An integrated conceptual digital forensic framework for cloud computing
Files
(Published version)
Date
2012
Authors
Martini, B.
Choo, K.K.
Editors
Advisors
Journal Title
Journal ISSN
Volume Title
Type:
Journal article
Citation
Forensic Science International: Digital Investigation, 2012; 9(2):71-80
Statement of Responsibility
Conference Name
Abstract
Increasing interest in and use of cloud computing services presents both opportunities for criminal exploitation and challenges for law enforcement agencies (LEAs). For example, it is becoming easier for criminals to store incriminating files in the cloud computing environment but it may be extremely difficult for LEAs to seize these files as the latter could potentially be stored overseas. Two of the most widely used and accepted forensic frameworks - McKemmish (1999) and NIST (Kent et al., 2006) - are then reviewed to identify the required changes to current forensic practices needed to successfully conduct cloud computing investigations. We propose an integrated (iterative) conceptual digital forensic framework (based on McKemmish and NIST), which emphasises the differences in the preservation of forensic data and the collection of cloud computing data for forensic purposes. Cloud computing digital forensic issues are discussed within the context of this framework. Finally suggestions for future research are made to further examine this field and provide a library of digital forensic methodologies for the various cloud platforms and deployment models.
School/Discipline
Dissertation Note
Provenance
Description
Access Status
Rights
Copyright 2012 Elsevier
Access Condition Notes: Preprint version available open access