Answer-What is 'Digital Forensics' in cybersecurity?

Digital forensics follows strict chain-of-custody procedures i Identification ii Preservation forensic imaging bit-for-bit copy iii Analysis recovering deleted files, examining logs, timeline analysis iv Documentation v Presentation in court. Branches of digital forensics are network forensics, memory forensics, mobile forensics, cloud forensics etc. Banks must conduct forensic investigations after cyber incidents fraud, data breaches and preserve evidence for regulatory reporting to RBICERT-In and potential legal proceedings.

Question

What is 'Digital Forensics' in cybersecurity?

A The process of collecting, preserving, analyzing, and presenting digital evidence from computers and networks in a legally admissible manner to investigate cyber incidents

B The use of digital signatures to authenticate legal documents so that no outsider can forge the documents

C Automated scanning of systems for malware using forensic tools

D Real-time monitoring of network traffic to detect intrusions and providing insights into the various threat countermeasures

E The process of encrypting evidence to prevent tampering

Practice Next