Document Actions
Forensic
The Network Forensic activity has twofold objective:
Other objectives are:
These activities are conformed to standards, methodologies and best practicals as FIRST (Forum of Incident Response and Security Team), CERT, NIST (National Institute of Standards and Technology) and FBI.
- To identify the causes of illegal activities
- To allow to introduce valid proof in case of appeal in Court
Other objectives are:
- To find occurred damages in the network
- The evaluation of impacts in data, services and systems in case of attacks, incident and occurred or potential damages
- To restore the network security
- To identify the traces left by an occurred or in progress damage
- To identify the attack route and the attacker
- To value the occurred attacks and if the network and system security level is due
- To individualize illegal, not authorized or industrial espionage activity
These activities are conformed to standards, methodologies and best practicals as FIRST (Forum of Incident Response and Security Team), CERT, NIST (National Institute of Standards and Technology) and FBI.