Problems of Forensic Sciences 2001 Vol. 47 (XLVII) 43-48
INVESTIGATING COMPUTER CRIMES IN ORGANISATIONS: A QUESTION OF COLLABORATION BETWEEN THE INVESTIGATOR AND THE INFORMATION SYSTEM SECURITY MANAGER
Solange GHERNAOUTI-HÉLIE1, Bertrand LATHOUD1, Olivier RIBAUX2
1HEC, INFORGE, Université de Lausanne, Lausanne, Switzerland
2Institut de Police Scientifique et de Criminologie, Université de Lausanne, Lausanne, Switzerland
Streszczenie
Computer crime is an epidemic form of crime against which no business, or customer is immune. It can deeply affect each organisation or people who depends on information and communication and the result may be tragic. It is fundamental to be able to: protect computers, networks and information systems resources and data; identify attacker; prove they fault; pursue them. The first point is relevant as it covers the ability to define, implement and validate a security policy which must be effective and efficient for an organisation. This is under the responsibility of the security IT manager who has to protect the valuable resources of his enterprise and to prevent it against potential attacks. The IT manager knows the context of his company and its security’s requirements. But, he generally has little knowledge of the criminal context and the investigative methods. On its side, the police officer does not know the environment of the victim. Indeed, the complementarity of both partners is critical to ensure the global effectiveness of the investigative process. This collaboration often works well, but the conditions of success are poorly formalised. We propose several parameters that influence this co-operation positively, and exploit them under the form of an action plan. This does provide easily applicable guidelines for the IT security manager for an optimal intervention of the crime investigator.
Słowa kluczowe
Computer-crime; Investigation; Digital traces; Management.