100% satisfaction guarantee Immediately available after payment Both online and in PDF No strings attached
logo-home
Previously searched by you
Previously searched by you
logo
CHFI Final Exam Study Guide with 100% Verified Solutions $13.49   Add to cart
Quickly navigate to
Preview
  2.  
  3. Classroom
  4.  
  5. Classroom

Exam (elaborations)

CHFI Final Exam Study Guide with 100% Verified Solutions
 0 view  0 purchase
  • Course
  • Classroom
  • Institution
  • Classroom

CHFI Final Exam Study Guide with 100% Verified Solutions

Preview 4 out of 61  pages

Document information

  • October 22, 2024
  • 61
  • 2024/2025
  • Exam (elaborations)
  • Questions & answers

Subjects

  • chfi final exam study guide with 100 verified sol

Written for

  • Classroom
  • Classroom

Seller

avatar-seller
Examsplug

Reviews received

Content preview

CHFI Final Exam Study Guide with 100%
Verified Solutions



Imaging - ✔✔Duplicate data (bit-stream) to preserve the original data



Exceptions to 4th amendment.

Conditions required toSeize without a Warrant. - ✔✔1. NO reasonable expectation of privacy.

2. Falls within an established exception to the warrant requirement.



Electronic Communications Service (ECS) - ✔✔Any service which provides the ability to
send or receive electronic communications.



Remote Computing Service (RCS) - ✔✔Computer storage or processing services provided by
electronic communications,



Electronic Communications Privacy act (ECPA) applies to: - ✔✔communications that include
e-mail, text messaging, networking software, blogs, and video conferencing.

,Requires subpoena, warrant or court order in order to force disclosure.



Electronic Communications Privacy act (ECPA)

classes of information: - ✔✔Basic subscriber information,

Records or Information pertaining to customer or subscriber.

Contents in USC 2510



Computer records fall into what 3 categories? - ✔✔1. Computer Generated.

2. Computer Stored.

3. Both Generated and Stored



They require authentication.



Plain View Policy - ✔✔Officer or agent has the ability to seize objects without a

warrant, when they are somewhere they have legal authority to be, and

they immediately recognize the object as illegal.



4th Amendment - ✔✔Right or expectation of Privacy

Governs the lawful search of a person, place, or thing.



Digital Evidence is defined as: - ✔✔Information of "probative value"

that is stored or transmitted in digital form.

,Anti-Digital Forensic techniques: - ✔✔Overwriting data (Wiping).

Exploitation of bugs in forensic tools.

Obfuscation.

Hiding Data (Steganography, Cryptography, low-tech...)



Volatile Data - ✔✔Can be modified, rapidly.




Non-Volatile data - ✔✔Secondary storage of data.

Long term, persistent data.



Transient Data - ✔✔Programs that reside in memory and cache data.

(i.e. network connection, user logout, ...)



Fragile Data - ✔✔Data temporarily saved to the hard disk and can be changed. (i.e. time
stamps, access times...)



Temporarily-Accessible Data - ✔✔Stored on hard disk and are accessible for a certain amount
of time.



Active Data - ✔✔Data used for daily operations.

, Archival Data - ✔✔long term storage of data.




Backup Data - ✔✔Copy of system data, used for the recovery process.




Residual Data - ✔✔Data stored on a computer. in unassigned storage space, after it is deleted.




Metadata - ✔✔data about a particular document.




Rules for allowing duplicate evidence. - ✔✔Original evidence is not available, due to:

-Evidence destroyed due to an uncontrollable event (Fire/ Flood).

-Evidence destroyed in normal course of business.

-Original evidence in possession of a third party.



Sources of data for digital evidence. - ✔✔Server.

Storage devices.

Logs.

Internal hardware.



Swap file - ✔✔space on a hard disk, used as the virtual memory extension of a computer's
real memory (RAM).



Digital evidence tends to be what kind of evidence? - ✔✔Circumstantial Evidence

The benefits of buying summaries with Stuvia:

Guaranteed quality through customer reviews

Guaranteed quality through customer reviews

Stuvia customers have reviewed more than 700,000 summaries. This how you know that you are buying the best documents.

Quick and easy check-out

Quick and easy check-out

You can quickly pay through credit card or Stuvia-credit for the summaries. There is no membership needed.

Focus on what matters

Focus on what matters

Your fellow students write the study notes themselves, which is why the documents are always reliable and up-to-date. This ensures you quickly get to the core!

Frequently asked questions

What do I get when I buy this document?

You get a PDF, available immediately after your purchase. The purchased document is accessible anytime, anywhere and indefinitely through your profile.

Satisfaction guarantee: how does it work?

Our satisfaction guarantee ensures that you always find a study document that suits you well. You fill out a form, and our customer service team takes care of the rest.

Who am I buying these notes from?

Stuvia is a marketplace, so you are not buying this document from us, but from seller Examsplug. Stuvia facilitates payment to the seller.

Will I be stuck with a subscription?

No, you only buy these notes for $13.49. You're not tied to anything after your purchase.

Can Stuvia be trusted?

4.6 stars on Google & Trustpilot (+1000 reviews)

83750 documents were sold in the last 30 days

Founded in 2010, the go-to place to buy study notes for 14 years now

Start selling
$13.49
  • (0)
  Add to cart