Iso 5725 Criteria For Computer Forensics

724 Words3 Pages

The very first step after identifying and selecting the required computer forensics software our company needs, we need to test, verify, and validate the software otherwise the evidence we present would not be admitted in court. In the company, one of our main goals is to always follow the established standards set by federal agencies. For this purpose, when planning our procedure to validate our software, we must meet the standards set by the National Institute of Standards, and Technology, also known as NIST, which creates procedures and criteria for testing and validating computer forensics software and tools. In order to verify, test and validate the forensic software the company will be using we need to meet the criteria established by NIST in 2001 based on standard testing methods, the ISO 17025 criteria for items that have no current standards and the ISO 5725 criteria. ISO 5725 specifies that the results must be repeatable and reproducible. In other words, repeatable refers to obtaining the same results when using the tool in the same lab using the same workstation, while reproducible refers to obtaining the same results when using the tool in a different lab using a different …show more content…

The way the operating system and the forensics tools perform can be affected by new upgrade and patches. After a new upgrade is released, it first needs to be tested in a different workstation to determine if is reliable. In case the upgrade is not reliable and affects the performance, we need to file an error report to the vendor of the software in which they should be able to address the problem by releasing a new update, which we must test again to verify its reliability. Is important to know that the workstation used to test the upgrades needs to be built with the single purpose of using the tools with the newest