The document identifies devices that store digital evidence, such as computers and mobile devices, detailing the types of evidence that can be found on them and the challenges faced in accessing this data, including encryption and legal limitations. It emphasizes the need for appropriate policies for private employee searches and highlights the complications arising from differing state laws and jurisdictional issues. Additionally, the document notes the growing significance of digital evidence in investigations related to computer crimes and the potential vulnerabilities associated with these devices.

1. identifies several types of devices on which digital evidence could be found. list two of the
devices provided by the text.
1. Explain what types of evidence you would look for on those devices
2. Explain what limitations you might have, or what hurdles you would have to clear before
searching those devices (BOTH as a company IT professional and a law enforcement officer).
3. Identify what, if any, policies would need to be in place for you to search as a private
employee, as well as what limits can be placed on the search by police.
Solution
1.
1. Digital evidence is defined as data and information of value to an investigation which is stored
on, received or transmitted by an electronic device.
2. Evidence can be acquired when electronic devices are seized and secured for examination.
3. The following are some of the examples of Digital Evidences.
- Information or Data can be altered, destroyed or damaged with little effort.
- Information or Data can be hidden like finger prints i.e Biometric.
- Information or data crosses jurisdictional borders quickly and easily.
- Information and Data can be duplicated.
2. Limitations of Digital Evidence:
1. Investigative limitations are primarily due to encryption and proprietary systems that require
decoding before data or information can be accessed.

2. 2. Unlike what is portrayed on popular television crime shows, decoding an encrypted password
can take a very long time, even with sophisticated software.
3. There are both legal and technical limitations in this area of investigation.
4. Laws governing processing and prosecution are different from state to state.
5. Digital crime can easily cross jurisdictions, making standardization an increasingly critical law
enforcement issue.
6. Digital Evidence can be get through Computers, Internet and Mobile devices.
7. Global access to information and to other computers, criminals are able to use this access to
hack into financial and communications systems, major corporations and government networks
to steal money, identities and information, or to sabotage systems.
8. Computer crimes continue to be a growing problem in both the public and private sector. A
single computer can contain evidence of criminal activity carried out on the web, or the criminal
use can be contained in the computer itself, such as pornography, copyright infringement,
extortion, counterfeiting and much more. Digital evidence is located on the computer's hard
drive and peripheral equipment, including removable media such as thumb drives and CD-ROM
discs.
9. Mobile devices allow criminals to engage in an ever-growing variety of activities and the
devices keep track of every move and message. It is this tracking capability that turns mobile
devices into key evidence in many cases