Digital Forensics Framework For Combating Cyber-crime

Abstract

Offenders use digital devices and networks to facilitate their crimes and hide their identities, Information technology systems are attacked creating new challenges for digital investigators. Malicious programs that exploit vulnerabilities also serve as threats to digital investigators. Since digital devices such as computers and networks are used by organizations and digital investigators, malicious programs and risky practices that may contaminate the integrity of digital evidence can lead to the loss of critical evidence. For some reason, digital investigators face a major challenge in preserving the integrity of digital evidence. Not only is there no definitive comprehensive digital forensics investigation framework for ensuring digital evidence reliability but there has to date been no intensive research into methods of doing so. The aim of the study was to develop an efficient digital forensics framework for combating cybercrime. Additionally, the study aimed to assess existing frameworks used for combating cybercrime with a view to identifying existing gaps, develop an efficient framework for investigating digital crimes based on the universal standard for digital forensic investigation ISO/IEC 27043:2015 and finally validate the developed framework and evaluate its performance compared to other existing frameworks. The study utilized a quasi-experimental and descriptive research design and a target population of 105 participants which are officers drawn from the entire communication Authority digital forensics and investigation department. The study concluded that digital forensic investigations require an efficient framework digital forensic examiners must adhere to a well-defined procedure that goes beyond technical requirements. As a result, we must examine previous efforts and forensic frameworks in depth. Therefore, a formal and methodical approach is required to provide a framework for analyzing and reasoning the requirements of digital investigations. In addition, anti-forensics situations and processes make the forensic investigation process challenging by contaminating any stage of the investigation process, its requirements, or by destroying the evidence.