A Study On Forensic Forensics

1420 Words6 Pages
explain that these challenges are the result of frequent updates to the operating system and the constant attempts to communicate externally. Accordingly, it is imperative that forensic examiners employ proper evidence handling of mobile devices to prevent contamination and/or data destruction. For this reason, forensic examiners should employ a mobile forensic process that will provide the necessary procedures to follow for conducting a forensically sound investigation. As a result, the process model for mobile forensics will encompass four phases. Ayers et al. (2014) describes these phases as:
• Preservation, which encompasses searching, recognition, documentation, and collection of digital evidence to ensure admissibility in a court of
…show more content…
• Reporting, this provides a detailed report describing procedures, observations, and results. For this reason, it is imperative that the forensic examiner maintains all documentation, notes, images, and steps taken in a clear and concise manner that can be repeated by another forensic examiner.
Strengths and Weaknesses
There are a few advantages of the forensic methodology regarding mobile forensics. One of the advantages is the ability to search a digital device that 64% of Americans utilize on a daily basis. As a result, this media permits forensic examiners to acquire, analyze, and examine texts, emails, phone calls, images, and internet history. Also, since current smartphones are heavily employed for GPS, location tracking is also possible. Additionally, there have been advances in forensic tools that are exclusive for mobile forensics that were developed by companies like Cellebrite and MSAB (XRY tool).
However, even though there are specialized forensic tools available, they are not completely reliable. Gogolin (2013) attributes this to the misperception that a mobile forensic tool can be reliably employed for every device, when in fact it may not support as many devices as advertised. Additionally, Raghav and Saxena (2009) describe several challenges that examiners may encounter, for example:
• is the mobile device functional or has it been damaged (water or physical damage);
• the type of mobile device (smartphone or
Get Access