Computer Online Forensic Evidence Extractor - Techist - Tech Forum

Go Back   Techist - Tech Forum > Security | Computer, Devices, Software and Systems > Viruses, Spyware and Malware
Click Here to Login
Closed Thread
Thread Tools Display Modes
Old 04-29-2008, 08:35 PM   #1 (permalink)
Techie Beyond Description
Osiris's Avatar
Join Date: Jan 2005
Location: Kentucky
Posts: 36,817
Send a message via ICQ to Osiris Send a message via AIM to Osiris Send a message via MSN to Osiris Send a message via Yahoo to Osiris
Default Computer Online Forensic Evidence Extractor

The Computer Online Forensic Evidence Extractor (Cofee) is a USB thumb-drive developed by Microsoft that was distributed to more than 2000 law-enforcement officers in 15 countries including the United States, Germany, New Zealand and Poland. Software on the device supports more than 150 commands that eliminates the need to seize the computer from the scene because it can gather the evidence right there.
The commands can be used to decrypt passwords, analyze the Internet activity and data that is stored on the computer. The advantage of this method is that data can be analyzed while the computer is still connected to a network or the Internet which would not be possible of the computer would be seized.
Some blogs have gone so far as to assume that Microsoft would give Vista backdoor keys to the police but the original article at the Seattle Times did not mention that at all. The tools on the USB device provide a set of commands that speed up the evidence gathering process and allow that process to be started while the computer is still running in its local environment.
The original Seattle Times article seems to support that by quoting the head of the Special Assault Unit in the King County Prosecuting Attorney’s Office.
The 35 individual law-enforcement agencies in King County, for example, don’t have the resources to investigate the explosion of digital evidence they seize, said Johnson, who attended the conference.
“They might even choose not to seize it because they don’t know what to do with it,” she said. “… We’ve kind of equated it to asking specific law-enforcement agencies to do their own DNA analysis. You can’t possibly do that.”
I think it is fair to assume that Microsoft is providing the tools and probably even the training, or at least training manuals, so that law-enforcement agents won’t face the decision of what to do with the computers.

Computer Online Forensic Evidence Extractor
Osiris is offline  
Closed Thread

Thread Tools
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Trackbacks are On
Pingbacks are On
Refbacks are Off

Similar Threads
Thread Thread Starter Forum Replies Last Post
Win98SE: Catastrophic & complete computer failure yesterday :-(( SP7 Microsoft Windows and Software 6 04-05-2008 01:30 PM
HELP!!!! I disabled my graphics card by accident, need help!! Wildside Monitors, Printers and Peripherals 5 06-16-2007 07:29 PM
Best place online to buy a high end custom computer lafguy81 New Systems | Building and Buying 7 04-09-2007 10:00 PM
A Computer Building Elbatrop1 Elbatrop1 System Upgrades 31 04-07-2007 08:26 PM
New Computer. Same Issues Duality Hardware Repairs and Troubleshooting 6 04-01-2007 10:54 PM

Copyright 2002- Social Knowledge, LLC All Rights Reserved.

All times are GMT -5. The time now is 07:16 PM.

Powered by vBulletin® Version 3.8.8 Beta 1
Copyright ©2000 - 2019, vBulletin Solutions, Inc.