Postgraduate Course: Forensic Computing and Electronic Evidence (LAWS11174)
Course Outline
| School | School of Law |
College | College of Humanities and Social Science |
| Credit level (Normal year taken) | SCQF Level 11 (Postgraduate) |
Availability | Available to all students |
| SCQF Credits | 20 |
ECTS Credits | 10 |
| Summary | The purpose of the "Forensic Computing and Electronic Evidence" module is to provide an introduction to the practical aspects of forensic computing investigations, and to offer a legal overview of legislation and the main legal issues related to cyber-crime and computer forensics.
Session titles are:
-Cyber-crimes
-Computer vulnerabilities
-'Deleted' data & evidence recovery
-Cyber-crime: the legal view
-Investigative process
-Beyond the PC: evidence recovery from networks & the internet
-Beyond keywords: finding & analyzing electronic evidence
-Beyond cyber-crime legislation: legal issues in electronic evidence
-Before & after an investigation: forensic readiness, experts in the courtroom
-Future challenges |
| Course description |
Not entered
|
Entry Requirements (not applicable to Visiting Students)
| Pre-requisites |
|
Co-requisites | |
| Prohibited Combinations | |
Other requirements | None |
| Additional Costs | Students should have regular and reliable access to the Internet.
Print consumables (paper and ink) would be recommended to provide hard copy of some on screen text and materials (e.g. articles).
|
Information for Visiting Students
| Pre-requisites | None |
Course Delivery Information
|
| Academic year 2014/15, Available to all students (SV1)
|
Quota: None |
| Course Start |
Semester 2 |
Timetable |
Timetable |
| Learning and Teaching activities (Further Info) |
Please contact the School directly for a breakdown of Learning and Teaching Activities |
| Assessment (Further Info) |
Please contact the School directly for a breakdown of Assessment Methods
|
| Additional Information (Assessment) |
One essay of up to 4,000 words (60%); one piece of assessed work (20%); contribution to online discussions (20%). |
| Feedback |
Not entered |
| No Exam Information |
Learning Outcomes
Summary of intended learning outcomes
The aims of this module are to:
-investigate cyber-crimes and the electronic evidence that they generate;
-describe ways of finding, recovering and analyzing electronic evidence from individual computers and from networks;
-explore legislation related to cyber-crime, including some substantive and procedural law provisions from US, Europe and the UK;
-recommend procedural approaches to evidence gathering, to presenting evidence in court, and to making preparations for potential cyber-crime incidents.
By the end of this module, you will be able to:
-critically discuss the main kinds of cyber-crimes, and commonly exploited computer vulnerabilities;
-relate the importance of electronic evidence and assess the level of access required to obtain certain electronic information;
-outline the main European, US and UK legislation relating to cyber-crime and to electronic evidence, and of some strengths, weaknesses and controversial issues;
-understand the practical problems of discovering electronic evidence and gain some basic experience in electronic evidence acquisition;
-make deductions and build a case based on electronic evidence;
-apply some 'best practices' in preparing for incidents of computer mis-use, responding to incidents, and presenting electronic evidence in the courtroom;
-analyse future challenges related to electronic evidence.
|
Contacts
| Course organiser | Prof Burkhard Schafer
Tel: (0131 6)50 2035
Email: B.Schafer@ed.ac.uk |
Course secretary | Mr Douglas Thompson
Tel: (0131 6)50 2022
Email: D.Thompson@ed.ac.uk |
|
© Copyright 2014 The University of Edinburgh - 12 January 2015 4:16 am
|
University Homepage