Best Practices - Standard Operating Procedures in Computer Forensics...

From: Matías Bevilacqua-Brechbühler Trabado (mbevilacquaat_private)
Date: Sat May 03 2003 - 06:36:10 PDT

Next message: Maria J. Vello: "RE: Computer Forensics"

Previous message: Ketil Fossum: "Re: Computer Forensics"
Next in thread: Juan Carlos Reyes Muñoz: "Re: Best Practices - Standard Operating Procedures in Computer Forensics..."
Reply: Juan Carlos Reyes Muñoz: "Re: Best Practices - Standard Operating Procedures in Computer Forensics..."
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Hi list,

I'm really pleased to see such a nice welcome to the project. I believe
that this is definitely the way to go.
I was considering waiting until Monday to get back on the list with more
information. I wanted to transfer your feedback to the company I work
for and have them compromise with the project before taking this further
on. The fact is that after reading all your emails I'm sure I'll have no
trouble to get them engaged in it, thank you.
I see that the first questions about the project are arising. This is a
very good sign. Taking into account this is a new project, built for and
by the computer forensics community, the very first step will be to
create and run a survey to define exactly what are the current needs and
which is the best way to provide for them. As soon as I have that survey
ready I will run it through this list and we'll set about detailing the
exact nature of the project.

Thanks to all of you who have already volunteered to collaborate in any
way to this initiative. Your collaboration is not only welcome, it is a
must. For something like this to work it must be built upon the
knowledge of all the community, you people are this community. Each one
of you has a great deal of experience and both technical and human
expertise in all aspects related to Computer Forensics. Each one of us
working on this area is already using some sort of Standard Operating
Procedures and/or following some kind of Best Practices. They all have a
great deal in common, I would blind guess that at least 80% of our
procedures or best practices are the same. That 20% missing is where the
real knowledge lies. If we could create some Open Source Computer
Forensics Methodology Manual (OSCFMM) nurturing from the very best of
each of the existing procedures and have it subject to review by the
community. We would not only have a best of breeds for the Computer
Forensics community, we would also have an international standard with
all the benefits that implies.

Looking forward to hear from you.
Regards,
Matías Bevilacqua Trabado
CYBEX
___________________________________________________________________
PGP-ID: 0x40A4869F
PGP Fingerprint: 2052 98A0 F0F0 2914 D7FA  4E7C 0488 7E8C 40A4 869F
___________________________________________________________________

CYBEX
Grupo Intelligence Bureau
Rambla de Catalunya, 32 4º-2ª
08007 Barcelona-SPAIN
Tel. 93 215 53 23
Fax. 93 215 50 72
http://www.cybex.info 


-----------------------------------------------------------------
This list is provided by the SecurityFocus ARIS analyzer service.
For more information on this free incident handling, management 
and tracking system please see: http://aris.securityfocus.com

Next message: Maria J. Vello: "RE: Computer Forensics"
Previous message: Ketil Fossum: "Re: Computer Forensics"
Next in thread: Juan Carlos Reyes Muñoz: "Re: Best Practices - Standard Operating Procedures in Computer Forensics..."
Reply: Juan Carlos Reyes Muñoz: "Re: Best Practices - Standard Operating Procedures in Computer Forensics..."
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b30 : Sat May 03 2003 - 06:44:14 PDT