Computer Forensics BAS

College of Sciences
Undergraduate major / Bachelor of Applied Science

About this program

The Bachelor of Applied Science in Computer Forensics is a four-year, 120 credit program offered through the Computer Science and Cybersecurity department. This program prepares students with knowledge in computer and digital incident investigation, eDiscovery, network and mobile forensics, legal and ethical issues in computing, and computer and privacy laws.

Graduates will work in the computer technology and related fields in supporting companies and organizations to protect their interests or in helping law firms and legal organizations to deal with civil litigations and internal disputes/arbitrations. Whenever needed, graduates can also assist law enforcement to fight against cyber terrorism and crimes.

Student outcomes

  • Knows how to collect evidence so that malicious acts can be discovered and recovered.
  • Knows how to preserve evidence so that it reflects all the pertinent information on the subject device when it was collected.
  • Knows how to present highly technical evidence in court so that judges, lawyers, and juries can understand the implications of the digital evidence for civil cases.
  • Is familiar with the computer security policies, electronic investigation procedures, cyber activity regulations, national and international digital transaction standards, and computer and information laws.
  • Is knowledgeable about computer operating systems, hardware components and architecture, digital communication and networks, and compute system configuration and administration.
  • Is able to use script programming languages as well as computer forensic tools to conduct digital forensic investigations for companies’ internal affairs or for law firms’ civil cases.

Enrolling in this program

Program eligibility requirements

Students expressing interest in the Computer Forensics BAS  when they apply for admission to the university will be assigned an academic advisor in the College of Sciences and will be given pre-major status.

To be eligible for acceptance to the Computer Forensics major, students must submit a College of Sciences Undergraduate Program Declaration Form when the following is completed:

  • Minimum cumulative GPA of 2.5 for CFS 262, CFS 264 and CFS 280 or transfer equivalents 
  • Complete the General Education Writing Requirement (GELS Goal I, Part I),
  • Foundation courses (see below) with a grade of C- or better

Students who do not meet the requirements above or are on academic probation will not be accepted to the major. Students not accepted to the major will not be allowed to take advanced courses in the discipline.

Current students: Declare your program

Once you’re admitted as an undergraduate student and have met any further requirements your chosen program may have, you declare your major or declare a minor.

Future students: Apply now

Apply to Metropolitan State: Start the journey toward your Computer Forensics BAS now. Learn about the steps to enroll or, if you have questions about what Metropolitan State can offer you, request information, visit campus or chat with an admissions counselor.

Get started on your Computer Forensics BAS

Program requirements

Students are encouraged to complete the major foundation courses as part of an Associate of Science (AS) or an Associate of Applied Science (AAS) degree program in a field such as System Administration, Networking Administration, Database Administration, or Computer Forensics at a community or technical college. Alternatively, they could start the program as freshmen at Metropolitan State University and take these classes with a view to major in Computer Forensics.

No student may be enrolled in an ICS or a CFS upper division course without completing all courses with a grade of C- or better.

Courses required for your specific program are listed in the course requirements section of this page. They include prerequisite, core, and elective courses. Contact your advisor with questions concerning your degree plan.

Course requirements

Prerequisites (26 credits)

CFS 262 Computer and Operating Systems Fundamentals I

4 credits

This course covers the fundamental concepts of a single user operating system. The topics discussed in the course are the basic concepts of computer organization and architecture, memory management, process handling, disk and file management and control, and peripherals operation. Students also have the opportunities to learn the techniques and procedures of system installation, configuration, administration, and trouble shooting. The operating systems illustrated in the course are MS Windows and/or Mac OS X.

Full course description for Computer and Operating Systems Fundamentals I

CFS 264 Computer and Operating Systems Fundamentals II

4 credits

This course covers the fundamental concepts of a multi-user operating system. The topics discussed in the course are conventional computer organization and architecture, memory management, process handling, disk and file management and control, and peripherals operation. Students also have the opportunities to learn the techniques and procedures of system installation, configuration, administration, and trouble shooting. The operating systems illustrated in the course are Linux and Unix.

Full course description for Computer and Operating Systems Fundamentals II

CFS 280 Introduction to Computer Forensics

4 credits

In this course, students learn the fundamental principles and concepts in computer forensics. The topics include the classification of the digital evidence, the procedure of discovering and preserving evidence, types of computer and Internet crimes, and analysis of computer crime statistics and demographics. Students also learn how to search and retrieve information to find the evidence using some common tools. Related legal procedures, regulations, and laws are also discussed briefly.

Full course description for Introduction to Computer Forensics

CJS 101 Introduction to Criminal Justice

3 credits

As an introduction to the field of criminal justice, this course provides students with a brief but comprehensive overview of criminal justice institutions in American society. Students learn about the role of the criminal justice system in maintaining social order. The course also examines the duties and functions of criminal justice practitioners, including police officers, prosecutors, judges and correctional officials from the initial violation of the criminal law, to the punishment and release of convicted offenders.

Full course description for Introduction to Criminal Justice

Computing Fundamentals

Choose one

ICS 140 Computational Thinking with Programming

4 credits

An introduction to the formulation of problems and developing and implementing solutions for them using a computer. Students analyze user requirements, design algorithms to solve them and translate these designs to computer programs. The course also provides an overview of major areas within the computing field. Topics include algorithm design, performance metrics, programming languages and paradigms, programming structures, number representation, Boolean algebra, computer system organization, data communications and networks, operating systems, compilers and interpreters, cloud computing, data analytics, mobile computing, internet of things, and artificial intelligence) database, internet, security, privacy, ethics, and other societal and legal issues. Lab work and homework assignments involving flow charting tools and programming using a language such as Python form an integral part of the course.

Full course description for Computational Thinking with Programming

CFS 160 Computer Forensics Fundamentals

4 credits

Computer forensics involves the activities in collecting, processing, preserving, analyzing and presenting computer-related evidence in court for criminal prosecutions or civil litigations. In this course, students will be exposed to those computer forensic activities through lectures, case studies, hands-on labs, and individual and group projects. Students will study the fundamental concepts and learn essential artifacts of computer operation, internet control, digital evidence collection, and computer crime investigation, and be able to recognize as well as understand how a computer related crime or incident is prosecuted or litigated in order to have a comprehensive view of the field of Computer Forensics. This course is designed for the first year of the students majoring in Computer Forensics or the students who are interested in knowing what Computer Forensics is about.

Full course description for Computer Forensics Fundamentals

Law

Choose one

CJS 210 Constitutional Law

3 credits

This course provides an overview and critical examination of constitutional law as it relates to criminal justice issues. A historical overview of the U.S. Constitution is covered along with how the Constitution works in the legal system including the role of the Supreme Court and constitutional interpretation. The first, fourth, fifth, sixth, eighth, and fourteenth amendments are emphasized. The course also examines how the Constitution protects the rights of those charged as well as the rights of law-abiding citizens.

Full course description for Constitutional Law

LAWE 220 Legal Studies in Law Enforcement

4 credits

This course meets corresponding learning objectives of the Minnesota Board of Peace Officer Standards and Training. Examines law enforcement practices and applications from both constitutional and legal perspectives in these topic areas: constitutional considerations; legal processes pertaining to warrants, subpoenas, orders and summons; contacts, detentions and arrests; knowledge and application of the Minnesota criminal and traffic codes, statutes and regulations; legal foundation for peace officer use of force; and peace officer rights and liabilities.

Full course description for Legal Studies in Law Enforcement

Calculus or Statistics Requirement

Choose one

STAT 201 Statistics I

4 credits

This course covers the basic principles and methods of statistics. It emphasizes techniques and applications in real-world problem solving and decision making. Topics include frequency distributions, measures of location and variation, probability, sampling, design of experiments, sampling distributions, interval estimation, hypothesis testing, correlation and regression.

Full course description for Statistics I

MATH 208 Applied Calculus

4 credits

This course provides an overview of the differential calculus for single and multivariable functions and an introduction to the integral calculus and differential equations, with an emphasis on applications to the natural and physical sciences. Particular topics covered in the course include limits, ordinary and partial derivatives, applications of derivatives, definite integrals, fundamental theorem of calculus, applications of definite integrals, models involving differential equations, Eulers method, equilibrium solutions.

Full course description for Applied Calculus

MATH 210 Calculus I

4 credits

Since its beginnings, calculus has demonstrated itself to be one of humankind's greatest intellectual achievements. This versatile subject has proven useful in solving problems ranging from physics and astronomy to biology and social science. Through a conceptual and theoretical framework this course covers topics in differential calculus including limits, derivatives, derivatives of transcendental functions, applications of differentiation, L'Hopital's rule, implicit differentiation, and related rates.

Full course description for Calculus I

Requirements (120 credits)

Core (24 credits)

CFS 380 Digital Evidence Analysis

4 credits

In this course, students continue not only to learn how to identify and collect digital evidence through forensics search tools, but also to study the emerging data mining techniques. The topics include how to design a plan for a computer crime investigation; how to select a computer software tool to perform the investigation; how to articulate the laws applying to the appropriation of computers for forensics analysis; how to verify the integrity of the evidence being obtained; how to prepare the evidence collected for the use in the court; and how to present the evidence as an expert eyewitness in court. Some hypothetical and real cases are also discussed in class.

Full course description for Digital Evidence Analysis

CFS 484 Computer Laws

4 credits

In this course, students will learn the law relating to computer software, hardware, and the Internet. The areas of the law include intellectual property, cyberspace privacy, copyright, software licensing, hardware patent, and antitrust laws. Legislation and public policies on cyberspace technology, cryptographic method export controls, essential infrastructure protection and economic development are also discussed in class.

Full course description for Computer Laws

CFS 499 Computer Forensics Internship/Capstone

4 credits

This course is designed to provide students an opportunity to practice what they have learned from the computer forensics program through a group project. The topic of the project must be approved by either the instructor or the director of the program. Each project must have a written report and an oral presentation. This course is recommended to be taken in the last semester of the program study.

Full course description for Computer Forensics Internship/Capstone

ICS 382 Computer Security

4 credits

This course introduces principles of computer security with integrated hands-on labs. The course prepares students to effectively protect information assets by providing fundamental details about security threats, vulnerabilities, and their countermeasures ranging from a simple computer to enterprise computing. Topics include broad range of today's security challenges, common security threats and countermeasures, security management, access control mechanisms, applied cryptography, privacy issues, computer ethics, file system security, and network security.

Full course description for Computer Security

Core (8 credits)

Choose two

CFS 345 Electronic Discovery I

4 credits

In this course students learn the fundamental principles and concepts of electronic discovery including the collection, preservation, filtering, processing, review, and production of electronically stored information such as email messages, word processing documents, spreadsheets, and other computer files. Students also learn the relationship between digital evidence analysis and electronic discovery and its role in civil litigation, government regulatory proceedings, and internal corporate investigations. Unique issues involving electronic discovery that arise in international contexts are also addressed.

Full course description for Electronic Discovery I

CFS 445 Electronic Discovery II

4 credits

In this course students learn advanced topics and concepts of electronic discovery, such as the Electronic Discovery Reference Model, Information Governance, Technology Assisted Review, Predictive Coding, electronic discovery of cloud data, electronic discovery of social media data, electronic discovery of mobile device data and instant messages, as well as the use of software technology in electronic discovery. The course will also compare and contrast international electronic discovery issues in a global context, including common law countries and codified civil law countries.

Full course description for Electronic Discovery II

CFS 485 Mobile Device Security and Forensics

4 credits

This course takes a hands-on approach to provide students with foundational concepts and practical skills in Mobile Device Forensics, which can be leveraged to perform forensically sound investigations against crimes involving the most complex mobile devices currently available in the market. Using modern tools and techniques, students will learn how to conduct a structured investigation process to determine the nature of the crime and to produce results that are useful in criminal proceedings. The course will provide walkthrough on various phases of the mobile forensics process for both Android and iOS based devices including forensically extracting, collecting, and analyzing, data and producing and disseminating reports. The course modules and labs will involve certain specialized hardware and software to perform data acquisition (including deleted data), and the analysis of extracted information.

Full course description for Mobile Device Security and Forensics

ICS 482 Vulnerability Assessment and Penetration Testing

4 credits

To properly secure any organization's information infrastructure and assets, a periodic assessment of its security posture at various levels of the organization is essential. One key area is the direct assessment of vulnerabilities in the IT infrastructure, systems and applications, followed by targeting and exploitation of the same. This course covers the theoretical bases for cyber threats and vulnerabilities, and delves into selection and application of penetration testing methodologies ranging from reconnaissance to the exploitation of vulnerabilities by probing infrastructure, services and applications. The course places a strong emphasis on the use of these methodologies to demonstrate, document, report on, and provide a clear roadmap for remediation of exposed security issues.

Full course description for Vulnerability Assessment and Penetration Testing

Electives (10 credits or minor)

Complete either: (1) at least 10 credits of major electives (Select three or more of the following upper division CFS and ICS courses. Courses used to meet program requirements above cannot also be used as an elective.), or (2) an approved minor (an approved “minor” can be a second major.)

BLAW 310 Business Law: UCC and Contracts

4 credits

This course reviews the purposes, philosophies and organization of the U.S. legal system. It provides an intensive study of the law which governs contracts for services, real estate, employment, insurance, trademark, patents and copyrights. Topics covered include legally binding contract requirements (offer and acceptance, legality of subject matter, capacity of parties and contractual consideration); circumstances which require a contract to be in writing; defenses for avoiding contractual liability; and legal remedies for breach of contract. It also focuses on the articles of the Uniform Commercial Code (UCC), which govern the rights and obligations of parties to transactions involving the sale of goods (Article II), commercial paper such as checks, notes and drafts (Article II), and financing arrangements in which one party gives another a security interest in property (Article IX) and the effects of federal bankruptcy laws on these transactions.

Full course description for Business Law: UCC and Contracts

BLAW 320 Legal Environment of Organizations

4 credits

The behavior of organizations and people in organizations is influenced in a variety of ways by the Constitution, state and federal legislation, regulations by all levels of government, by judicial opinions and by ethical considerations. This course explores selected aspects of the legal environment, including antitrust and fair trade laws, the law of contracts, laws and regulations concerning the workplace and workplace behavior, environmental protections, and ethical standards. Issues relating to franchising and trading in securities are also addressed within the context of the law and ethics.

Full course description for Legal Environment of Organizations

CJS 310 Introduction to Security Management

4 credits

This course explores the past, current and future trends in security management. The basic concepts, tools and practices that comprise security management are examined. Students learn how to identify and minimize risk in a private setting. They also learn the basics of physical security and access control as well as how to identify potential liability in the security field. In addition, this course examines various career opportunities in security management.

Full course description for Introduction to Security Management

CJS 320 Criminology and Public Policy

4 credits

This course focuses on theories, concepts, narratives, and myths of crime and delinquent behavior. Contemporary issues and controversies within the criminal justice field are explored in social, political, and economic context. Special emphasis is placed on the role of race, class, gender, and culture in relation to the etiology, prevention, control, and treatment of crime and delinquency. This course is committed to general theoretical debate, examination of the interrelation between criminological theory and research, and empirical analyses of policy and practice.

Full course description for Criminology and Public Policy

CJS 367 Exploring Forensic Science

4 credits

This course will provide the student with a general overview and a better understanding of the wide range of disciplines found within the forensic sciences. Fundamental topics such as forensic anthropology, forensic entomology, forensic pathology, and forensic accounting will be discussed. In addition 'traditionally' recognized topics in forensic science such as DNA, Trace Evidence, Impression Evidence, Drugs, and Questioned Documents will be covered. The course instructor will utilize multi-media in a lecture format, utilizing case-studies, video supplements and expert guest speakers.

Full course description for Exploring Forensic Science

CJS 375 Ethics and Professionalism in Criminal Justice

4 credits

Examines a range of moral dilemmas which criminal justice practitioners are likely to face in their duties. Using both moral theory and detailed case examples, students learn to apply moral principles and concepts to a given situation, recognize the relevance of moral principles and concepts, and apply their individual moral philosophy to resolving these situations in a satisfactory manner. This course meets corresponding learning objectives of the Minnesota Board of Peace Officer Standards and Training.

Full course description for Ethics and Professionalism in Criminal Justice

CJS 387 White Collar Crime

4 credits

This course presents an overview of white collar crime. Students explore theories of white collar crime and corporate criminal liability. The investigation, prosecution and sentencing of white-collar offenders are examined. "Crime in the suites" is compared to "crime in the streets." Issues related to diversity are explored.

Full course description for White Collar Crime

CJS 388 Crime Analysis

4 credits

This course is intended to develop the student's skills and knowledge in the field of crime analysis. Students will become familiar with the variety of tasks and issues encountered within the public and private sectors by a crime analyst. Students will also participate in group activities to build knowledge and skills associated with the different functions of a crime analyst.

Full course description for Crime Analysis

PHIL 320 Business Ethics

4 credits

Do business firms have obligations besides making as much money as possible for their stockholders? What are their responsibilities, if any, to their employees, their customers, and the wider community? Is it enough to obey the law, or does the law sometimes allow people to do things that are wrong? Do employees have any right to privacy on the job? To 'living wages'? To 'decent' working conditions? Does a seller have any obligation to look out for the interests of the buyer? Isn't it necessary to put the best possible 'spin' on your product and let the buyer look out for him or herself? This course will examine questions like these in light of various theories of ethics and current theories of justice. In addition to considering how we might ideally like people to act, it will also consider the challenges to personal integrity and 'doing the right thing' posed by the real world of business and by the kind of large bureaucratic organizations that dominate it.

Full course description for Business Ethics

PHIL 325 Criminal Justice Ethics

4 credits

Do criminal justice professionals have to meet a higher moral standard in their behavior as professionals than that of ordinary persons? Is it ever right for a criminal justice professional to "give a break" to a fellow professional? Should criminal justice professionals report clear moral violations of their fellow professionals? This course examines a range of moral dilemmas that criminal justice professionals are likely to face as they attempt to perform the duties of their office. Using both moral theory and detailed case examples from the criminal justice system, students learn to apply moral principles and concepts in a given situation to resolve these situations in a satisfactory ethical manner.

Full course description for Criminal Justice Ethics

PHIL 327 Ethics in the Information Age

4 credits

This course explores a range of moral issues raised by the introduction of new technologies for the production, distribution and use of information -- issues about privacy, surveillance and data-mining, freedom of speech, copyright, computer crime and abuse, justice in access to information, the political and social significance of the Internet, and so on. The course is intended to be helpful not only to information technology professionals, who will encounter some of these issues in connection with their work, but also to anyone who has an interest in the way information technology is changing our lives. Students will study moral theory, professional codes of ethics and a variety of case studies.

Full course description for Ethics in the Information Age

POL 301 Citizenship in a Global Context

4 credits

This course investigates the theory and practice of citizenship in local communities, the United States and the world. Students draw on core concepts from political science to explore contrasting ideas about citizenship and the political, economic and cultural dimensions of critical issues facing the global community. Classroom inquiry is supplemented by field experiences and investigation.

Full course description for Citizenship in a Global Context