skip navigation

CrimeSolutions.gov

Add your conference to our Justice Events calendar

PUBLICATIONS

NCJRS Abstract

The document referenced below is part of the NCJRS Library collection.
To conduct further searches of the collection, visit the NCJRS Abstracts Database.

How to Obtain Documents
 
NCJ Number: NCJ 216981     Find in a Library
Title: Test Results for Hardware Write Block Device: Tableau Forensic SATA Bridge T3u (USB Interface)
Corporate Author: Office of Law Enforcement Standards (OLES)
United States of America
Date Published: 01/2007
Page Count: 19
Sponsoring Agency: National Institute of Justice
US Department of Justice
Office of Justice Programs
United States of America
Grant Number: 2003-IJ-R-029
Sale Source: National Institute of Justice/NCJRS
Box 6000
Rockville, MD 20849
United States of America

NCJRS Photocopy Services
Box 6000
Rockville, MD 20849-6000
United States of America
Document: PDF 
Type: Test/Measurement ; Guideline
Language: English
Country: United States of America
Annotation: This report presents results from testing the Tableau Forensic SATA Bridge T3u (USB Interface) write blocker against the Hardware Write Blocker (HWB) Assertions and Test Plan Version 1.0, which is available on the Web site of the Computer Forensics Tool Testing (CFTT) program.
Abstract: This specification sets four requirements for top-level tool requirements. First, a HWB device shall not transmit a command to a protected storage device that modifies the data on the storage device; second, a HWB device shall return the data requested by a read operation; third, a HWB device shall return without modification any access-significant information requested from the drive; and fourth, any error condition reported by the storage device to the HWB device shall be reported to the host. The currently tested device complied with the first requirement, in that it always blocked any commands that would have changed user or operating system data stored on a protected drive. It also complied with the second requirement, in that the tested HWB device always allowed commands to read the protected drive for all test cases run. In addition, the tested device always returned access significant information from the protected drive without modification, thus complying with the third requirement. Further, the HWB device always returned error codes from the protected drive without modification for all test cases run, thus complying with the fourth requirement. In addition to presenting test results, this report explains the test case selection and describes the testing environment. The latter encompasses the test computers, protocol analyzer, hard disk drives, and support software.
Main Term(s): Computer aided investigations
Index Term(s): Evidence collection ; Computer hardware systems ; Computer software ; NIJ grant-related documents
Note: NIJ Special Report
   
  To cite this abstract, use the following link:
https://www.ncjrs.gov/App/Publications/abstract.aspx?ID=238604

* A link to the full-text document is provided whenever possible. For documents not available online, a link to the publisher's web site is provided.