Authors:
- Enhanced new edition featuring expanded content on corporate forensics (incident response and management), ethical issues, SQLite databases, forensic triage, and memory analysis
- Presents a strong theoretical discussion on forensic concepts and important considerations during a forensic examination
- Contains a detailed section that describes and discusses important artifacts
- Provides review questions and practice tasks at the end of most chapters, and supporting video lectures on YouTube
Buy it now
Buying options
Tax calculation will be finalised at checkout
Other ways to access
This is a preview of subscription content, log in via an institution to check for access.
Table of contents (21 chapters)
-
Front Matter
-
Part III
-
Front Matter
-
About this book
This practical and accessible textbook/reference describes the theory and methodology of digital forensic examinations, presenting examples developed in collaboration with police authorities to ensure relevance to real-world practice. The coverage includes discussions on forensic artifacts and constraints, as well as forensic tools used for law enforcement and in the corporate sector. Emphasis is placed on reinforcing sound forensic thinking, and gaining experience in common tasks through hands-on exercises.
This enhanced second edition has been expanded with new material on incident response tasks and computer memory analysis.
Topics and features:
- Outlines what computer forensics is, and what it can do, as well as what its limitations are
- Discusses both the theoretical foundations and the fundamentals of forensic methodology
- Reviews broad principles that are applicable worldwide
- Explains how to findand interpret several important artifacts
- Describes free and open source software tools, along with the AccessData Forensic Toolkit
- Features exercises and review questions throughout, with solutions provided in the appendices
- Includes numerous practical examples, and provides supporting video lectures online
This easy-to-follow primer is an essential resource for students of computer forensics, and will also serve as a valuable reference for practitioners seeking instruction on performing forensic examinations.
Joakim Kävrestad is a lecturer and researcher at the University of Skövde, Sweden, and an AccessData Certified Examiner. He also serves as a forensic consultant, with several years of experience as a forensic expert with the Swedish police.
Authors and Affiliations
-
School of Informatics, University of Skövde, Skövde, Sweden
Joakim Kävrestad
About the author
Bibliographic Information
Book Title: Fundamentals of Digital Forensics
Book Subtitle: Theory, Methods, and Real-Life Applications
Authors: Joakim Kävrestad
DOI: https://doi.org/10.1007/978-3-030-38954-3
Publisher: Springer Cham
eBook Packages: Computer Science, Computer Science (R0)
Copyright Information: Springer Nature Switzerland AG 2020
Softcover ISBN: 978-3-030-38953-6Published: 20 May 2020
eBook ISBN: 978-3-030-38954-3Published: 19 May 2020
Edition Number: 2
Number of Pages: XIII, 268
Number of Illustrations: 116 b/w illustrations, 27 illustrations in colour
Topics: Systems and Data Security, Image Processing and Computer Vision, Crime Control and Security