Scribd Logo
Upload

Welcome to Scribd!

  • INTRODUCTION

    Uploaded by

    LeNantais Sonderangebote
    4 views13 pages

    Original Title

    INTRODUCTION.pptx

    Copyright

    © © All Rights Reserved

    Available Formats

    PPTX, PDF, TXT or read online from Scribd

    Did you find this document useful?

    Is this content inappropriate?

    Report this Document

    Copyright:

    © All Rights Reserved
    Download as PPTX, PDF, TXT or read online from Scribd
    Flag for inappropriate content
    4 views13 pages

    INTRODUCTION

    Uploaded by

    LeNantais Sonderangebote

    Copyright:

    © All Rights Reserved
    Download as PPTX, PDF, TXT or read online from Scribd
    Flag for inappropriate content
    of 13

    INTRODUCTION:

    ISS407 & ISS402


    COMPUTER FORENSIC
    &
    INCIDENCE RESPONSE

    Charly BENDOBAK Université De Yaoundé I


    MOTIVATION:

    • Sécurisation des informations

    • Protection de la vie privé

    • Assurance de la performance
    COMPUTER FORENSICS

    The application of forensic


    science techniques to
    computer-based material, the
    process of identifying,
    preserving, analyzing, and
    presenting digital evidence in
    a
    manner that is acceptable to
    COMPUTER FORENSICS

    Computer forensics is the process of


    methodically examining computer
    media (hard disks, diskettes, tapes,
    etc.) for evidence.
    Computer forensics is also referred to
    as
    computer forensic analysis, electronic
    discovery, electronic evidence
    discovery,
    digital discovery, data recovery, data
    discovery, computer analysis, and
    COMPUTER FORENSICS

    Digital forensics is the use of scientifically


    derived and proven methods toward the
    preservation, collection, validation,
    identification, analysis, interpretation,
    documentation, and presentation of digital
    evidence derived from digital sources for
    the purpose of facilitation or furthering the
    reconstruction of events found to be
    criminal, or helping to anticipate
    unauthorized actions shown to be
    disruptive to planned operations.
    INFORMATION SECURITY INCIDENT

    A security incident is a change of state


    in a
    bounded information system from the
    desired state to an undesired state,
    where
    the state change is caused by the
    application of a stimulus external to the
    system.
    BASIC TYPES OF INFORMATION SECURITY INCIDENT

    Fraud

    Dos

    Intrusion

    Infection(virus, ver…)
    INCIDENT RESPONSE

    Incident response:
    procedures that mitigate
    the immediate impact of the
    threat, eliminate any
    possible consequential loss
    and prevent any possible
    future recurrence
    AVANT L’INCIDENT

     Prévention

     Alarme et indications

     Dissuasion

     Crime ou politique de violation


    APRES L’INCIDENT

     Detection

     Réaction
     Circonscrire / recouvrir / endurcir

     Législation / politique

     Investigation, notification, poursuite en justice,


    riposter
    INCIDENT RESPONSE : METHODOLOGIE

    Interdiction: stopper ou
    interrompre l’incident
    Confinement: isoler/prevenir la
    propagation
    Recouvrement: dernier état
    cohérent
    Analyse de la cause
    principale de l’incident
    LES ACTEURS DU COMPUTER FORENSICS

    You might also like