Our Services >> Training >> Courses

Electronic Data Discovery

Brief Description:

Rapid growth of technology applications and increasing connectivity and accessibility to the Internet is facilitating a significant increase in digital fraud. As a result the use of electronic media in every operation has led to an explosion of digital information (documents, emails, images, and videos, etc). Increasing prevalence of digital information requires more sophisticated data recovery and analysis tools to assist in detecting internal policy violations, reconstructing computer security incidents, troubleshooting operational problems, recovering from accidental system damage, and investigating cyber crimes.

Outline of Tutorial Contents:

  • Data Collection and Preservation
    • A physical backup also known as a bit stream image (bit-for-bit copy of the original media), including slack space, unallocated space and page file will be made
    • In order to ensure the Integrity of the data extracted, a digital signature that uniquely identifies data and has the property that changing a single bit in a data stream will yield a completely different message digest will be calculated using MD5 hashing algorithm
    • Complete chain of custody procedures will be followed to ensure the authenticity of the data recovered, preserved, and analyzed
  • Secure data recovery and analysis
    • Ambient data (data stored in non-traditional computer storage areas and formats) will be recovered. Ambient data is stored in Windows swap file, unallocated space and file slack that is inaccessible to the resident operating system. This is an area where the most important source for the evidence could be found
  • Analysis of modification, access and creation of digital information
    • Graphical timeline will be build to view the modified, access and creation times of all the digital content recovered. The timeline provides an insight into when the digital media is created first, when it was accessed, and when it was modified
  • Keyword mining and extraction
    • Analysis techniques that enable us to search for relevant information, develop insights and analyze the results in a fraction of the time and cost traditional keyword searches would require
  • Email analysis and mining
    • Email communication graphs will build to see communication patterns between individuals within the organization and outside the organization
    • Analysis from the email graphs will be performed that will provide insight into email deceptions and hidden patterns
    • Data recovery of relevant information within the emails will also be covered

<< Back to Course Listings

Copyright 2006-2010 CAaNES, LLC
Contact Us | Legal Notices | Privacy