This course explores digital forensics and incident management, encompassing the collection, analysis, and presentation of digital data and events for legal admissibility. It aids in detecting and preventing digital and cyber-crime, as well as resolving disputes involving digitally stored evidence. Digital forensics applies computer investigation and analysis techniques to uncover potential legal evidence in various forms of computer misuse, including hacking, intellectual property theft, and fraud. Topics covered include: the investigation process, relevant laws, seizing digital evidence, types of digital evidence, rules of evidence, examination processes, electronic crime considerations by category, roles of first responders, securing electronic crime scenes, conducting interviews, documenting scenes, evidence collection and preservation, packaging and transport, incident investigation (e.g., hacking, e-fraud, data leakage), and log capturing techniques and tools for digital evidence management.

Temps présentiel : 20 heures

Charge de travail étudiant : 30 heures

Méthode(s) d'évaluation : Examen final