ISC2 Systems Security Certified Practitioner (SSCP) Practice Question
During a forensic examination of a compromised application server, an internal investigator encounters a folder containing unencrypted personal photographs that are unrelated to the incident scope. The investigator considers the following actions. According to commonly accepted digital-forensic ethical guidelines, which action would most clearly violate professional duties?
Exclude the photos from acquisition because they fall outside the defined search parameters and leave them untouched on the server.
Hash the photo files and add the hashes and originals to the evidence repository under an updated chain-of-custody form.
Record the presence of the photos in the case notes without reviewing their content further, then notify legal counsel.
Copy the photos to personal media to examine their metadata later on a home computer.
Professional codes of ethics for digital-forensic practitioners stress impartiality, respect for privacy, and a strict prohibition on using evidence for personal gain. Copying the photos to personal media for later review outside the controlled lab introduces a conflict of interest, breaks the chain of custody, and exposes non-case data to unauthorized access-clearly breaching ethical mandates. In contrast, hashing and formally seizing the files preserves integrity within an auditable chain, documenting and notifying counsel maintains transparency while respecting scope, and leaving out-of-scope data untouched avoids over-collection; all three are accepted practices that align with ethical and legal requirements.
Ask Bash
Bash is our AI bot, trained to help you pass your exam. AI Generated Content may display inaccurate information, always double-check anything important.
What is the chain of custody in digital forensics?
Open an interactive chat with Bash
Why is impartiality important in digital forensic investigations?
Open an interactive chat with Bash
What are commonly accepted ethical guidelines for forensic practitioners?
Open an interactive chat with Bash
ISC2 Systems Security Certified Practitioner (SSCP)
Incident Response and Recovery
Your Score:
Report Issue
Bash, the Crucial Exams Chat Bot
AI Bot
Loading...
Loading...
Loading...
Pass with Confidence.
IT & Cybersecurity Package
You have hit the limits of our free tier, become a Premium Member today for unlimited access.
Military, Healthcare worker, Gov. employee or Teacher? See if you qualify for a Community Discount.
Monthly
$19.99 $11.99
$11.99/mo
Billed monthly, Cancel any time.
$19.99 after promotion ends
3 Month Pass
$44.99 $26.99
$8.99/mo
One time purchase of $26.99, Does not auto-renew.
$44.99 after promotion ends
Save $18!
MOST POPULAR
Annual Pass
$119.99 $71.99
$5.99/mo
One time purchase of $71.99, Does not auto-renew.
$119.99 after promotion ends
Save $48!
BEST DEAL
Lifetime Pass
$189.99 $113.99
One time purchase, Good for life.
Save $76!
What You Get
All IT & Cybersecurity Package plans include the following perks and exams .