Mobile CyberSecurity

Commerce & Business Administration
Computing Studies & Information Systems
Course Code
CSIS 4440
Semester Length
15 Weeks
Max Class Size
Method Of Instruction
Typically Offered
To be determined


Course Description
In this course, students will adopt a hands-on, multi-tool approach to mobile forensics with a focus on android devices. Students will understand the challenges in mobile forensics, and conduct a thorough investigation of evidence from mobile devices. Students will develop skills to prepare the environment after initial investigation, and analyze, extract, preserve and apply recovery techniques of mobile forensic evidence. Students will also identify malware, and illustrate the spread and impact of malware, and how to protect and remove malware from android devices.
Course Content
  1. Introduction to Mobile Forensics
  2. Challenges in mobile Forensics
  3. Seizure, preparation, and protection of digital devices at the scene
  4. Toolbox Forensics: Multiple-Tool Approach
  5. Mobile Forensic Tool Overview
  6. Environment preparation for evidence collection
  7. Collection of a Mobile Device: Considerations and Actions
  8. SIM Cards Analysis
  9. Android file structure
  10. Android Forensic Setup and Pre-Data Extraction Techniques
  11. Android Data Extraction Techniques
  12. Android Data Analysis and Recovery
  13. Android Malware, and Reverse Engineering
Methods Of Instruction

The methods of instruction for this course lectures, seminars, demonstrations, and hands-on assignments/projects (group work may be involved).

Means of Assessment

Assessment will be in accordance with the Douglas College Evaluation Policy.

Assignments and Labs

10% - 15%

Research Project

20% - 25%

Midterm Exam *

30% - 35%

Final Exam *

30% - 35%




* Practical hands-on computer exam 

In order to pass the course, students must, in addition to receiving an overall course grade of 50%, also achieve a grade of at least 50% on the combined weighted examination components (including quizzes, tests, exams).

Students may conduct research as part of their coursework in this class. Instructors for the course are responsible for ensuring that student research projects comply with College policies on ethical conduct for research involving humans, which can require obtaining Informed Consent from participants and getting the approval of the Douglas College Research Ethics Board prior to conducting the research.

Learning Outcomes

At the end of this course, a successful student will be able to:

  1. Discuss Mobile Forensics and its challenges
  2. Conduct a proper initial investigation including preparing, seizing and packaging of evidence
  3. Develop the skills to preserve, process and analyze the data stored on mobile devices using Multiple-Tool approach
  4. Prepare the environment to extract and analyze data
  5. Carry out processing and collection of a mobile device
  6. Analyze digital data from mobile devices storage media and internal flash
  7. Analyze the data within the device files and folders including SIM cards
  8. Analyze and explain Android file structure
  9. Demonstrate the process of setting up Android forensic and pre-data extraction techniques
  10. Demonstrate data extraction techniques for Android
  11. Analyze and compare data extraction techniques for Android
  12. Implement and explain the data analysis and recovery techniques for Android
  13. Identify how mobile malware is detected
  14. Explain the spread, impact and infection of Android malware
  15. Describe the protection and removal of Android malware
  16. Demonstrate the usage of Reverse Engineering in digital forensics


Textbook Materials

Course Materials to be provided by the instructor and/or approved textbooks from the department.


  1. Mobile Forensic Investigations: A Guide to Evidence Collection, Analysis, and Presentation by Lee Reiber, McGraw-Hill Education, latest edition
  2. Practical Mobile Forensics by Rohit Tamma, Oleg Skulkin , Heather Mahalik, Satish Bommisetty, Packt Publishing, latest edition



Min grade of C in CSIS 3175, 3160, and 3560


No corequisite courses.


No equivalent courses.

Course Guidelines

Course Guidelines for previous years are viewable by selecting the version desired. If you took this course and do not see a listing for the starting semester / year of the course, consider the previous version as the applicable version.

Course Transfers

Institution Transfer Details Effective Dates
Alexander College (ALEX) ALEX CPSC 2XX (3) 2021/09/01 to -
Athabasca University (AU) AU COMP 3XX (3) 2021/09/01 to -
College of New Caledonia (CNC) CNC CSC 2XX (3) 2021/09/01 to -
Kwantlen Polytechnic University (KPU) No credit 2021/09/01 to -
Simon Fraser University (SFU) SFU CMPT 4XX (3) 2021/09/01 to -
Thompson Rivers University (TRU) TRU COMP 3XXX (3) 2021/09/01 to -
University Canada West (UCW) UCW CPSC 4XX (3) 2021/09/01 to -
University of Northern BC (UNBC) UNBC CPSC 499 (3) 2021/09/01 to -
University of the Fraser Valley (UFV) UFV COMP 3XX (3) 2021/09/01 to -

Course Offerings

Fall 2021

There aren't any scheduled upcoming offerings for this course.