Securing the Evidence in eDiscovery


There are many challenges in creating effective and efficient searches of digital data for discovery purposes and one important area relates to securing the evidence (content) once discovered for later use. Whether the process is manual or automated using one of the many tools, it is essential that the authenticity and integrity of discovered content is secured so that when presented at a later date it can be beyond challenge. Digiprove provides a simple, secure and confidential technology that applies a unique digital fingerprint to the content and issues a digital certificate for every file or folder regardless of content type (Text, Image, Audio, and Video). The content remains fully confidential in that there is no requirement to send the content to the secure “Proof Engine” server, this is a core part of the Digiprove patented process. There are three products within the Digiprove portfolio that can be used depending on the eDiscovery methodology chosen.

  1. Selfprotect, an on-line service that allows the manual selection of content to be secured and also allows the sending of secure emails.
  2. Autoprotect, a small utility that runs in the background and automatically protects those files and folders identified as sensitive once set up.
  3. Embedprotect, using a software developer’s kit, the Digiprove core function can be quickly integrated into your software.

How does it work – The steps that occur:

  •   Calculate digital fingerprint of content
  •   The content itself remains secret
  •   Create certificate containing fingerprint and other identifying details
  •   Digitally sign the certificate
  •   Transmit signed certificate to recipient
  •   Record in database
  •   Embed in tamper-proof audit trail

Result: Creates absolute proof of content & time-stamp and provides independent certification of this

(Verification) Proving prior existence of content:

  •   Using original source content:
  •   Calculate fingerprint
  •   Retrieve certificate (if required)
  •   Compare fingerprint with that embedded in certificate
  •  Verify integrity of signed certificate:
  •  Check public key against known values
  •  Check certificate chain to trusted CA
  •  Verify digital signature using public key

 

Result: The original content is always verifiable & any alteration gives a negative indicator

Conclusion

The inclusion of a technology such as digiprove in your eDiscovery process strengthens the trust in discovered digital content and removes any potential ambiguity or challenge when presented at a later date.

1 Comment

  1. the cloud as these teams are starting to work throguh sticky issues in the cloud regarding provider contracts that dictate care, custody and control of data in the cloud. Who is accountable for data

Leave a Reply

Your email address will not be published. Required fields are marked *