Hi,
I'm in my final year in university and for my final project i've chosen to do Policies and Procedures of a Digital Laboratory that a Lab would follow, but I haven't been able to find anything. I would like some advice on what policies and procedures there are in the lab or if any.
I'm surprised you can't find anything.
You might find the ENFSI document called 'GUIDELINES FOR BEST PRACTICE IN THE FORENSIC EXAMINATION OF DIGITAL TECHNOLOGY' quite useful. Link is;
http//
Other good sources of information are the ACPO guidelines and anything decent relating to Quality Management Systems/the ISO standard. There's a good, free, forum devoted to QMS called 'elsmar cove' that's definately worth a look if you want some broad advice on the format of documentation and how the various documents should interlink and work together to support an organisation instead of hindering it.
I think the best advice I can offer is;
1. Visit a lab - what are their procedures? Have they documented their procedures or do they just have records (e.g. contemporaneous record forms/evidence transfer records etc) but no written procedures spefically describing the context of that record? - If not, why not document their policies and procedures.
2. Keep it simple. The more you document, the more there is to go wrong.
3. Flowcharts are great for broadly illustrating the lifecycle of a particular procedure
Good luck with your project (I don't envy you)
You can also Google ASCLD Laboratory Accreditation.
Thanks Selena
I have looked at the ACPO website and at the policies but they are reviewing the section, I have sent an e-mail to ACPO but still waiting for a reply.
You can find it on the 7Safe site - they had a hand in creating the new version
http//
migsm,
From a LE point of view be aware that there are large differences in local force policies & procedures with digital evidence.
Some have all encompassing investigators, some have technicians, some have network investigators, some do proactive work, some assist with interviews etc etc. I am also aware that some forces are triaging cases with specific software to streamline casework.
Regarding the presentation of the evidence there are wide variations in policy also (Digital, Html, printed reports etc) & some use C4P software to categorise images whereby the investigating officer does the categorising.
Anyway be aware there is a variation in local policies but they are generally based on national policies, best evidence rules and CPS guidelines.
Beyond LE I would not be surprised if there is variation in policies also. Good Luck.
Cheers Dave
I'd suggest that you have a look at the ISO/BS Standards as suggested by Selena, in particular 9001 and 27001 - a number of labs are accredited to these standards.
You should be able to get access to them through the BSI Website with your Uni Athens login …
Good Luck -)
The article
although short and a little old at this stage may be of some use.