Train From Home on Your Schedule with OnDemand - Special Offers Available Now


Subscribe to SANS Newsletters

Join the SANS Community to receive the latest curated cyber security news, vulnerabilities and mitigations, training opportunities, and our webcast schedule.

Survey Explores Legal and Technical Ramifications of Digital Forensics across Networks, Devices and into the Cloud

  • Bethesda, MD
  • April 24, 2013

With digital investigations evolving to include numerous devices, applications and mediums, the SANS Institute is embarking on a new survey about modern-day digital forensics investigations. The survey is being sponsored by Guidance Software, Bit9, Cellebrite, and FireEye.

"Today's investigations involve more than just clients, servers, networks and the Internet. For example, the evidence that's recoverable from mobile devices is revolutionizing the dynamics and outcome of digital investigations," says SANS forensics and virtualization instructor, Paul A. Henry, who is co-authoring the survey report to be released during a SANS webcast July 18, 2013 at 1 PM EDT.

Ben Wright, a SANS legal security instructor and cyber attorney who is also co-author of the report, adds "information such as the device's location, for example, can be tracked and used as evidence. It is no longer simply where you are, but perhaps who you are that can be surmised. Knowing a user's location over time can provide insight into where a user has been and perhaps what that user values. Values can reveal intention and motivation."

The survey's goal is to find out how organizations and enforcement agencies go about conducting digital investigations that traverse various devices and networks, and how well their tools and processes are working out, including from a legal and regulatory perspective.

For example, how are organizations managing investigations that take them into the public cloud, social networks and collaborative applications such as DropBox?

"Many of the organizations I work with adopted a strategy of 'ignore it and

maybe it will go away' with regards to cloud forensics," explains Jacob Williams, a forensics consultant and SANS co-instructor. "When hackers launched the Sony Playstation network attacks from the AWS cloud, these attitudes changed overnight."

By taking the survey you may also enter to win a $400 American Express Gift Card.

Follow this link to take the survey:

Results released in association with the SANS Digital Forensics and Incident Response Summit in Austin, July 10, with an associated webcast providing the results.

Attend the following for survey results: SANS Forensics for the Cloud age webcast scheduled for July 18 at 1 pm EDT. Registration for the webcast is open now. Those who register for the webcast will also receive an advanced copy of the published paper.

SANS Media Contact

About SANS Institute

The SANS Institute was established in 1989 as a cooperative research and education organization. Today, SANS is the most trusted and, by far, the largest provider of cyber security training and certification to professionals in government and commercial institutions worldwide. Renowned SANS instructors teach more than 60 courses at In-Person and Live Online cyber security training events, and more than 50 courses are available anytime, anywhere with our OnDemand platform. GIAC, an affiliate of the SANS Institute, validates practitioner skills through more than 35 hands-on, technical certifications in cyber security. The SANS Technology Institute, a regionally accredited independent subsidiary, offers a master’s degree, graduate certificates, and an undergraduate certificate in cyber security. SANS Security Awareness, a division of SANS, provides organizations with a complete and comprehensive security awareness solution, enabling them to easily and effectively manage their ‘human’ cybersecurity risk. SANS also delivers a wide variety of free resources to the InfoSec community including consensus projects, research reports, webcasts, podcasts, and newsletters; it also operates the Internet's early warning system – the Internet Storm Center. At the heart of SANS are the many security practitioners, representing varied global organizations from corporations to universities, working together to support and educate the global information security community. (