Chain Of Custody

Chain Of Custody definition in Computer Security terms:

Acronym(s): None

Definition(s): A process that tracks the movement of evidence through its collection, safeguarding, and analysis lifecycle by documenting each person who handled the evidence, the date/time it was collected or transferred, and the purpose for the transfer.
Source(s): CNSSI 4009-2015 (NIST SP 800-72)
NIST SP 800-72

A process that tracks the movement of evidence through its collection, safeguarding, and analysis lifecycle by documenting each person who handled the evidence, the date/time it was collected or transferred, and the purpose for any transfers.
Source(s): NIST SP 800-101 Rev. 1

Synonym(s): None

 

reference: CSRC Glossary