Crime has been around as long as man has inhabited Earth. Technology and computers have brought us many advances and also have changed the ways crimes are committed. Computers are usually found to be a component of modern crime. Problems such as identity theft, phishing schemes, and war driving were unheard of 25 years ago.
The Law, Investigations, and Ethics domain addresses computer crime, laws, regulations, and investigation techniques. Test candidates are expected to know not only whether a crime has been committed, but also the laws that apply to the crime, the ethical issues, and the code of conduct that all Certified Information Systems Security Professionals (CISSP) should abide by. CISSP candidates must be prepared to deal with these issues, understand major legal systems, have a general understanding of forensic procedures, and be familiar with the ISC2 Code of Ethics. These are the topics that are discussed in this chapter.
The CISSP Cram Sheet
A Note from Series Editor Ed Tittel
About the Author
Acknowledgments
We Want to Hear from You!
Introduction
Self-Assessment
The CISSP Certification Exam
Physical Security
Security-Management Practices
Access-Control Systems and Methodology
System Architecture and Models
Telecommunications and Network Security
Applications and Systems-Development Security
Operations Security
Business Continuity Planning
Law, Investigations, and Ethics
Cryptography
Practice Exam 1
Answers to Practice Exam 1
Practice Exam 2
Answers to Practice Exam 2