Forensics
Chain of Custody
The documented process of maintaining and controlling evidence to preserve its integrity from collection to court.
Practice this topic
Test your knowledge of forensics concepts with exam-style practice questions.
Related Forensics terms
Digital Forensics
The scientific examination and analysis of digital evidence for use in legal proceedings or investigations.
Volatile Memory
Computer memory (RAM) that loses its contents when power is removed — a critical source of forensic evidence.
Log Analysis
The examination of system and application logs to identify security events, anomalies, or evidence of attacks.