Can we clearly differentiate whether an examination falls under Computer Forensics, Forensic Audio, Image Analysis, or Video Analysis?

In 1998, the Scientific Working Group on Digital Evidence (SWGDE) was formed by a group of federal crime laboratory directors. Initially, the organization included the forensic laboratories of the ATF, DEA, FBI, IRS-CID, US Customs, US Postal Inspection Service, the US Secret Service, NASA, and the Department of Defense Computer Forensics Laboratory. Once formed and information sharing began, it became clear to the members that the bulk of the audio and video examinations being performed by the laboratories were becoming digital in nature and, along with digital photography, was overlapping with computer forensics. Within SWGDE a group was formed to explore the unification of these analyses into a new single forensic discipline which they called Digital Evidence. In an effort to broaden the scope of its membership, SWGDE invited representatives of state and local agencies to participate in the organization and in discussions of the proposed new discipline and potential sub-disciplines. As a result of a number of SWGDE meetings, four sub-disciplines were identified for the discipline: Computer Forensics, Forensic Audio, Image Analysis, and Video Analysis.

Beginning in 2000, SWGDE began working with the American Society of Crime Laboratory Directors (ASCLD) and its Laboratory Accreditation Board (ASCLD/LAB) to have the new forensic discipline become part of ASCLD/LAB’s accreditation program. Although the initiative toward gaining accreditation for the discipline was being driven primarily by the federal agencies within SWGDE, a number of state and local laboratories who were already performing analysis in Computer Forensics aided with their support. The new discipline and its sub-disciplines were proposed to the ASCLD membership and they voted to accept the recommendation. The Digital Evidence discipline and its four sub-disciplines officially became part of ASCLD/LAB’s accreditation program effective in 2003.

Subsequently, due to concerns with the continuing analysis of some analog media, the discipline name was changed to its current name, “Digital and Multimedia Evidence.” Although SWGDE made recommendations to ASCLD/LAB for discipline and sub-discipline definitions, it was not clearly articulated at that time, nor has it been clearly articulated to date, just where one sub-discipline ends and another begins. The current definitions as listed in the ASCLD/LAB-International Supplemental Requirements (January 24, 2006) are as follows:

• Digital and Multimedia Evidence (forensic science discipline)
  • Digital Evidence: The analysis of evidence stored or transmitted in binary form.
  • Multimedia Evidence: Analog or digital media, including, but not limited to, film, tape, magnetic and optical media, and/or information contained therein.
  • Computer Forensics: A sub-discipline of digital and multimedia evidence, which involves the examination, analysis, and/or evaluation of digital evidence.
  • Forensic Audio: A sub-discipline of digital and multimedia evidence, which involves the examination, analysis, comparison, and/or evaluation of audio.
  • Image Analysis: A sub-discipline of digital and multimedia evidence, which involves the application of image science and domain expertise to examine and interpret the content of an image and/or the image itself.
  • Video Analysis: A sub-discipline of digital and multimedia evidence, which involves the examination, comparison, and/or evaluation of video.