Slashdot Mirror

← Back to Stories (view on slashdot.org)

Vista For Forensic Investigators

Posted by kdawson on from the recovering-it dept.

Ant writes "SecurityFocus has a two-part article offering a high-level look at changes in Windows Vista that a computer forensic investigator needs to know about. Part 1 covers the different versions of Vista available and Vista's built-in encryption, backup, and system protection features. Part 2 continues with a look at typical user activities such as Web browser and email usage."

2 of 125 comments (clear)

  1. Re:No encryption by default by cortana · · Score: 0, Troll

    Do you really think it's beyond Microsoft to program in a covert channel that transmits sensitive data back to them or another party?

  2. Re:Oh n0es by stratjakt · · Score: 0, Troll

    If they have reasonable cause to suspect there's evidence on the HDD, but it's encrypted, they go get a judge to issue a warrant for your keys/passphrase.

    Then when you refuse to give it up, you're burned for violating a direct court order, and impeding in an investigation, etc.. You may end up in deeper sh!t than where you started. Judges dont cotton to hiding/destroying evidence, and they really get pissed off when you directly defy their orders.

    People are stupid - case in point - your idea is stupid.

    --
    I don't need no instructions to know how to rock!!!!