Computer Forensics Software Solutions to Ease the Burden on Digital Investigations Labs Everywhere

AccessData® enables computer forensics labs of all sizes, facing an array of challenges, to work more effectively. A single-person lab can radically speed up the processing of cases with the four-worker distributed processing available with FTK®. However, labs handling massive data sets, utilizing a distributed workforce, or looking to collaborate with attorneys, HR personnel or other non-forensic parties can step up to AccessData Lab. AD Lab adds powerful and intuitive web-based review functionality, expanded distributed processing capabilities with a centralized processing farm, and a centralized database infrastructure. This allows collaborative analysis among multiple forensic examiners, real-time task and case management, and secure, web-based collaboration with parties outside the lab. Regardless of the size, scope or mission of your computer forensics lab, AccessData has a solution that will meet your needs.

Which Computer Forensics Solution is Right for You?

A Secure Computer Forensics Lab Solution

  • Electronic evidence can be fully secured at the case or file level.
  • Granular role-based administration allows administrators to assign users to a given case or set of data within a case.
  • Users can be restricted by feature, so only qualified users can access more advanced functions.
  • Centralized logging ensures accountability.
  • Active Directory integration for authentication.
  • Web browser can use SSL for secure communication.

Ease of Use and Efficiency

  • Leverage a shared, distributed processing farm to process massive data sets in a fraction of the time it would take using traditional computer forensics tools.
  • User-friendly web interface enables true native review without having to convert to HTML or image format.
  • Overcome the bandwidth constraints of distributed labs with centralized or distributed databases and web-based analysis, enabling efficient sharing of workload.
  • Integrates with FTK®, AD Enterprise and AD eDiscovery to streamline investigations for law enforcement, government and corporate labs.
  • Simultaneous collaboration between non-technical Web reviewers and FTK forensic analysts.

Manage Multiple Cases and Examiners

  • Multiple examiners share a centralized database for collaboration and review.
  • Centralized processing, indexing and data storage, with the ability to queue jobs into the distributed processing farm.
  • Role-based permissions
  • Track status of tasks

Distributed processing performance is dependent on the hardware and networking technology you use. Lab customers receive configuration assistance from our engineering team to ensure optimized functionality.

Tier 1 Appliance Specifications

Software
Operation System
Windows Server 2008 R2 SP1, Standard Edition, Includes 5 CALS
Database
PostgreSQL
Hardware
Base Unit
Dell PowerEdge T620* (16 drive bays)
Processor
4 Logical Cores – Intel Xeon 3.30GHz, 10M Cache, 8.0GT/s QPI, Turbo
Memory
32GB, 1600MHz RDIMMs
Optical Drive
16X DVD-ROM, SATA
Hard Drives
2 – 500GB 7.2K RPM SATA 2.5-in Ho-tPlug Hard Drive (Operating System)
Hard Drives
4 – 1TB 7.2K RPM SATA 3Gbps 2.5in Hot-Plug Hard Drive (Temp, Case, DB)
NIC
1GBE – Dual Port
Remote Mgmt
iDRAC7 Express
Power Supply
495W

*Available in both tower and rack mount configurations

Tier 2 Appliance Specifications

Software
Operation System
Windows Server 2008 R2 SP1, Standard Edition, Includes 5 CALS
Database
PostgreSQL
Hardware
Base Unit
Dell PowerEdge R520 (8 drive bays)
Processor
16 Logical Cores – Intel Xeon 2.30GHz, 20M Cache, 8.0GT/s QPI, Turbo
Memory
96GB, 1600MHz RDIMMs
Optical Drive
16X DVD-ROM, SATA
Hard Drives
2 – 600GB 15K RPM SAS 6Gbps 3.5in Hot-plug Hard Drive (Operating System)
Hard Drives
6 – 600GB 15K RPM SAS 6Gbps 3.5in Hot-plug Hard Drive (Temp, Case, DB)
NIC
1GBE – Broadcom 5720 2x Dual Port
Remote Mgmt
iDRAC7 Express
Power Supply
Dual 750W, Hot-plug, Redundant (1+1)