The subject of criminal network electronic forensics has the remarkable interdisciplinary characteristics of law and computer science.According to the evidential characteristics of electronic data and the general principle of forensic technology,this paper studies the legitimacy and compliance of network electronic forensic technology in criminal cases by combining them effectively from the legal point of view.Through the classification of network electronic forensics technology,this paper elaborates the legal regulations under different technologies separately:one is passive analysis technology,including log analysis forensics,dynamic address forensics,Web technology forensics,IPS and IDS forensics,data recovery forensics and cloud computing forensics.Starting from the technical principles,aiming at the legal risks faced by various technologies,the protection of forensics scene is discussed.The other is active acquisition technology,including honeycomb technology,malicious code technology and network communication monitoring technology.Through the analysis of the legitimacy of such technology,the legal risks and corresponding legal countermeasures are analyzed one by one.?Finally,it looks forward to the development trend of the legal regulation of network electronic forensics,and further explores the current development trend,which aspects can be better from the legal perspective to regulate network electronic forensics. |