Digital Forensic Investigations
Fakultät für Informatik und Mathematik ©
Name Digital Forensic Investigations
Verantwortlich Prof. Dr. Alf Zugenmaier
SWS 4
ECTS 5
Sprache(n) Englisch
Lehrform SU
Angebot nach Ankündigung
Aufwand

to be updated

Voraussetzungen

to be updated

Ziele

to be updated

Traditionally the art of forensics involves gathering of evidence related to some kind of crime that is being investigated. This involves finding clues by an investigation squad in order to determine who the perpetrator of the crime is. The most well-known example of evidence in such a case is to find DNA of a suspected perpetrator on a crime scene in a bid to find out if it matches. If a positive DNA match is found, it is used as evidence in a court of law. Digital forensics is no different from traditional forensics, except that the evidence being searched for by a digital forensics investigation squad, resides on digital devices and/or media, such as a computer hard drive or a cell phone. The big difference here is that one attempts to find evidence that is intangible and, hence, it is more difficult to prove the evidence in a court of law. There are many other interesting challenges in digital forensics, such as preserving the data on a digital device in order to prove that it was not modified by the investigation squad, as well as challenges in applying common law to digital forensic investigations.

Inhalt

to be updated

  • Relevante Grundlagen (z.B. IT Sicherheit, Netzwerken, Betriebssystemen, etc)
  • Vorgehensmodell
  • Prozesse, Methoden und Werkzeuge zur Beweissicherung
  • Prozesse, Methoden und Werkzeuge zur Analyse und Bewertung der gesicherten Daten
  • Reverse Engineering von Schadcode
Medien und Methoden

Veranstaltungsspezifische Website, Moodle, Tafel und Folien (Powerpoint)

Literatur

to be updated

Lorenz Kuhlee, Victor Völzow: Computer-Forensik Hacks. O'Reilly Verlag, Köln 2012, ISBN 978-3-86899-121-5.

Jörg Meyer: Forensische Datenanalyse. 1. Auflage. Erich Schmidt Verlag, Berlin 2012, ISBN 978-3-50313-847-0.

Sherri Davidoff und Jonathan Ham: Network Forensics: Tra-cking Hackers Through Cyberspace, Prentice Hall Internatio-nal, 2012

Alexander Geschonneck, Computer-Forensik: Computerstraf-taten erkennen, ermitteln, aufklären, 2011

Zuordnungen Curricula
SPO Fachgruppe Code ab Semester Prüfungsleistungen
IC Version 2012 WPF Informatik IF-S-B-ISS16A 4 je nach Fach
IF Version 2012 FWP IF-I-B-FSS16A 4 je nach Fach
IC Version 2017 WPF Informatik IF-S-B-ISS16A 4 je nach Fach