Previous article in series – Digital Forensics: Identification, Collection, and Preservation of Digital Evidence Maintaining evidence from collection to trial is a critical part of digital forensics. You should have policies and procedures in place for the collection and management of evidence. In some cases, you may need to collect digital evidence on short notice….
Digital Forensics: Identification, Collection, and Preservation of Digital Evidence
Previous article in series – Digital Forensics: E-Discovery Service Types & Legal Terms ISO/IEC 27037 offers guidance on identifying potential data sources and acquiring the data from the sources. Data acquisition should be performed using a three-step process: Develop a plan to acquire the data: Developing a plan is an important first step in most…
Digital Forensics: E-Discovery Service Types & Legal Terms
Previous article in series – Digital Forensics: Preparing for a Legal Hold E-Discovery Service Types SaaS-based: To some, “e-discovery in the cloud” means using the cloud to deliver tools used for e-discovery. SaaS packages typically cover one of several e-discovery tasks, such as collection, preservation, or review. Hosted e-discovery (provider): In the cloud, e-discovery can…
Digital Forensics: Preparing for a Legal Hold
Previous article in series – Digital Forensics: E-Discovery Preparing for a legal hold or e-discovery may include the following: Consideration of the SLA and contract agreements to ensure that investigations of cloud-based assets are permitted, or to check if prior notification and acceptance are required Contract agreements, explicitly stating the communication path between court participants…
Digital Forensics: E-Discovery
Previous article in series – Digital Forensics: Challenges & Recommendations What is E-Discovery? Electronic discovery (e-discovery) is the identification, preservation, collection, processing, review, analysis, or production of electronically stored information. Often it is the support mechanism and the impetus for investigations, data acquisition, and insight-driven initiatives. To properly manage e-discovery a multidisciplinary team needs to…
Digital Forensics: Challenges & Recommendations
Welcome to the fun world of Digital Forensics! *ahem* It’s even more fun on the Cloud. Gathering evidence is a crucial part of digital forensics, cloud or otherwise. Therefore, it is important to identify challenges before you begin the process. Key challenges to keep in mind are – The seizure of servers containing files from…
Corporate & Cloud Governance
Policies are the foundation of corporate governance. They require penalties as well as senior management sponsorship to be effective. Policies are created in response to a requirement such as a standard or requirement benchmark. This standard is the result of either a regulation, which is a legislative requirement, or a contractual requirement such as a…
Creating a notification for every time a file is uploaded to an S3 bucket
Step 1 – Create S3 bucket Navigate to Amazon S3 dashboard Click on Create bucket Bucket name: provide a unique name Leave everything else as default Click on Create bucket Step 2 – Create SNS Topic Navigate to Amazon SNS dashboard Click on Topics on the left menu Click on Create Topic Select Standard Topic…
QuickGuide: Allowing EC2 access to S3 and other AWS Services
Navigate to IAM Dashboard Click on Roles on the left menu Click on Create role Select AWS service as the type of trusted entity Select EC2 as the use case Click on Next: Permissions In the Search bar, type in the name of the service you want EC2 to access, for instance S3 or DynamoDB…
Cloud Service Agreement
There are thousands of cloud service providers in the marketplace with hundreds being added every day. Since there are no industry-wide required governance standards or service descriptions, the cloud service customer must closely review and understand the following cloud service contractual documents. Although details will vary, cloud service providers should always offer a cloud customer…