Digital Evidence Chain of Custody for Law Enforcement
A law enforcement agency needs to protect the integrity of its digital evidence and be able to prove that chain of custody has not been broken.
Typical case management systems have only superficial integrity protection mechanisms that can be easily circumvented by a privileged insider or a malicious actor.
LogSentinel SIEM is integrated with the case management system to provide immutability of the audit log and all stored digital evidence.
The secure electronic timestamping used, combined with other cryptographic methods, allows the agency to prove that chain of custody has not been broken.
Chain of custody
The cryptographically protected and eIDAS compliant audit log guarantees that chain of custody has not been broken
The inability of privileged users to cover their tracks serves as a deterrence for
tampering with evidence
The rule-based and machine learning anomaly detection is used to alert the infosec team on unusual behavior