Much of cyber police work involves metadata — without it, there is little police can work on in a digital world.
In terms of storing metadata, Morris does not believe that the AFP should be the government agency to store citizens metadata.
"I wouldn't like AFP to store the data, its really the wrong look," he said.
Morris prefers an independent agency, or perhaps a partnership with the telcos. But he admits its something the Government has yet to decide on.
Additionally, when these threats are globalised, and data is stored in servers offshore, Mutual Legal Assistance Treaties (MLATs) come into play.
They quite simply were not designed for the digital age. Filing and for information under MLATs is a 'long and convoluted process that can take weeks or months, Morris said.
Cybercrime jurisdiction and international acts need to be completely rethought, he said. "There does need to be some sort of consistent regulatory model."
Unfortunately, Morris said, the international Convention on Cybercrime is stuck in negotiations, with some countries flat out refusing to sign it. Australia is one of the signatories.
The Government has also announced the construction of the Australian Cyber Crime Centre and and is also launching the Australian Cybercrime Online Reporting Network (ACORN) by year end. This is an online portal where citizens can report cybercrime incidents themselves. Morris hopes this will also help the Government produce a more accurate statistical profile of the problem.
Sign up for CIO Asia eNewsletters.