Ross A. Leo

An outstanding team led by Drs. Iorga and Martin of NIST collaborated to produce this work. Mitigating these challenges is important for cloud-based system owners, cloud forensic tool developers, and forensic investigators, as well as for the development of forensic-ready solutions. This effort will support the criminal justice and civil litigation systems and provide capabilities for security incident response and internal enterprise operations. NISTIR 8006 includes a preliminary analysis of… Show more

An outstanding team led by Drs. Iorga and Martin of NIST collaborated to produce this work. Mitigating these challenges is important for cloud-based system owners, cloud forensic tool developers, and forensic investigators, as well as for the development of forensic-ready solutions. This effort will support the criminal justice and civil litigation systems and provide capabilities for security incident response and internal enterprise operations. NISTIR 8006 includes a preliminary analysis of the challenges by addressing (1) the relationship between each challenge and the five essential characteristics of cloud computing as defined by the NIST cloud computing model, (2) how the challenges correlate to cloud technology by considering their relationship to the Cloud Security Alliance’s Enterprise Architecture, (3) the nine categories to which the challenges belong, and (4) the potential results of overcoming each challenge. It also provides some analysis of logging data, data in media, and issues associated with time, location, and sensitive data. This document is intended to initiate dialogue within the cloud computing community to understand forensic science concerns and challenges in cloud ecosystems and identify the technologies and standards that can mitigate these challenges. Show less

My entry: "The Health Insurance Portability and Accountability Act”, commonly referred to as HIPAA, and its amendment known as “HITECH”, have been heralded as bringing vital attention to the matters or the privacy and security to patient information. They have also brought controversy to the general discussion of information protection, its cost, the associated burden of program management, breach reporting and related topics. Much remains to be clarified before truly effective and… Show more

My entry: "The Health Insurance Portability and Accountability Act”, commonly referred to as HIPAA, and its amendment known as “HITECH”, have been heralded as bringing vital attention to the matters or the privacy and security to patient information. They have also brought controversy to the general discussion of information protection, its cost, the associated burden of program management, breach reporting and related topics. Much remains to be clarified before truly effective and cost-efficient programs can be designed and institutionalized. This article addresses these issues and provides clarity on how to achieve the objective for protecting the privacy and security of patient information. It lays the foundation for defining IT controls, implementation and operational guidance, and the interdependence of them. It provides examples of effective options to achieve the goals without breaking the bank or adversely impacting the delivery of timely, appropriate and high-quality healthcare. It enlarges on the requirements of these important laws, their impacts on the enterprise, and elaborates on the manner in which they must be addressed so that this vital program of protection can be brought about quickly and efficiently, without excessive cost or adding unacceptable overhead, in an evolutionary, rather than revolutionary, manner.
Show less

I am NOT the author - I served as technical editor/SME for this volume following Mr. Rojas' passing.

The ability to preserve electronic evidence is critical to presenting a solid case for civil litigation, as well as in criminal and regulatory investigations. Preserving Electronic Evidence for Trial provides everyone connected with digital forensics investigation and litigation with a clear and practical hands-on guide to the best practices in preserving electronic… Show more

I am NOT the author - I served as technical editor/SME for this volume following Mr. Rojas' passing.

The ability to preserve electronic evidence is critical to presenting a solid case for civil litigation, as well as in criminal and regulatory investigations. Preserving Electronic Evidence for Trial provides everyone connected with digital forensics investigation and litigation with a clear and practical hands-on guide to the best practices in preserving electronic evidence.

Corporate management personnel (legal & IT) and outside counsel need reliable processes for the litigation hold – identifying, locating, and preserving electronic evidence. Preserving Electronic Evidence for Trial provides the road map, showing you how to organize the digital evidence team before the crisis, not in the middle of litigation. This practice handbook by an internationally known digital forensics expert and an experienced litigator focuses on what corporate and litigation counsel as well as IT managers and forensic consultants need to know to communicate effectively about electronic evidence. Show less

Along with the ongoing refinement of cybersecurity roles at the individual level, the Council supports workforce management at the enterprise level. In line with that goal, the Council has produced the Cybersecurity Workforce Handbook: A Practical Guide to Managing Your Workforce." This handbook is designed to be a ready reference for executives, hiring managers‒often in information technology (IT) and security functions‒and human resources (HR) professionals charged with managing the planning,… Show more

Along with the ongoing refinement of cybersecurity roles at the individual level, the Council supports workforce management at the enterprise level. In line with that goal, the Council has produced the Cybersecurity Workforce Handbook: A Practical Guide to Managing Your Workforce." This handbook is designed to be a ready reference for executives, hiring managers‒often in information technology (IT) and security functions‒and human resources (HR) professionals charged with managing the planning, sourcing, hiring, training, development, career progression, and sustainment of the cybersecurity workforce. Show less

This is an ongoing series of books and compendia volumes covering the interrelated areas of Critical Infrastructure and Cybersecurity focusing primarily on the interdependency of the one upon the other and co-related issues. This series serves as the publisher for the Board and members of the Center for National Threat Assessment.

This piece discusses the vital aspects and security value of Single Sign-On technology, with regard for design, implementation and management issues.

The HIPAA Program Reference Handbook explains all aspects of HIPAA including system design, implementation, compliance, liability, transactions, security, and privacy, focusing on pragmatic action instead of theoretic approaches. The book is organized into five parts. The first discusses programs and processes, covering program design and implementation, a review of legislation, human dynamics, the roles of Chief Privacy and Chief Security Officers, and many other foundational issues.

Information Security Management Handbook, Fourth Edition, Volume 2 is an essential reference for anyone involved in the security of information systems. This new volume of the all-important handbook addresses emerging trends and new concepts in information security, along with security methodologies for evolving technologies.

Chapter 1 covers thoroughly the subject of SSO technologies in a very advanced discussion of this then-fledgling application.

In previous work, the NIST Cloud Computing Forensic Science Working Group (NCC FSWG) published NISTIR 8006: ”NIST Cloud Computing Forensic Science Challenges” [REF NISTIR8006]. This effort resulted from a collaboration of volunteers from the private and public sector. The document highlights the digital forensics challenges triggered by the specific characteristics and business model of public cloud computing services.

Our approach in examining forensics in this context was to first… Show more

In previous work, the NIST Cloud Computing Forensic Science Working Group (NCC FSWG) published NISTIR 8006: ”NIST Cloud Computing Forensic Science Challenges” [REF NISTIR8006]. This effort resulted from a collaboration of volunteers from the private and public sector. The document highlights the digital forensics challenges triggered by the specific characteristics and business model of public cloud computing services.

Our approach in examining forensics in this context was to first examine this environment to discover and crystalize the unique characteristics of it, as these play a significant part in three aspects of operation: normal operations, adverse operations when under cyberattack, and operations during criminal exploitation of cloud computing resources.

The importance of this work is to clarify how forensics in the cloud can achieve the same acceptance as forensics have found in traditional computing models. This document and the efforts contained herein, along with NISTIR 8006, represent the beginnings of that achievement. The White House Executive Order of May 12, 2021, entitled “Executive Order on Improving the Nation’s Cybersecurity” [https://www.whitehouse.gov/briefing-room/presidential-actions/2021/05/12/executive-order-on-improving-the-nations-cybersecurity/], points out the importance of having forensic-ready information systems, including cloud systems, to improve the nation’s cybersecurity. Show less