Module Descriptors
DIGITAL FORENSICS
COMP70078
Key Facts
Digital, Technology, Innovation and Business
Level 7
40 credits
Contact
Leader: Pantaleon Lutta Odongo
Email: pantaleon.lutta@staffs.ac.uk
Hours of Study
Scheduled Learning and Teaching Activities: 110
Independent Study Hours: 290
Total Learning Hours: 400
Assessment
- WRITTEN REPORT - 3000 WORDS weighted at 50%
- EXAMINATION - 30 MINUTES weighted at 20%
- MOOT COURT - 20 MINUTES weighted at 30%
Module Details
LEARNING OUTCOMES
Module Learning Outcome
1. Discuss critically forensic computing concepts, guidelines, procedures, techniques and components in relation to a typical computer system.
University Learning Outcome
Analysis,
Application,
Knowledge & Understanding
Module Learning Outcome
2. Critically document the locations of forensically significant data and the means to recover this information using a variety of advanced industrial standard techniques.
University Learning Outcome
Analysis,
Application,
Problem Solving
Module Learning Outcome
3. Conduct a practical forensic investigation of a digital evidence source, utilising digital forensic guidelines to collect and present digital evidence.
University Learning Outcome
Knowledge & Understanding,
Learning,
Reflection,
Application
Module Learning Outcome
4. Understand and explain the legal requirements of a forensic examination to ensure that findings of examinations are admissible in court.
University Learning Outcome
Application,
Knowledge & Understanding,
Reflection,
Learning
1. Discuss critically forensic computing concepts, guidelines, procedures, techniques and components in relation to a typical computer system.
University Learning Outcome
Analysis,
Application,
Knowledge & Understanding
Module Learning Outcome
2. Critically document the locations of forensically significant data and the means to recover this information using a variety of advanced industrial standard techniques.
University Learning Outcome
Analysis,
Application,
Problem Solving
Module Learning Outcome
3. Conduct a practical forensic investigation of a digital evidence source, utilising digital forensic guidelines to collect and present digital evidence.
University Learning Outcome
Knowledge & Understanding,
Learning,
Reflection,
Application
Module Learning Outcome
4. Understand and explain the legal requirements of a forensic examination to ensure that findings of examinations are admissible in court.
University Learning Outcome
Application,
Knowledge & Understanding,
Reflection,
Learning
ADDITIONAL ASSESSMENT DETAILS
Written Report – This will assess students understanding of the science of the digital forensics, methodologies, tools, techniques, and standards used in forensic investigations. As a forensic investigator, students will need to conduct a digital forensic investigation in the course of a criminal investigation of a given offence. They will be required to obtain and present any located evidence suggesting criminality, or any information of note e.g. account names, passwords, images, and files etc. (Learning Outcomes 1 to 3).
Examination - The examination will test the students knowledge of forensic practices, policies, procedures and legal requirements (Learning Outcome 4).
Moot Court – The moot court will test the students ability to justify and explain the processes, techniques, tools and terminology utilised within a digital forensic examination in the setting of an expert witness. (Learning Outcome 4)
Examination - The examination will test the students knowledge of forensic practices, policies, procedures and legal requirements (Learning Outcome 4).
Moot Court – The moot court will test the students ability to justify and explain the processes, techniques, tools and terminology utilised within a digital forensic examination in the setting of an expert witness. (Learning Outcome 4)
INDICATIVE CONTENT
The module will cover the following topics:
Introduction to Digital Forensics/The Scope of Computer Forensics
Computer File Systems and Architecture
Incidence response
Acquiring Evidence in a Computer Forensics Lab
Online Investigations
Documenting the Investigation
Digital Evidence
Network Forensics
Mobile Forensics
Vehicle Forensics
Forensic Intersectionality
Processing Digital Crime Scenes
EnCase, FTK Imager, Cellebrite, Autopsy, XRY, Wireshark, as well as standard literary requirements.
Introduction to Digital Forensics/The Scope of Computer Forensics
Computer File Systems and Architecture
Incidence response
Acquiring Evidence in a Computer Forensics Lab
Online Investigations
Documenting the Investigation
Digital Evidence
Network Forensics
Mobile Forensics
Vehicle Forensics
Forensic Intersectionality
Processing Digital Crime Scenes
EnCase, FTK Imager, Cellebrite, Autopsy, XRY, Wireshark, as well as standard literary requirements.
WEB DESCRIPTOR
A digital forensic investigation is a special case of investigation where the procedures and techniques (and their use) that are used to gain evidence from target digital devices are critical in order that findings can be presented in a Court of Law. The analysis of digital evidence is a very structured and formal process. This module will allow learners to develop knowledge and understanding of digital forensics, focusing on different platforms (computers, mobile phones, smartphones, and vehicles). A key objective of this module is to introduce the principles of digital forensic investigation.
TEXTS
All texts and electronic resources will be updated and refreshed on an annual basis and available for students via the online Study Links resource platform. All reference materials will be collated and curated and aligned to Equality, Diversity & Inclusion indicators.
Madsen, T. (2022), Security Architecture – How & Why (River Publishers Series in Security and Digital Forensics), River Publishers; 1st edition
Holt, T, J et. al. (2022), Cybercrime and Digital Forensics: An Introduction, Routledge; 3rd edition
Johansen, G, (2022), Digital Forensics and Incident Response: Incident response tools and techniques for effective cyber threat response, 3rd Edition, Packt Publishing; 3rd edition
Oettinger, G. (2022), Learn Computer Forensics: Your one-stop guide to searching, analyzing, acquiring, and securing digital evidence, 2nd Edition, Packt Publishing; 2nd edition
Mullins, M. (2022), Cyber Security Awareness: Employee Handbook, Kindle Edition
Anderson, R. (2021), Security Engineering: A Guide to Building Dependable Distributed Systems, 3rd Edition, Wiley, 3rd Edition
Kävrestad, J. (2020) Fundamentals of Digital Forensics. Springer International Publishing.
Le-Khac, N. A., & Choo, K. K. R. (2020) Cyber and Digital Forensic Investigations. Springer International Publishing.
Casey, E. (2019) Handbook of digital forensics and investigation. Academic Press.
Sheward, M., (2018). Hands-on incident response and digital forensics. BCS Publishing
Hayes, D. R. (2020) A Practical Guide to Computer Forensics Investigations. Pearson Education.
IEEE Transactions on Information Forensics and Security
IEEE Security & Privacy
ScienceDirect - Forensic Science International: Digital Investigation
Madsen, T. (2022), Security Architecture – How & Why (River Publishers Series in Security and Digital Forensics), River Publishers; 1st edition
Holt, T, J et. al. (2022), Cybercrime and Digital Forensics: An Introduction, Routledge; 3rd edition
Johansen, G, (2022), Digital Forensics and Incident Response: Incident response tools and techniques for effective cyber threat response, 3rd Edition, Packt Publishing; 3rd edition
Oettinger, G. (2022), Learn Computer Forensics: Your one-stop guide to searching, analyzing, acquiring, and securing digital evidence, 2nd Edition, Packt Publishing; 2nd edition
Mullins, M. (2022), Cyber Security Awareness: Employee Handbook, Kindle Edition
Anderson, R. (2021), Security Engineering: A Guide to Building Dependable Distributed Systems, 3rd Edition, Wiley, 3rd Edition
Kävrestad, J. (2020) Fundamentals of Digital Forensics. Springer International Publishing.
Le-Khac, N. A., & Choo, K. K. R. (2020) Cyber and Digital Forensic Investigations. Springer International Publishing.
Casey, E. (2019) Handbook of digital forensics and investigation. Academic Press.
Sheward, M., (2018). Hands-on incident response and digital forensics. BCS Publishing
Hayes, D. R. (2020) A Practical Guide to Computer Forensics Investigations. Pearson Education.
IEEE Transactions on Information Forensics and Security
IEEE Security & Privacy
ScienceDirect - Forensic Science International: Digital Investigation
RESOURCES
Cellebrite
Wireshark
FTK Imager
EnCase
Autopsy
XRY
Machines and Devices for seizing and imaging
Wireshark
FTK Imager
EnCase
Autopsy
XRY
Machines and Devices for seizing and imaging