Module Two - Review

Which organization has guidelines on how to operate a digital forensics lab?

ANAB

Building a business case can involve which of the following? Procedures for gathering evidence Testing software Protecting trade secrets All of the above

All of the above

List two popular certification programs for digital forensics.

Any of the following: IACIS Certification ISFCE Certification GIAC Certification EnCE Certification ACE Certification

Why is physical security so critical for digital forensics labs?

Evidence integrity

A forensic workstation should always have a direct broadband connection to the Internet. True or False?

False

Digital forensics facilities always have windows. True or False?

False

Evidence storage containers should have several master keys. True or False?

False

If a visitor to your digital forensics lab is a personal friend, it's not necessary to have him or her sign the visitor's log. True or False?

False

The ANAB mandates the procedures established for a digital forensics lab. True or False?

False

The manager of a digital forensics lab is responsible for which of the following? (Choose all that apply.) Making necessary changes in lab procedures and software Ensuring that staff members have enough training to do the job Knowing the lab objectives None of the above

Making necessary changes in lab procedures and software Ensuring that staff members have enough training to do the job Knowing the lab objectives

Which organization provides good information on safe storage containers?

NISPOM

What items should your business plan include?

Physical security items, such as evidence lockers; number of machines are needed; what OSs your lab commonly examines; why you need certain software; and how your lab will benefit the company (such as being able to quickly exonerate employees or discover whether they're guilty)

Typically, a(n) __________ lab has a separate storage area or room for evidence.

Regional

What three items should you research before enlisting in a certification program?

Requirements Cost Acceptability in your chosen area of employment.

What term refers to labs constructed to shield EMR emissions?

TEMPEST

An employer can be held liable for e-mail harassment. True or False?

True

Large digital forensics labs should have at least ___ exits.

Two

To determine the types of operating systems needed in your lab, list two sources of information you could use.

Uniform Crime Report statistics for your area and a list of cases handled in your area or at your company.