Digital Evidence and Computer Crime - 3rd Edition - ISBN: 9780128103289, 9780080921488

Digital Evidence and Computer Crime

3rd Edition

Forensic Science, Computers, and the Internet

Authors: Eoghan Casey
Paperback ISBN: 9780128103289
eBook ISBN: 9780080921488
Imprint: Academic Press
Published Date: 12th April 2011
Page Count: 840
42.99 + applicable tax
68.95 + applicable tax
52.95 + applicable tax
Compatible Not compatible
VitalSource PC, Mac, iPhone & iPad Amazon Kindle eReader
ePub & PDF Apple & PC desktop. Mobile devices (Apple & Android) Amazon Kindle eReader
Mobi Amazon Kindle eReader Anything else

Institutional Access


Digital Evidence and Computer Crime, Third Edition provides the knowledge necessary to uncover and use digital evidence effectively in any kind of investigation. The widely-adopted first and second editions introduced thousands of students to this field and helped them deal with digital evidence. This completely updated edition provides the introductory materials that new students require, and also expands on the material presented in previous editions to help students develop these skills. The textbook teaches how computer networks function, how they can be involved in crimes, and how they can be used as a source of evidence. Additionally, this third edition includes updated chapters dedicated to networked Windows, Unix, and Macintosh computers, and Personal Digital Assistants.

Ancillary materials include an Instructor's Manual and PowerPoint slides.


Key Features

  • Named The 2011 Best Digital Forensics Book by InfoSec Reviews
  • Provides a thorough explanation of how computers & networks function, how they can be involved in crimes, and how they can be used as evidence
  • Features coverage of the abuse of computer networks and privacy and security issues on computer networks


Computer forensic students and professionals, lawyers, law enforcement, government agencies (IRS, FBI, CIA, CCIPS, etc.).

Table of Contents

  • Acknowledgments
  • Author Biographies
  • Introduction
  • Digital Forensics
  • Chapter 1. Foundations of Digital Forensics
    • 1.1 Digital Evidence
    • 1.2 Increasing Awareness of Digital Evidence
    • 1.3 Digital Forensics: Past, Present, and Future
    • 1.4 Principles of Digital Forensics
    • 1.5 Challenging Aspects of Digital Evidence
    • 1.6 Following the Cybertrail
    • 1.7 Digital Forensics Research
    • 1.8 Summary

  • Chapter 2. Language of Computer Crime Investigation
    • 2.1 Language of Computer Crime Investigation
    • 2.2 The Role of Computers in Crime
    • 2.3 Summary

  • Chapter 3. Digital Evidence in the Courtroom
    • 3.1 Duty of Experts
    • 3.2 Admissibility
    • 3.3 Levels of Certainty in Digital Forensics
    • 3.4 Direct versus circumstantial evidence
    • 3.5 Scientific Evidence
    • 3.6 Presenting Digital Evidence
    • 3.7 Summary

  • Chapter 4. Cybercrime Law
    • 4.1 Federal Cybercrime Law
    • 4.2 State cybercrime law
    • 4.3 Constitutional law
    • 4.4 Fourth Amendment
    • 4.5 Fifth Amendment and encryption

  • Chapter 5. Cybercrime Law
    • 5.1 The European and National Legal Frameworks
    • 5.2 Progression of Cybercrime Legislation in Europe
    • 5.3 Specific Cybercrime Offenses
    • 5.4 Computer-Integrity Crimes
    • 5.5 Computer-Assisted Crimes
    • 5.6 Content-Related Cybercrimes
    • 5.7 Other Offenses
    • 5.8 Jurisdiction
    • 5.9 Summary
    • Digital Investigations

  • Chapter 6. Conducting Digital Investigations
    • 6.1 Digital Investigation Process Models
    • 6.2 Scaffolding for Digital Investigations
    • 6.3 Applying the Scientific Method in Digital Investigations
    • 6.4 Investigative Scenario: Security Breach


No. of pages:
© Academic Press 2011
Academic Press
Hardcover ISBN:
eBook ISBN:
Paperback ISBN:

About the Author

Eoghan Casey

Eoghan Casey is an internationally recognized expert in data breach investigations and information security forensics. He is founding partner of, and co-manages the Risk Prevention and Response business unit at DFLabs. Over the past decade, he has consulted with many attorneys, agencies, and police departments in the United States, South America, and Europe on a wide range of digital investigations, including fraud, violent crimes, identity theft, and on-line criminal activity. Eoghan has helped organizations investigate and manage security breaches, including network intrusions with international scope. He has delivered expert testimony in civil and criminal cases, and has submitted expert reports and prepared trial exhibits for computer forensic and cyber-crime cases. In addition to his casework and writing the foundational book Digital Evidence and Computer Crime, Eoghan has worked as R&D Team Lead in the Defense Cyber Crime Institute (DCCI) at the Department of Defense Cyber Crime Center (DC3) helping enhance their operational capabilities and develop new techniques and tools. He also teaches graduate students at Johns Hopkins University Information Security Institute and created the Mobile Device Forensics course taught worldwide through the SANS Institute. He has delivered keynotes and taught workshops around the globe on various topics related to data breach investigation, digital forensics and cyber security. Eoghan has performed thousands of forensic acquisitions and examinations, including Windows and UNIX systems, Enterprise servers, smart phones, cell phones, network logs, backup tapes, and database systems. He also has information security experience, as an Information Security Officer at Yale University and in subsequent consulting work. He has performed vulnerability assessments, deployed and maintained intrusion detection systems, firewalls and public key infrastructures, and developed policies, procedures, and educational programs

Affiliations and Expertise

Eoghan Casey, cmdLabs, Baltimore, MD, USA


First - Best Digital Forensics Books 2011, InfoSec Reviews


"Throughout the book there are a number of good case studies used to illustrate points which enlivens the text. There are also details of legal cases from various legislative areas and examples of relevant situations that demonstrate the points being made. There are also a number of references to other literature and links to website URLs and tools available to assist the practitioner."--Best Digital Forensics Book in InfoSecReviews Book Awards

"Just finished ‘Digital Evidence and Computer Crime: Forensic Science, Computers and the Internet’ by Eoghan Casey and featuring other contributing authors, and it’s quite good. I bought this book because I wanted an all-encompassing book that provided insight on the various aspects of an investigation, especially the legal portion. And in this aspect the book does an excellent job, and is in-depth in area’s I have yet to see in other books. The book is divided into five portions digital forensics, digital investigations, apprehending offenders, computers and network forensics. For me the book was worth it for the first three portions; however, the computers and network portions, while a good start, there are more in-depth books that provide better insight… Overall, the book was enjoyable from start to finish and I would recommend it to anyone looking for a great overview of digital forensic investigation process from start to finish. I am happy to add this book to my growing reference library."--Student of Security

"This hefty book on forensic evidence obtained from computers dispels the myths propagated by popular television series. It states from the premise that very few people are well versed in the technical, evidential, and legal issues concerning digital evidence. Oftentimes, the useful evidence that may be found in various digital media is overlooked, collected incorrectly, or analyzed ineffectively. It is the goal of the team of contributors to equip read