forensic investigator with a good understanding of the two forensic standards, and present an opportunity to forensic investigators, organizations and jurisdictions that are compliant in one standard to realize the benefits of the other standard. As it is shown, no single standard addresses all processes of digital forensic investigations. This comparison identifies areas of forensics guidelines covered by each standard, commonalities and differences in the two standards, and their limitations.
Keywords :
IEC standards; ISO standards; digital forensics; ISO/IEC 27037:2012; NIST SP 800-101 Rev.1:2014; digital forensic investigations; forensic investigator; forensic jurisdictions; forensic organizations; forensic standards; forensics guidelines; Europe; Guidelines; IEC; ISO; ISO standards; NIST; chain of custody; digital evidence; digital handling process; forensic investigation; forensic tools;
Conference_Titel :
Internet Security (WorldCIS), 2014 World Congress on
Conference_Location :
London
DOI :
10.1109/WorldCIS.2014.7028169
