Terrorist attacks on computer centers, electronic fraud on international funds transfer networks, viruses and worms in our software, corporate espionage on business networks, and crackers breaking into systems on the Internet...Computer criminals are becoming ever more technically sophisticated, and it's an increasing challenge to keep up with their methods.

Computer Crime: A Crimefighter's Handbook is for anyone who needs to know what today's computer crimes look like, how to prevent them, and how to detect, investigate, and prosecute them if they do occur. It contains basic computer security information as well as guidelines for investigators, law enforcement, and computer system managers and administrators.

Part I of the book contains a discussion of computer crimes, the computer criminal, and computer crime laws. It describes the various categories of computer crimes and profiles the computer criminal (using techniques developed for the FBI and other law enforcement agencies). Part II outlines the the risks to computer systems and personnel, operational, physical, and communications measures that can be taken to prevent computer crimes. Part III discusses how to plan for, investigate, and prosecute computer crimes, ranging from the supplies needed for criminal investigation, to the detection and audit tools used in investigation, to the presentation of evidence to a jury.

Part IV of the book contains a compendium of the computer-related U.S. federal statutes and all of the statutes of the individual states, as well as representative international laws. Part V contains a resource summary, detailed papers on computer crime, and a sample search warrant for a computer crime.

 Table of Contents

Foreword 

Preface 
      About This Book 
      Scope of the Book 
      Comments and Questions 
      Acknowledgments 

Part I. Overview 

 1. Introduction to Computer Crime
      Types of Attacks 
      What Laws Prohibit Computer Crime? 
      Where Are the Vulnerabilities? 
      Who Commits Computer Crimes? 
      How Can Computer Crime Be Prevented? 
      Handling Computer Crime 
 2. What Are the Crimes?
      Breaches of Physical Security 
      Breaches of Personnel Security 
      Breaches of Communications and Data Security 
      Breaches of Operations Security 
      Ways of Detecting Common Attacks 
 3. Who Commits Computer Crimes?
      Types of Offenders 
      Characteristics of Computer Criminals 
      Computer Crime Adversarial Matrix 
 4. What Are the Laws?
      Who Has Jurisdiction? 
      U.S. Federal Laws 
      State Laws 
      International Laws 

Part II. Preventing Computer Crime 

 5. What Is at Risk?
      Threats, Vulnerabilities, and Countermeasures 
      Steps in Risk Analysis 
      Identifying Threats 
      Identifying Assets 
      Identifying Vulnerabilities and Countermeasures 
 6. Physical Security
      Basic Physical Security 
      Testing Physical Security Programs 
      Natural Disaster Checklists 
      Environmental Disaster Checklists 
      Intruder Checklists 
 7. Personnel Security
      Developing a Personnel Security Program 
      Types of Threats 
      Different People/Different Threats 
      Personnel Security Checklist 
 8. Communications Security
      Types of Networks 
      Network Communications 
      Protecting Your Network Communications 
      Communications Security Checklist 
 9. Operations Security 
      Planning Operations Security 
      Where Do Computer Criminals Get Information? 
      Developing an Operations Security Program 
      Ongoing Operations Security 

Part III. Handling Computer Crime 

10. Planning How to Handle a Computer Crime
      Finding Out About a Computer Crime 
      Setting Up Detection Measures 
      Forming a Crisis Management Team 
      What to Do If the Intruder Is on the System 
      Examining Log Files and Other Evidence 
      Be Careful from the Start 
11. Investigating a Computer Crime 
      Calling in Law Enforcement 
      Forming an Investigative Team 
      How to Investigate 
      Preparing a Search Warrant 
      What to Bring to the Scene 
      Executing a Search Warrant 
      Getting Help from a Technical Adviser 
      Auditing Tools 
      Guidelines for Handling Evidence 
12. Prosecuting a Computer Crime 
      Judges and Juries 
      Evidence in Computer Crime Cases 
      Testifying in Computer Crime Cases 
      After the Prosecution 

Part IV. Computer Crime Laws 

Part V. Appendices 

 A. Resource Summary 
      Books 
      Periodicals 
      User Organizations 
      Emergency Response Organizations 
      Government Agencies 
      Electronic Resources 
 B. Raiding the Computer Room 
      Warrant Requirement 
      Executing the Search Warrant 
      Conclusion 
 C. The Microcomputer as Evidence 
      Introduction 
      Procedures for Submission and Examination of Computer Evidence 
      Conclusion 
      References 
 D. A Sample Search Warrant 

Glossary 

Index