Uni

t-
3Basi
csofDi
git
alFor
ensi
c

Cont
ent
3.
1Di
gitalfor ensics
 Introduct i
ont odi git
alfor ensi c
 Hi stor yoff orensi c
 Rul esofdi gi
tal forensic
 Def initionofdi gitalforensi c
 Di git
al forensi csi nvestigat ionandi tsgoal
3.
2Model sofDi gitalFor ensicI nv est i
gat i
on
 Di git
al For ensi cResear chWor kshopGr oup( DFRWS)Inv
est
igat
iveModel
 Abst ractDi gital ForensicsModel (
ADFM)
 Integr at edDi gitalInvest i
gat ionPr ocess(IDIP)
 Endt oEnddi gital i
nvest i
gat ionpr ocess(EEDI P)
 Anext endedmodel forcy ber cri
mei nvesti
gation
 UMLmodel i
ngofdi git
al for ensi cprocessmodel (UMDFPM)
Vishal Chavre
3.
3Et
hical i
ssuesi ndigi t
al f
orensi c
 Gener al ethical normsf ori nv estigators
 Unet hical normsf orinv est i
gat ion

3.
1Di
git
alFor
ensi
cs
3.
1.1I
ntr
oduct
iont
oDi
git
alFor
ensi
cs
Forensi
csscienceisawell
-est
abli
shedsciencethatpay
svi
talr
olei
ncr
imi
nalj
ust
ice
systems.I
tisappli
edtobot
hcr i
minalandcivi
lacti
on.

Di gi
talfor
ensics someti
mes known as di
gitalf
orensi
c science,i
s a branch of
forensi
cscienceencompassingtherecover
yandi nvest
igat
ionofmat er
ialf
oundi n
digit
aldevi
ces,of
teninrel
ati
ontocomputercri
me.
Di
gitalfor
ensi
csincludestheident
ifi
cat
ion,r
ecover
y,i
nvest
igat
ion,val
i
dat
ion,and
pr
esentati
onoffactsregar
dingdi
git
alevi
dencefoundoncomputersorsi
mil
ardigi
tal
st
oragemediadevices.

3.
1.2Hi
stor
yofFor
ensi
c
1.Fi
eldofpcf or
ensicsbegani n1980swhenper sonal computersbecamea
vi
ablepossibi
li
tyfort hebuyer.
2.I
n1984, anassoci ateFederalBureauofInv estigati
onpr ogr
am wascreated,
whichwasr ef
er r
edt oasmagnetmedi apr
ogr am.
3.I
tiscurrent
lyreferredtoasComput erAnaly si
sandResponseTeam ( CART).
4.MichaelAnderson, theFatherofComput erFor ensi
cs,camei nt
olimel
ight
duri
ngthisperiod.
5.I
nternat
ionalOrgani zati
ononComput erEvidence( IOCE)wasf ormedin1995.
6.I
n1997, thegreatcount ri
esdeclaredthatl
awenf or
cementper sonnelshoul
d
betrai
nedandequi ppedt odealwithsophist i
catedcr i
mes.
 Vishal Chavre

7.In1998,INTERPOLFor ensicSciencesymposi um wasapprehended.

8.In1999,theFBICARTcasel oadgoesbey ond2000caseexami ni
ng, 17
ter
abytesofinfor
mation.
9.In2000,thefi
rstFBIRegionalComput erForensi
cLaboratorywasr ecognized.
10.
In2003,theFBICARTcasel oadexceeds6500cases, examining782t erabytes
ofinf
ormation.

3.
1.3Rul
eofDi
git
alFor
ensi
cs

Whil
eperfor
mingdi
git
alf
orensi
csi
nvest
igat
ion,t
hei
nvest
igat
orshoul
dfol
l
ow t
he
gi
venrul
es:

Rule1.Anexami nat i
onshouldnev erbeper f
ormedont heor i
ginalmedia.
Rule2.Acopyi smadeont of or
ensical
lysteri
lemedia.Newmedi ashould
alwaysbeusedi fav ail
abl
e.
Rule3.Thecopyoft heevidencemustbeanexact ,bit
-by-
bitcopy.
(Someti
mesr eferredt oasabi t
-st
ream copy )
.
Rule4.Thecomput erandt hedataoni tmustbepr ot
ectedduringthe
acqui
sit
ionoft hemedi atoensur ethatthedataisnotmodi fi
ed.
Rule5.Theexami nati
onmustbeconduct edinsuchawayast oprevent
anymodi f
icat
ionoft heev i
dence.
Rule6.Thechai noft hecustodyofallevidencemustbecl earl
ymai ntai
nedt
o
provi
deanaudi tlogofwhom mi ghthav eaccessedtheevidenceandatwhat
ti
me.

3.
1.4Def
ini
ti
onofDi
git
alFor
ensi
cs
Digit
alforensi
csisaser i
esofstepstouncov erandanaly
seselectroni
cdatathr
ough
scienti
fi
cmet hod.Majorgoaloftheprocessistodupli
cat
eor i
ginal
dataandpreserve
ori
ginalev i
dence and then perf
orming the seri
es ofinvest
igat
ion bycoll
ecti
ng,
i
dent i
fyi
ngandv al
idat
ingdigit
alinf
ormat i
onf orthepurposeofr est
ruct
uri
ngpast
events.
3.
1.5Di
git
alFor
ensi
cInv
est
igat
ion
Digit
alf or
ensi
ci nvesti
gati
on (DFI
)is a speci
alty
pe ofinv
esti
gati
on wheret he
scienti
fi
cproceduresandt echni
quesusedwi l
lbeal
lowedt
ov i
ew theresul
t-di
gital
evidence-t
obeadmi ssi
blei
nacourtofl
aw.

3.
1.6Goal
sofDi
git
alFor
ensi
cInv
est
igat
ion:
Themai nobj
ectiv
ecomput erf
orensi
ci nv
est
igat
ioni
stoexaminedi
git
alev
idences
andtoensurethattheyhav
enotbeent amperedi
nanymanner.Toachi
evet
hisgoal
i
nvest
igati
onmustbeabl et
ohandleallbel
owobstacl
es:

1.Handleandlocatecertainamountofv
ali
ddatafr
om largeamountoffi
les
stor
edincomput ersystem.
2.Iti
sviabl
ethattheinformati
onhasbeendel
eted,Isuchsit
uat
ionsear
ching
i
nsidethefi
leisworthless.
 Vishal Chavre

3.Ifthef i
l
esar esecur edbysomepasswor ds,investigatorsmustf indawayt o
readt heprotecteddat ainanunaut hori
zedmanner .
4.Dat amaybest oredi ndamageddev i
cebutt hei nvestigatorsearchesthedata
i
nwor kingdevices.
5.Maj orobstacleist hat,eachandev erycasei sdiff
er entidenti
fyi
ngt he
techniquesandt oolswi l
ltakelongt i
me.
6.Thedi gital
dataf oundshoul dbeprotectedf rom bei ngmodi fi
ed.Itisvery
tedioust oprovet hatdataunderexami nationisunal t
ered.
7.Commonpr ocedur eforinv est
igat
ionandst andardt echniquesforcollect
ing
andpr eservingdigitalevidencesaredesi red.

3.
2 Model
sofDi
git
alFor
ensi
cs
3.
2.1Roadmapf
orDi
git
alFor
ensi
cResear
ch(
RMDFR)
Pal
mardesi
gnedaf
ramewor
kwi
tht
hef
oll
owi
ngi
ndexedpr
ocessesshowni
nFi
gur
e3.
1.

I
dent
if
icat
ion

Pr
eser
vat
ion

Col
l
ect
ion

Exami
nat
ion

Anal
ysi
s

Pr
esent
ati
on
Fi
g3.
1Roadmapf
ordi
git
alf
orensi
c

Si
xPhasesofRMDFRar
easf
oll
ows:
1.Identi
fi
cati
on:Itrecognizesani nci
dentfrom i
ndicatorsanddet er
minesit
st y
pe.
2.Preservat
ion:Preservati
onst agecorrespondsto\ fr
eezi ngthecr i
mescene".I t
consistsin stopping orpr eventi
ng anyact i
vi
t i
est hatcan damagedi gital
i
nf or
mat i
on being col lect
ed.Pr eservati
on involves oper at i
ons such as
preventi
ngpeopl ef r
om usingcomput ersduri
ngcol lection,stoppi
ngongoi ng
deleti
onprocesses, andchoosi ngt
hesaf estwaytocol lectinformati
on.

3.Col l
ect i
on:Col
lecti
onst ageconsistsinf i
ndi ngandcol lecti
ngdi git
al
i
nf ormat i
onthatmayber elevanttothei nv estigati
on.Si ncedigitali
nformati
on
i
sst oredincomput ers,col l
ecti
onofdi gital i
nformat i
onmeansei thercoll
ecti
on
oft heequipmentcont ainingtheinformat ion, orrecordingthei nformati
onon
somemedi um.Col l
ectionmayi nvolv
er emov al ofpersonal comput ersfrom
thecr imescene, copyingorpr i
nti
ngoutcont entsoff i
lesf r
om aser v
er,
recor dingofnetworkt raffi
c,andsoon.

Vishal Chavre
4.Exami nati
on: Exami nati
onst ageconsi stsina\ in-depthsy
stemati
csearchof
evi
dence"r elatingtot hei
ncidentbeingi nvestigated.Theoutputsofexaminati
on
aredat aobject sfoundinthecol l
ectedi nformat i
on.Theymayi ncl
udelogfi
les,
datafilescont aini
ngspecificphrases, ti
mes- stamps, andsoon.
5.Analysis:Theai m ofanalysisisto“dr awconcl usionsbasedonev idencef
ound".
6.Reporting:Thisent ail
swr i
ti
ngar epor toutli
ningt heexaminati
onprocessand
pert
inentdat ar ecoveredfrom theov eralli
nvest i
gation.

3.
2.2 Abstr
actDigi
talFor
ensi
cModel (
ADFM)
Rei
th,Car
r,GunshproposedAbst
ractDi
git
alFor
ensi
cmodel
in2002.
I
dent
if
icat
ion

Pr
epar
ati
on

Appr
oachSt
rat
egy

Pr
eser
vat
ion

Col
l
ect
ion

Exami
nat
ion

Anal
ysi
s

Pr
esent
ati
on

Fi
g.3.
2Abst
ractDi
git
alFor
ensi
cModel
(ADFM) Ret
urni
ngEv
idence
PhasesofADFM model areasf ollows:
1.Identification–i trecogni zesani nci
dentf rom indicator sanddet erminesi tstype.
2.Prepar at i
on–i ti nvolvest hepr eparati
onoft ools,t
echni ques, sear chwar rants
andmoni tori
ngaut horizationandmanagementsuppor t
3.Appr oachst rategy–f or mul atingproceduresandappr oacht ousei nor derto
maxi mi zet hecol l
ect i
onofunt aint
edev idencewhi l
emi nimi zingt heimpactt o
thev i
ct im
4.Preser v ati
on–i tinvol vest hei solat
ion,secur ingandpr eser vi
ngt hest ateof
physical anddi gital evidence
5.Collect i
on–Thi si st or ecordt hephysicalsceneanddupl icatedi gitalev i
dence
usingst andar dizedandaccept edprocedur es
6.Exami nation–Ani n-dept hsy st emati
csear chofev idencer elatingt ot he
suspect edcr i
me.Thi sf ocusesoni dentifyi
ngandl ocat ingpot entialev i
dence.
7.Anal ysis–Thi sdet er minesi mpor t
anceandpr obati
v ev aluet ot hecaseoft he
exami nedpr oduct
8.Present ati
on- Summar yandexpl anati
onofconcl usi on
9.Returni ngEv idence–Phy sical anddigitalpr opert
yr eturnedt opr operowner

Vishal Chavre
3.
2.3 I
ntegr
atedDi
git
alI
nvest
igat
ionPr
ocess(
IDI
P)
DFPM al
ongwith5groupsand17phasesar eproposedbyCarrierandSaffor
d.
DFPM i
snamedt heI
ntegrat
edDigi
tal
Invest
igat
ionProcess(
IDI
P).Thegroupsare
i
ndexedasshowninfoll
owingFi
gure2.3.

Readi
nes Physi
cal
Depl
oymen Rev
ie
Cr
ime

Digi
talCri
me
Invest
igat
ion

Fi
g.3.
3AnI
ntegr
atedDi
git
alI
nvest
igat
ion
Pr
ocessThephasesofI
DIPar
easf
oll
ows:
1.ReadinessphaseThegoal oft hisphaseist oensur ethatt
heoper ati
onsand
i
nfrastr
uctureareabletof ull
ysuppor tani nvestigati
on.I
tincludest wophases:
2.Operati
onsReadinessphase
Infr
astructur
eReadinessphase
3.DeploymentphaseThepur posei stoprovideamechani sm forani ncidentt
o
bedetectedandconf ir
med.I ti ncl
udest wophases:
 Detecti
onandNot ifi
cati
onphase; wherethei ncidenti
sdetect edandt hen
appropri
atepeoplenotifi
ed.
 Confir
mat i
onandAut horizationphase; whi chconf i
rmstheinci dentand
obtai
nsaut hori
zat
ionforlegal approvalt
ocar r
youtasear chwar r
ant.

4.Phy sicalCrimeI nv esti

gat i
onphaseThegoal oft hesephasesi stocol l
ectand
analy zethephy sical evi
denceandr econst r
uctt heact i
onst hattookpl ace
dur i
ngt heincident .
Itincludessi xphases:
 Preser vati
onphase; whichseekst opr eservet hecr i
mescenesot hatev idence
canbel at
eri dent i
fiedandcol lectedbyper sonnelt rainedi ndigitalevidence
i
dent ifi
cati
on.
 Sur veyphase; thatr equiresani nv estigatortowal kthrought hephy sical
crimesceneandi dentif
ypi ecesofphy sicalevidence.
 Document ation phase;whi ch involv es taking phot ographs,sket ches,and
videosoft hecr imesceneandt hephy sicalevidence.Thegoali st ocapt ureas
muchi nformat i
onaspossi blesot hatt helayoutandi mpor tantdet ail
soft he
crimescenear epr eservedandr ecor ded.
 Sear chandcol lectionphase;t hatent ai
lsani n- depthsearchandcol l
ectionof
thescenei sper f
or medsot hataddi ti
onalphy sicalevi
dencei si dentif
iedand
hencepav ingwayf oradi gi
talcrimei nv esti
gat i
ont obegi n

Vishal Chavre
  Reconstr
ucti
onphase;whichi nv
olv
esor ganizi
ngtheresult
sfrom t
heanal
ysi
s
doneandusingthem todevelopatheoryfortheinci
dent.
 Present
ati
onphase;thatpresentsthephysicalanddigi
talevi
dencetoacour
t
orcorpor
atemanagement .

5.Digital CrimeI nvesti

gat ionphaseThegoal i
st ocollectandanal yzethedi gital
evidencet hatwasobt ai
nedf r
om t hephy sicalinvesti
gat ionphaseandt hrough
anyot herf utur emeans.I tincludessi mi l
arphasesast hePhy sical
Investigat ionphases, althought hepr imar yfocusi sont hedi gitalevidence.
Thesi xphasesar e:
 Pr eser vat i
on phase;whi ch pr eser ves t he di gi
talcr ime scene so t hat
ev idencecanl aterbesy nchr onizedandanal yzedf orf urtherev i
dence.
 Sur v eyphase;wher ebyt hei nv estigatort ransferst her elevantdat af r
om a
venueoutofphy sicaloradmi nistrativecont r
oloft hei nvestigatort oa
cont roll
edl ocat
ion.
 Document ati
on phase;whi ch i nv olvespr operlydocument ing thedi gital
ev idencewheni ti sf ound.Thi si nfor mat i
oni shel pfuli nt hepr esent ation
phase.
 Sear chandcol lect i
onphase;wher ebyani n-depthanal ysisoft hedi gital
ev idencei sper formed.Sof twar et ool sar eusedt or ev ealhi dden,del eted,
swappedandcor rupt edf il
est hatwer eusedi ncludingt hedat es,dur at i
on,
logf ileet c.Low- levelt imel iningi sper formedt ot raceauser ’
sact i
v it
ies
andi dent ity.
 Reconst ruct i
onphase;whi chi ncludesput t
ingt hepi ecesofadi gitalpuz zle
toget her ,
anddev elopingi nvest igativehy pot heses.
 Pr esent ati
onphase;t hati nvolvespr esent i
ngt hedi gi talev i
dencet hatwas
foundt ot hephy sical i
nv esti
gat ivet eam.
I
tisnotewor
thyt hatt
hisDFPM f
aci
l
itat
esconcur
rentexecut
ionofphy
sicaland
di
git
ali
nvest
igat
ion.

6.Reviewphaset hisent ai l
sar eviewoft hewhol einv estigationandi dentifi
es
areasofi mprov ement .TheI DIPmodel doeswel lati l
lustratingthef or
ensic
process,andal soconf ormst othecy berterrori
sm capabi l
itieswhi chr equir
ea
digi
talinvest
igat i
ont oaddr essi ssuesofdat aprotect i
on, dat aacqui si
tion,
i
magi ng,extraction,int er
rogat i
on, i
ngest i
on/ normal i
zat i
on, analysisand
report
ing.Italsohi ghlightst hereconst ructionoft heev entst hatledt othe
i
ncidentandemphasi zesr eviewi ngthewhol etask, henceul ti
matel ybuildi
nga
mechani sm forqui ckerf orensicexami nations.

3.
2.4 Endt
oEndDi
git
alI
nvest
igat
ionPr
ocess(
EEDI
P)
ThismodelisproposedbySt ephensoncompr i
sesofsixmajormechanism wi
thin
fr
amework.EEDIPstandsforEnd-to-EndDi
git
alI
nvest
igat
ionPr
ocesswhichensures
i
nvest
igat
ionoperat
ionfr
om beginningtoend.

ThephasesofEEDI
Par
easf
oll
ows:
1.Ident
if
icati
onphaseinvol
vesident
if
yingthenatur
eofinci
dentf
rom possi
ble
knowni ndi
cat
ors.I
ndicat
orsareexperi
enceinv
estigat
or.

Vishal Chavre
 2.Thepr eservati
onphasei ncl udescondensingt hei nvest i
gati
onandf indi
ngti
lldat
e.
3.Thecol l
ectionphasei ncl udesdocument ati
onoft hephy si
calsceneand
repl
icati
onoft hedi git
al ev i
denceusi ngappr ovedstandar dprocedur e.
4.Exami nati
onphasei nvolv esobtainingandst udy i
ngt hedi gi
talevidence
.Met hodofext ractioni susedf orreconstr
uct i
ngdat af r
om themedi a.
5.Intheanal y
sisphaset hev i
tall
yoft hedocument edev idenceisexpl oredand
conclusionsaredr awnbyi ntegrat
ingchunkofdat a.
6.Thepr esentati
onphasei nv olvessummar i
zingt heev idencesf oundi nthe
processofi nvestigat i
on.
I
dent
if
icat
ion

Pr
eser
vat
io

Col
l
ect
ion

Exami
nat
ion

Anal
ysi
s

Pr
esent
ati
on

Fi
g3.
4Endt
oEndDi
git
alI
nvest
igat
ionPr
ocess
3.
2.5AnExt
endedModel
ofCy
ber
cri
meI
nvest
igat
ion(
EMCI
)
The DFPM proposed by S.O.Ciardhuai
n-an Extended ModelofCy
ber
cri
me
I
nvest
igat
ion(
EMCI )-i
smoreli
kel
ythemostcomprehensivet
il
ldat
e.
PhasesofEMCI :TheEMCIf oll
owswat erf
allmodelasev er
yact i
vi
tyoccursi
n
sequence.Thesequenceofexamine,hypothesis,pr
esent
,andpr ove/
defendar
e
boundtoberepeat
edastheev
idenceheapincreasesduri
ngthei
nvesti
gat
ion.

1.Awar enessi sthephasedur i

ngwhi chtheinvest igatorar
ei nformedt hata
cri
mehast akenpl ace; t
hecr i
mei sr eport
edt osomeaut hority
.Ani ntr
usi on
detectionsy st
em mayal sot ri
gger edsuchawar eness.
2.Authorizationisthest agewher ethenat ureofi nv esti
gati
onhasbeeni denti
fied
andt heunpl annedaut horizationmayber equiredt oproceedandt he
authorizati
oni sobt ai
nedi nternall
yorext ernally.
3.Planningi simpact edbyi nf ormat i
onf rom whi chandout si
det heor ganizati
on
thatwillaffectthei nvestigation.Internalfactorsar etheorgani zati
onpol ici
es,
procedur es,andf ormeri nv estigat
iv eknowledgewhi l
eoutsidef act
orsconsi st
oflegal andot herrequi r
ement snotknownbyt hei nvest
igators.

Vishal Chavre
 St
orage
of
Awar
enes
s Ev
idence

Aut
hor
izat
io Examinat
ion
n ofevi
dence

Pl
anni
ng Hy
pothesi
s

Not
if
icat
ion
Pr
esentat
io
nof
hypot
hesi
s

Searchf
or
i
denti
fy Proof
/
evi
dence Def
ense
of

Col
l
ecti
on
of
evi
dence

Di
ssemi
nat
io
nof
Tr
ansport i
nfor
mat
ion
of
Evi
dence

Fi
gur
e3.
5anExt
endedModel
ofCy
ber
cri
meI
nvest
igat
ion
3.
2.6UMLmodel
i
ngofdi
git
alf
orensi
cpr
ocessmodel
(UMDFPM)
Kohn,
Elof
f,andOli
verproposedtheUMLModelingofDigi
tal
For
ensi
cPr
ocess
Model
,aptparadi
gm formodeli
ngforensi
cpr
ocesses.
 Col
l
ec Exami
n Anal
ysi Repor

Evi
denc
e
r
eport
Fi
g3.
6UMLmodel
i
ngofdi
git
alf
orensi
cpr
ocessmodel

Vishal Chavre
PhasesofUMDFPM:
KohnandOl ivermadeuseofUMLandcasedi agram (Fi
gure2.6)todemonstr
ateal
l
thephasesandi t
sinter
acti
onwithal
linv
esti
gators.Twopr ocesseshavebeenadded
tot heacti
vi
tydiagram toclubwithKohnf ramewor k.Thesear e“prepar
e”inthe
preparat
ionphaseand“present
”inpr
esentat
ionphase.
1.Thewhol eprocessist r
iggedbycr i
minalacti
vi
ty,whichconstit
utesofstarti
ng
point.Prepareisthef i
rststep.Therestoftheprocessesfoll
owl ogical
l
yf r
om
preparet ocoll
ect,authenti
cate,examinat
ionandt heanalyze
2.Authent i
cati
onisintroducebet weenexami nat
ionandcol l
ecti
onphaset o
makesur ethatthedat aintegr
ityoft
hedat abefor
et heexaminationisstart
ed
i
spr eserved.
3.Exami nati
oncanal terthecont ent
sofdatasuchasi nthecaseofcompr essed
fi
les,hiddenfil
esandot herformsofdataincompr ehensi
on.
Thepr i
maryinvesti
gatorwillconsiderwhet hertoanal
yzemor edat aort oextr
act
mor edatafr
om theor i
ginalsource.Af t
erreachi
ngthi
sdecisi
onpoi ntsanevidence
reporti
scompi l
edaspar toft her eportprocedur
e.Wholedocumenti scompiled
duri
ngtheinvest
igati
onphase.Theev idencedocumentist
heout putofinvest
igat
ion
phase.
3.
3Et
hical
issuesi
nDi
git
alFor
ensi
c
Ethi
csindi
git
alfor
ensicfieldcanbedef i
nedassetofmoralpri
nci
plesthatr
egul
ate
theuseofcomputers.Et
hi caldeci
sionmaki
ngindigi
talf
orensi
cwor kcompri
sesof
oneormoreofthefoll
owing:
1.Honestytowar
dstheinvesti
gati
on
2.Prudencemeanscareful
lyhandli
ngt hedigit
alevi
dences
3.Compl i
ancewi
tht
hel awandpr ofessionalnorms.

3.
3.1Gener
alet
hical
nor
msf
ori
nvest
igat
or
I
nvest
igat
orshoul
dsat
isf
ythef
oll
owi
ngpoi
nts:
1.Tocont r
ibutetothesocietyandhumanbei ng
2.Toav oidhar mt oothers
3.Tobehonestandt rustwort
hy
4.Tobef ai
randt akeact i
onnott odiscr
imi
nate
5.Tohonorpr opertyri
ghts,i
ncludingcopyr
ightsandpat
ent
s
6.Togi vepr opercreditt
oint
el l
ectualpr
opert
y
7.Tor espectt hepriv
acyofot hers
8.Tohonor
conf
identi
ality9.

3.
3.2Unet
hical
nor
msf
orDi
git
alFor
ensi
cInv
est
igat
ion
I
nvest
igat
orshoul
dnot
:
1.Uphol
danyrelev
antevidence
2.Decl
areanyconfi
dent
ialmattersorknowledge
3.Expr
essanopini
onont heguiltori
nnocencebelongi
ngt
oanypar
ty
4.Engageori nvolv
einanykindofunet hi
caloril
legalconduct
5.Deli
ber atelyorknowingl
yundertakeanassignmentbey ondhi
m orher
capabi l
it
y
6.Distortorf al
sif
yeducati
on,tr
aining,cr
edenti
als
7.Displaybi asorprej
udicei
nf i
ndingsorobservation
8.Exceedorout paceauthori
zati
oni nconduct
ingexami nati
on