A forensic acquisition and analysis system for IaaS
| Autor: | Christoph Reich, Saad Alqahtany, Nathan Clarke, Steven Furnell |
|---|---|
| Rok vydání: | 2015 |
| Předmět: |
Access network
Cloud computing security Computer Networks and Communications Computer science business.industry Digital forensics 020206 networking & telecommunications 020207 software engineering Cloud computing 02 engineering and technology Cloud service provider Computer security computer.software_genre Data science Software portability Elasticity (cloud computing) 0202 electrical engineering electronic engineering information engineering business computer Software |
| Zdroj: | Cluster Computing. 19:439-453 |
| ISSN: | 1573-7543 1386-7857 |
| DOI: | 10.1007/s10586-015-0509-x |
| Popis: | Cloud computing is a promising next-generation computing paradigm that offers significant economic benefits to both commercial and public entities. Furthermore, cloud computing provides accessibility, simplicity, and portability for its customers. Due to the unique combination of characteristics that cloud computing introduces (including on-demand self-service, broad network access, resource pooling, rapid elasticity, and measured service), digital investigations face various technical, legal, and organizational challenges to keep up with current developments in the field of cloud computing. There are a wide variety of issues that need to be resolved in order to perform a proper digital investigation in the cloud environment. This paper examines the challenges in cloud forensics that are identified in the current research literature, alongside exploring the existing proposals and technical solutions addressed in the respective research. The open problems that need further effort are highlighted. As a result of the analysis of literature, it is found that it would be difficult, if not impossible, to perform an investigation and discovery in the cloud environment without relying on cloud service providers (CSPs). Therefore, dependence on the CSPs is ranked as the greatest challenge when investigators need to acquire evidence in a timely yet forensically sound manner from cloud systems. Thus, a fully independent model requires no intervention or cooperation from the cloud provider is proposed. This model provides a different approach to a forensic acquisition and analysis system (FAAS) in an Infrastructure as a Service model. FAAS seeks to provide a richer and more complete set of admissible evidences than what current CSPs provide, with no requirement for CSP involvement or modification to the CSP's underlying architecture. |
| Databáze: | OpenAIRE |
| Externí odkaz: |
|
Full text from SpringerLink