4 Responses 08/13

Preethi Work:

Information drawn out of switch or router is not reliable in providing specific evidence in times of a crime. According to Ibrahim et al. (2012), many challenges and obstacles encounter or interfere with the evidence of corruption in routers.  If an investigator is looking for any information they intents to get proof from the router cannot be successful, the information might be incomplete in most cases. Indeed, the information obtained from routers does not necessarily provide specific evidence of a particular crime.

Information from routers doesn't provide information with specific evidence of the crime. According to Damiris (2020), there is a lack of proper guidelines when presenting and buying electronic evidence. These guidelines, when not put well, the information provided cannot necessarily offer the best specific evidence. Secondly, there are swift changes in the technology field anytime and most times. This rapid commuting of the technology now and then makes the data provided from switch or router unreliable in giving evidence of particular crimes. Third, there is this issue of detailed and big data. Such big data to go through it is time-consuming at some points and lastly use of anti-forensic techniques. Criminals do hide evidence, tamper with evidence, hide evidence or destroy the evidence.

Information collected by router and switch in an investigation is beneficial. According to Philomin, Et Al. (2020), the logs that capture information can significantly help protect the sensitive data of the public. Such data must have limited access to it with this device's help, routes, and switches. Furthermore, the logs that capture information can support responses and the analysis done by the forensics of a suspected electronic crime. 

References

Damiris, G. P. (2020). Router forensics (Master's thesis, Πανεπιστήμιο Πειραιώς).

Ibrahim, M., Abdullah, M. T., & Dehghantanha, A. (2012, June). VoIP evidence model: A new forensic method for investigating VoIP malicious attacks. In Proceedings Title: 2012 International Conference on Cyber Security, Cyber Warfare and Digital Forensic (CyberSec) (pp. 201-206). IEEE.

Philomin, S., Singh, A., Ikuesan, A., & Venter, H. (2020). Digital forensic readiness framework for smart homes. In International Conference on Cyber Warfare and Security (pp. 627-XVIII). Academic Conferences International Limited.

Sharan Work:

I agree with the statement that the information that is being extracted from the routers or switches does not provide useful information related to the crime. The information collected from the routers or switches is being used to find the information related to digital forensic techniques. Digital forensic is the process that a team generally carries out to find the evidence-related digital crime that happens with the users and organizations. The digital forensic team generally checks for the networks, and routers installed in the network are being used to collect the information. The attackers have modified network devices such as switches and routers to get into the organizational network. The changes made by the attackers are useful for the digital forensic team to collect the evidence and information related to the crime that happens in the organizations. The information that is being collected does not provide direct evidence of the crime that happens in the organizations (Hare, 2016).

Information or evidence from routers and switches can still play an important role in investigations, but specific information has to be collected. The chain of custody has to answer several questions in order to prove the integrity of evidence. Some of the important information that can be collected to respond to the chain of custody questions include details of the people who have collected and touched the collected information, the location where evidence has been stored, the person or the party that was in charge of the evidence, how the information evidence was stored and lastly the person who took the evidence away from storage and the reason why the information was taken away from its storage. All these questions can help maintain the integrity of the information collected from the router or switch (Hare, 2016).

Reference

Hare, O., R. (2016) Routers and Switches. Retrieved from,https://www.dailymail.co.uk/sciencetech/article-3393878/Forget-fingerprints-ROUTERS-soon-help-police-solve-crimes-Data-collected-Wi-Fi-devices-identify-criminals.html