Craig is sitting in his office enjoying a cup of coffee when his telephone rings. He answers and on the line is his boss, George, the laboratory director. George informs Craig that he wants to provide Digital Forensic analysis services within the next six months. Craig begins to get an uneasy feeling about where this discussion might be heading. After some general conversation, George finally states to Craig: “Craig, since you are my most knowledgeable supervisor when it comes to computers, I’m putting you in charge of getting the section operational.” Craig returns to his office, sits down, and thinks to himself: “I’ve never done anything like this before. What doI do now and where do I begin?”

Does this sound familiar? Although there are many complex issues that have to be addressed before proceeding, one of the first tasks is to develop an action plan. Very early in this process, the scope of the forensic services to be offered must be determined. Will the scope be just computer analysis? Will it include the analysis of other media types such as video and audio tapes/cassettes? Will image analysis be included? The type of service(s) offered will have a profound effect on everything that follows. Only after this has been resolved should you proceed.

The critical issue of how much and what type of space is going to be needed must be addressed. Often Digital Forensic sections end up in whatever office-type space was/is available. These areas usually have space for several desks and a shelf or two for supplies. Laboratory management sometimes has a misconception that since there are no chemical or biohazards to be handled, it is appropriate to set up operations in areas that are/were office space. Sound familiar? How many of you are actually working in this environment today? Is it too hot? Do you have enough space for equipment? Are there sufficient electrical outlets? Etc., etc.

For those contemplating starting a Digital Forensics section, review the issues listed below. Although not a complete listing, minimally, it can serve as a starting point. Individual specific needs and requirements will possibly identify others that have to be addressed. If the goal is to eventually attain accreditation for the Digital Forensics section, than consider enlisting the aid of a consultantwith ASCLD/LAB experience to assist throughout the entire process.

Initial Planning: This should also include projected timelines.

• Overall scope of the services to be offered
• In house only analysis and/or on-site analysis (crime scene)
• Who is going to coordinate the project
• Hiring of a consultant or architect
• Location (in agency, stand-alone externa lbuilding, rented/leased space, turnkey operation, etc.)
• Space requirements
• Number of examiners assigned to the section
• Telephone communication systems
• Alarm systems for security purposes
• Dry fire suppression system
• Computer networking within the section (Ethernet, wireless, etc.)
• Hardware requirements(purchase equipment, build your own systems, etc.)
• Software (licensed software, what to purchase, how many copies, etc.)
• Furniture requirements (modular or other type)
• Routine supplies(optical disks, cables, etc.)
• Bidding process for construction/renovation
• Section startup
• Budget allocations

Design: It may be beneficial to visit existing Digital Forensics sections.

• The overall design
• Physical building location and ease of access (groundfloor, upper floor, parking, etc.)
• Floor plans (efficient work flow, locations of adjacent areas, etc.)
• Administrative area
• Evidence intake, receiving, storage, and return area
• Forensic area (individual workstations, common work areas, etc.)
• Lighting (natural, fluorescent,etc.) 
• UPS requirements (location of electrical outlets, etc.)
• Security provisions (key control, electronic, biometric, etc.)
• HVAC intakes/outlets(removal of generated instrument heat, humidity control, etc.)
• Finishes for floors, walls, and ceiling (can vary depending on the services offered)
• Equipment and systems maintenance
• Corridor locations (ease of access, provisions for tours, etc.)
• Future expansion (new equipment, more personnel, storage,etc.)

Operations: Critical to the overall quality of services provided.

• Organizational structure
• Actual number of staff needed
• Hiring practices
• Training programs
• Administrative and analytical policies and procedures
• Validation/verification practices
• Evidence handling/storage
• Proficiency testing
• Quality assurance oversight
• Health and safety planning
• Access to legal counsel

One of the goals the Digital Insider column is to address issues that can and will arise in digital forensics. This first column begins a series that will discuss topics relevant to starting a Digital Forensics section. Subsequent columns will cover in more detail such issues as hardware requirements, software requirements, and operational issues. I encourage reader feedback regarding this columns content or topics for future columns.

John J. Barbara is a Crime Laboratory Analyst Supervisor with the Florida Department of Law Enforcement (FDLE) in Tampa, FL. An ASCLD/LAB inspector since 1993, John has conducted inspections in several forensic disciplines including Digital Evidence. John is the General Editor for the “Handbook of Digital & Multimedia Evidence” to be published by Humana Press later in 2006.