Setting up digital forensics hardware servers

Forensic server hardware must be capable of storing huge data amounts that it then process for the forensic analysts. Hard drives of multiple terabytes are common and therefore a forensic server ‘farm’ must be capable of processing massive multi terabyte volumes of data and also be able to process it all in memory. This is best achieved by using a SAN (Storage Area Network) that is expandable to match forensic case and analyst needs. It’s possible that this could use a cloud computing infrastructure, but of course this relies on decent (fibre) internet connection which huge upload and download speeds. Here’s a checklist of considerations when setting up digital forensic servers.

  • Service continuity – what’s the up / down time?
  • Employees – are they security cleared?
  • Logistics – how is a digital forensics investigation undertaken with this setup?
  • Security – how secure is this setup? Schedule some penetration testing?
  • Location – where the data is stored dictates what laws apply to it.
  • Compliance – with ISO17025, you will need to demonstrate and prove compliance to it.

 

Data Centres

Data centres are what will be the heart of search engines and big digital storage companies, they are composed of mass storage devices, servers and telecoms devices, to ensure that there able to keep the computers operating all of the time they have protective measures in location such as backup batteries for electricity and uninterruptible power supplies
Pollution is a chief factor for data centres, due to the quantity they create they are required by law to use special equipment, but they occasionally use as much electricity as a small town because they use so much equipment.

Data centres have a set of minimum requirements in regards to what their infrastructure is, they’ve been provided a topology which can be pertinent to any dimension data centre, there are also guidelines for data centres that are part of the telecommunications networks, such as environmental requirements for the equipment that they use.

There are definite rules as to what data centres can use their servers for, these are:

Run and manage a telephone company’s telecommunication network
Supply data centre established applications straight to the provider ‘s clients 
Provide hosted systems for a third party to offer services for their clients
Provide a blend of those and associated data centre systems

In case a data centres systems are out of date they may use what is referred to as a transformation initiative to upgrade and better their present systems, the initiative is split into four endeavours called; safety, standardisation, virtualisation and automation.
Data Centre
Standardisation
Data centres must keep themselves at the leading edge of technologies. They achieve this by getting all of the latest devices offering better performance and storage space. Additionally they look to improve networking abilities in the hope the amount of data centres could be managed better, and finally decrease (because there are lots of them around)

Virtualisation
Virtualisation is where devices that are used in the data centre are united for example one device could run multiple virtual servers, this equates to less space being utilised, less operational expenses and it reduces energy usage, virtualisation additionally allows for data centres to supply virtual desktops to consumers.

Automating
Because of the fact that many data centres have problems with a deficiency of skilled IT staff, automation makes working the data centre more efficient, operations such as settings, patching, provisioning and release management are automated, automating operations may also reduce the expenses the data centre has to face.

Securing
Securing a data centre is reached both physically by implementing armed guards and utilising CCTV cameras, it can also be preserved by security of the personal computers, this is of equal, or even greater relevance for a data centre.

Here is table of each grade:
Table

Downtime is as stringent as the rest of running a data centre. For each tier, there is a distinct allocation of time available for let downtime yearly, these are the following:

➢ No longer than 26 minutes is to be delayed for tier 4 – 99.995%
➢ No longer than 94 minutes is allowed for tier 3 – 99.982%
➢ No more than 22 and a half hours for tier 2 – 99.741%
➢ No more than 28.8 hours is allowed for a tier 1 failure – 99.671%