fyi/msh ----------------------------- Michael S Hines [EMAIL PROTECTED]
-----Original Message----- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Baker, Dave Sent: Tuesday, August 07, 2007 8:27 AM To: [EMAIL PROTECTED] Subject: [Dfsci] BlackHat paper on attacks against forensics software The paper presented at BlackHat this year on defects in some computer forensics software packages is available from ISEC at this URL: http://www.isecpartners.com/files/iSEC-Breaking_Forensics_Software-Pape r.v1_1.BH2007.pdf A second paper, by an attorney (not iSEC affiliated) discussed some legal implications of security issues like those found in the BlackHat paper is located at this URL: http://www.isecpartners.com/files/Ridder-Evidentiary_Implications_of_Se curity_Weaknesses_in_Forensic_Software.pdf Dave B. -------------------------------------------------------------------- David W. Baker [EMAIL PROTECTED] Lead Information Systems Engineer G122 - Information Analysis and Engineering (703) 983-3658 The MITRE Corporation (703) 983-5864 (F) Mailstop T730 (877) 682-0632 (P) 7515 Colshire Drive McLean, VA, 22102 -------------------------------------------------------------------- _______________________________________________ Dfsci mailing list [EMAIL PROTECTED] http://lists.dfrws.org/listinfo.cgi/dfsci-dfrws.org _______________________________________________ Secure Coding mailing list (SC-L) SC-L@securecoding.org List information, subscriptions, etc - http://krvw.com/mailman/listinfo/sc-l List charter available at - http://www.securecoding.org/list/charter.php SC-L is hosted and moderated by KRvW Associates, LLC (http://www.KRvW.com) as a free, non-commercial service to the software security community. _______________________________________________