Justice issues guidelines for handling digital evidence

Justice issues guidelines for handling digital evidence

The Justice Department's National Institute of Justice has published the second in a series of guidelines for IT crime investigations.

'Forensic Examination of Digital Evidence: A Guide for Law Enforcement' was created at the agency's request by the National Institute of Standards and Technology. It outlines techniques for extracting digital data while preserving its integrity.

Computers and other digital media are increasingly important sources of evidence in criminal investigations. The challenge for investigators in the courtroom 'is the demonstration that the particular electronic media contained the incriminating evidence,' the guide says.

Because digital data is easily altered and it is difficult to distinguish between original data and copies, extracting, securing and documenting digital evidence requires special attention. The guidelines lay out the following general principles for handling digital evidence:

  • The process of collecting digital evidence should not alter it or raise questions about its integrity.

  • Examination of digital evidence should be done by trained personnel.

  • All actions in processing the evidence should be documented and preserved for review.

  • Examination should be conducted on a copy of the original evidence. The original should be preserved intact.

The guidelines are not a mandate or official policy, but represent the consensus of a working group of computer forensics experts convened by NIST's Office of Law Enforcement Standards. The procedures may need to be adjusted according to circumstances of each investigation and to comply with local laws and rules of evidence.

The first publication in the series is 'Electronic Crime Scene Investigation: A Guide for First Responders.' Future guidelines will cover:

  • Using technology in investigations

  • Investigating IT crimes

  • Creating a digital-evidence forensic unit

  • Presenting digital evidence in court.

About the Author

William Jackson is a Maryland-based freelance writer.


  • business meeting (Monkey Business Images/Shutterstock.com)

    Civic tech volunteers help states with legacy systems

    As COVID-19 exposed vulnerabilities in state and local government IT systems, the newly formed U.S. Digital Response stepped in to help. Its successes offer insight into existing barriers and the future of the civic tech movement.

  • data analytics (Shutterstock.com)

    More visible data helps drive DOD decision-making

    CDOs in the Defense Department are opening up their data to take advantage of artificial intelligence and machine learning tools that help surface insights and improve decision-making.

Stay Connected