By Tom Espiner
03 Dec 2008
Firms should put in place forensics plans for incidents that may require
computer evidence to be handed over, according to an influential
The Information Assurance Advisory Council (IAAC) published a report on
Tuesday that aims to provide organisations with guidance on retaining
computer forensics evidence.
Evidence of disputed transactions, suspected fraud, complaints of
negligence, cyberattacks and theft of data is required to support an
organisation's position in legal proceedings, according to the
Directors' and Corporate Advisors' Guide to Digital Investigations and
Formulating a "forensics readiness plan" would enable organisations to
be prepared for high-frequency, low-impact situations, and should go
hand in hand with a disaster-recovery plan, according to the report's
author, professor Peter Sommer.
Help InfoSecNews.org with a donation!