The Importance of Accurate Time Determination When Evaluating Digital Analysis

Date:
Wednesday 25 February 2009

Time:
6.00pm for 6.30pm to 8.00pm

Speaker:
John Mitchell, PhD, CEng, CITP, MBA, FBCS, MBCS, CISA, CGEIT, FIIA, MIIA, QiCA, CFE, Managing Director, LHS Business Control

Venue:
Southampton Solent University, ground floor of the Herbert Collins Building, room HC 031

Joint with the BCS Hampshire Branch and the newly formed BCS Cybercrime Forensics SG.

This is suitable for those interested in Computer Security, Risk Management and Computer Law.

The examination of digital evidence is an excursion into the past, but just like any time traveller we need to know where in the past we have travelled to. The time shown against a transaction, or recorded in a log file is often critical to the investigator, the prosecution and the defence, but how can we determine its accuracy? This session will provide real world examples of where the accuracy of the recorded time was critical to the case and how it was proved, or disproved.

John is is a Chartered Engineer, Chartered Information Technology Professional, a Certified Fraud Examiner, a Certified Information Systems Auditor, a Fellow of the Institute of Internal Auditors (UK) and a Fellow of BCS. He teaches and practice forensic computing in both the academic and commercial areas and has been an expert adviser and witness in a number of UK commercial and criminal cases. He has been featured in a major British computing publication as the 'IT Detective'. He also holds ISACA's International Systems & Control Association prestigious John Kuyers award for best conference contributor.

View the presentation from this event (PDF)