The method of the examination of electronic data in cybercrime cases
In recent years,there has been a notable increase of cybercrime,driven by the rapid evolution of black and grey market industries.This evolving criminal landscape presents dual challenges—both legal and technological—to the examination of electronic data.Electronic data in cybercrime cases are marked by their large volume,diverse types,complex content,and analytical challenges.Traditional electronic data examination methods,grounded in abstract criteria such as"objectivity""legality"and"relevance",should transit towards more concrete approaches,which include traceability examination,dynamic examination,and multi-directional examination,so as to give electronic data full play in the process of proof.Effort should be put in the examination of the source,collection and fixation of electronic data,in order to ensure the key data content has not been contaminated.Effort should also be put in the retrieval of"massive"data,the restoration of"deleted or modified"data,the analysis of"subsidiary"data,and the collision of"multi-source"data,in order to fully explore the evidentiary capability of electronic data.Effort should also be put in the distinction of the identity fact,technical fact,subjective fact,and batches of object fact,in order to expand the usage of electronic data in the process of proof.
NETL
NSTL
万方数据
