scholarly journals Analysis on digital forensics challenges and anti-forensics techniques in cloud computing

2018 ◽  
Vol 7 (2.7) ◽  
pp. 1072 ◽  
Author(s):  
Divya Vadlamudi ◽  
Dr K. Thirupathi Rao ◽  
Pellakuri Vidyullatha ◽  
B AjasekharReddy
Keyword(s):  
Cloud Computing ◽  
Mobile Devices ◽  
Digital Forensics ◽  
Cloud Environment ◽  
Forensic Investigation ◽  
Modern Life ◽  
Investigation Process

In the modern life, there is a rapid increase in the usage of the technology. One reason of increasing the technology is usage of cloud. The mobile devices or any other technological devices mainly depend on cloud. The cloud can be accessible from anywhere. Cloud forensic process had introduced to help the investigators to find the evidence when the criminal attacks the cloud and to maintain the integrity and security for the data stored in the cloud. The increasing in the criminal attacks in cloud, made the investigators to find the latest methods for the forensic investigation process. Similarly in the same way the criminals also discover new ways to hide the source of evidences. This causes damage to the investigation process and is called anti-forensics. To hide the sources anti-forensic techniques are used and research must be done against the anti-forensics techniques in cloud environment. In this paper we focused mainly on detailed study on various challenges in cloud forensic and anti-forensic techniques. 

scholarly journals Data security issues in the realm of mobile cloud computing: A survey

2018 ◽  
Author(s):  
Mohammed-Ali Anwar
Keyword(s):  
Cloud Computing ◽  
Mobile Computing ◽  
Mobile Devices ◽  
Data Security ◽  
Mobile Cloud Computing ◽  
Technological Development ◽  
Mobile Cloud ◽  
Cloud Environment ◽  
Security Issues ◽  
Use Of Resources

Mobile Cloud Computing (MCC) is a recent technological development, which has emerged from two popular technology trends; mobile computing and cloud. In essence it revolutionises the capabilities of mobile devices by integrating both storage and processing of the cloud environment with mobile computing and in doing so providing greater optimisation and operating power, allowing for transparent and seamless use of resources provided by the cloud. However, expanding the capability of resource constrained mobile devices in this manner comes at a price. There are many risks associated with the security of data within the cloud environment and as MCC essentially uses the cloud, it also inherits any security issues that are associated with cloud computing. The aim of this survey is to identify potential data security issues, and analyse and present some pioneering security mechanisms and finally suggest some future directions for better data security with MCC.

Cloud Computing Forensics

2015 ◽  
pp. 323-331
Author(s):  
Mario A. Garcia
Keyword(s):  
Cloud Computing ◽  
Digital Media ◽  
Digital Forensics ◽  
Forensic Analysis ◽  
Cloud Environment ◽  
Malicious Activity ◽  
Cloud Application ◽  
Chain Of Custody ◽  
A Chain ◽  
A Company

As computer technology evolved over the last 30 years, so did the opportunity to use computers to break the law. Out of necessity, digital forensics was birthed. Computer forensics is the practice of extracting information from the digital media in order to prosecute the individuals that carried out the crime. Forensic challenges presented by cloud computing are vast and complex. If a company becomes the target of a digital criminal investigation and they are using cloud computing, some unique challenges are faced by a digital forensics examiner. The data in the cloud only represents a “snapshot” of when it was sent to the cloud. Establishing a chain of custody for the data would become difficult or impossible if its integrity and authenticity cannot be fully determined. There are also potential forensic issues when the customer or user exits a cloud application. Items subject to forensic analysis, such as registry entries, temporary files, and other artifacts are lost, making malicious activity difficult to prove. The challenges of applying forensics to a cloud environment are tied to cloud security. This chapter discusses securing a cloud environment and how that would help with the forensic analysis.

scholarly journals A Combined Approach for a Privacy-Aware Digital Forensic Investigation in Enterprises

2021 ◽  
Author(s):  
Ludwig Englbrecht ◽  
Günther Pernul
Keyword(s):  
Private Information ◽  
Digital Forensics ◽  
Privacy Preserving ◽  
Identification Algorithm ◽  
Sensitive Information ◽  
Forensic Investigation ◽  
Digital Forensic ◽  
Subject Areas ◽  
Investigation Process ◽  
Examination Process

Stricter policies, laws and regulations for companies on the handling of private information arise challenges in the handling of data for Digital Forensics investigations. This paper describes an approach that can meet necessary requirements to conduct a privacy-aware Digital Forensics investigation in an enterprise. The core of our approach is an entropy-based identification algorithm to detect specific patterns within files that can indicate non-private information. Therefore we combine various approaches with the goal to detect and exclude files containing sensitive information systematically. This privacy-preserving method can be integrated into a Digital Forensics examination process to prepare an image which is free from private as well as critical information for the investigation. We implemented and evaluated our approach with a prototype. The approach demonstrates that investigations in enterprises can be supported and improved by adapting existing algorithms and processes from related subject areas to implement privacy-preserving measures into an investigation process.

Cloud Computing Forensics

2014 ◽  
pp. 170-178
Author(s):  
Mario A. Garcia
Keyword(s):  
Cloud Computing ◽  
Digital Media ◽  
Digital Forensics ◽  
Forensic Analysis ◽  
Cloud Environment ◽  
Malicious Activity ◽  
Cloud Application ◽  
Chain Of Custody ◽  
A Chain ◽  
A Company

As computer technology evolved over the last 30 years, so did the opportunity to use computers to break the law. Out of necessity, digital forensics was birthed. Computer forensics is the practice of extracting information from the digital media in order to prosecute the individuals that carried out the crime. Forensic challenges presented by cloud computing are vast and complex. If a company becomes the target of a digital criminal investigation and they are using cloud computing, some unique challenges are faced by a digital forensics examiner. The data in the cloud only represents a “snapshot” of when it was sent to the cloud. Establishing a chain of custody for the data would become difficult or impossible if its integrity and authenticity cannot be fully determined. There are also potential forensic issues when the customer or user exits a cloud application. Items subject to forensic analysis, such as registry entries, temporary files, and other artifacts are lost, making malicious activity difficult to prove. The challenges of applying forensics to a cloud environment are tied to cloud security. This chapter discusses securing a cloud environment and how that would help with the forensic analysis.

scholarly journals A Survey on Digital Forensic Investigation Practitioners Approach and Challenges

2021 ◽  
Vol 9 (VI) ◽  
pp. 2733-2736
Author(s):  
Prof. Sachin Babulal Jadhav
Keyword(s):  
Data Collection ◽  
Digital Forensics ◽  
Electronic Devices ◽  
Digital Evidence ◽  
Cyber Crime ◽  
Forensic Investigation ◽  
Digital Forensic ◽  
Digital Crime ◽  
Entire World ◽  
Investigation Process

Digital crimes are taking place over the entire world. For any digital crime which commit at any part of world, computer or any electronic devices are used. The devices which are used to commit the crime are useful evidences which must be identified and protected for further use. The crimes involving electronic devices are called as cyber-crime. To investigate such crimes, a scientific procedures needs to be followed. The data collection, analysis, preservation and presentation of digital evidence is must in order investigate the cybercrime. This paper highlights the practices that are used worldwide in the investigation process of cyber-crime. Keywords: Digital Forensics, Analysis, Investigation, models of investigation.

scholarly journals Cloud Forensics : Isolating Cloud Instance

2017 ◽  
Vol 3 (2) ◽  
pp. 10
Author(s):  
Mariam J. AlKandari ◽  
Huda F. Al Rasheedi ◽  
Ayed A. Salman
Keyword(s):  
Cloud Computing ◽  
Digital Forensics ◽  
File System ◽  
File Systems ◽  
Distributed File System ◽  
Cloud Environment ◽  
Apache Hadoop ◽  
Cloud Forensics ◽  
Hadoop Distributed File System ◽  
Do So

Abstract—Cloud computing has been the trending model for storing, accessing and modifying the data over the Internet in the recent years. Rising use of the cloud has generated a new concept related to the cloud which is cloud forensics. Cloud forensics can be defined as investigating for evidence over the cloud, so it can be viewed as a combination of both cloud computing and digital forensics. Many issues of applying forensics in the cloud have been addressed. Isolating the location of the incident has become an essential part of forensic process. This is done to ensure that evidence will not be modified or changed.  Isolating an instant in the cloud computing has become even more challenging, due to the nature of the cloud environment. In the cloud, the same storage or virtual machine have been used by many users. Hence, the evidence is most likely will be overwritten and lost. The proposed solution in this paper is to isolate a cloud instance. This can be achieved by marking the instant that reside in the servers as "Under Investigation". To do so, cloud file system must be studied. One of the well-known file systems used in the cloud is Apache Hadoop Distributed File System (HDFS). Thus, in this paper the methodology used for isolating a cloud instance would be based on the HDFS architecture. Keywords: cloud computing; digital forensics; cloud forensics

A Framework for Digital Forensics and Investigations

2013 ◽  
Vol 5 (2) ◽  
pp. 1-22 ◽  
Author(s):  
Benjamin Aziz ◽  
Clive Blackwell ◽  
Shareeful Islam
Keyword(s):  
Requirements Engineering ◽  
Digital Forensics ◽  
Systematic Approach ◽  
Computer Systems ◽  
Important Task ◽  
New Method ◽  
Evidence Based ◽  
Forensic Investigation ◽  
Forensic Evidence ◽  
Investigation Process

Digital forensics investigations are an important task for collecting evidence based on the artifacts left in computer systems for computer related crimes. The requirements of such investigations are often a neglected aspect in most of the existing models of digital investigations. Therefore, a formal and systematic approach is needed to provide a framework for modeling and reasoning about the requirements of digital investigations. In addition, anti-forensics situations make the forensic investigation process challenging by contaminating any stage of the investigation process, its requirements, or by destroying the evidence. Therefore, successful forensic investigations require understanding the possible anti-forensic issues during the investigation. In this paper, the authors present a new method for guiding digital forensics investigations considering the anti-forensics based on goal-driven requirements engineering methodologies, in particular KAOS. Methodologies like KAOS facilitate modeling and reasoning about goals, requirements and obstacles, as well as their operationalization and responsibility assignments. The authors believe that this new method will lead in the future to better management and organization of the various steps of forensics investigations in cyberspace as well as provide more robust grounds for reasoning about forensic evidence.

scholarly journals Efficient key distribution protocol for mobile devices in cloud environments

2018 ◽  
Vol 7 (2.12) ◽  
pp. 18
Author(s):  
Yoon Su Jeong ◽  
Yong Tae Kim ◽  
Gil Cheol Park
Keyword(s):  
Cloud Computing ◽  
Mobile Devices ◽  
Mobile Device ◽  
Key Distribution ◽  
Data Encryption ◽  
Key Generation ◽  
Cloud Environment ◽  
Efficient Manner ◽  
Computing Services ◽  
Cloud Computing Services

Background/Objectives: Recently, as the fourth industrial revolution has emerged, cloud computing services have been attracting attention for efficient use of Internet-based computing resources. Among the cloud computing services, even if the data processed by the mobile device is encrypted after being stored in the server, the confidential information can be leaked. Therefore, there is a need for the key generation for data encryption and decryption.Methods/Statistical analysis: In this paper, we propose a key distribution protocol that enables mobile devices to securely encrypt and decrypt keys in an efficient manner in a cloud environment. The main purpose of the proposed protocol is to maximize the efficiency and cost reduction of key generation, which can securely transmit and receive data, in a situation where the size of data used in the cloud environment and the storage location are increasing. As a result of the performance evaluation, the proposed method improved the authentication processing time by 4.1% on average compared with the existing protocol, and the average throughput rate of the server per unit time was 6.5%. In addition, the communication delay time between the authentication server and the mobile device improved by 9.3% on average, and the authentication overhead of the server was 11.5% lower than that of the conventional method.Findings: In order to solve this problem, the proposed protocol can solve the security problem of the mobile device because it can receive the authentication through the one - way hash function and the XOR operation using the encrypted data using the session key.Improvements/Applications: In future studies, we will apply the proposed protocol to the actual environment based on the results of this study and compare it with the results obtained from the theoretical studies. 

User Information Security Context-Aware Services in a Cloud Environment

2013 ◽  
Vol 467 ◽  
pp. 578-583
Author(s):  
Hoon Jeong ◽  
Nan Ju Kim ◽  
Eui In Choi
Keyword(s):  
Cloud Computing ◽  
Information Security ◽  
Mobile Devices ◽  
Wireless Network ◽  
Service Providers ◽  
Personal Information ◽  
Context Aware ◽  
Cloud Environment ◽  
Mobile Environment ◽  
Exchange Information

Users in the ubiquitous mobile environment have provided services that match the surrounding context and the location of their own. As Cloud Computing has been spreading widely, users and service providers enables to use resource or service cheaply and easily without owning all the resource needed. The development of mobile devices and the spread of wireless network help share and exchange information and resources more easily. Therefore users are able to use the information and service more free than previous wire network due to development of wireless network and device. Previous studies of these form was a study on the provided service mainly, but they did not regard on user's location, environment and preference. Therefore, this paper, we use the profile and the user's situation information that contains personal information security, preferences. We are able to provide more accurate service than previous techniques through techniques and systems suggested in this paper.

scholarly journals Data security issues in the realm of mobile cloud computing: A survey

2018 ◽  
Author(s):  
Mohammed-Ali Anwar
Keyword(s):  
Cloud Computing ◽  
Mobile Computing ◽  
Mobile Devices ◽  
Data Security ◽  
Mobile Cloud Computing ◽  
Technological Development ◽  
Mobile Cloud ◽  
Cloud Environment ◽  
Security Issues ◽  
Use Of Resources

Mobile Cloud Computing (MCC) is a recent technological development, which has emerged from two popular technology trends; mobile computing and cloud. In essence it revolutionises the capabilities of mobile devices by integrating both storage and processing of the cloud environment with mobile computing and in doing so providing greater optimisation and operating power, allowing for transparent and seamless use of resources provided by the cloud. However, expanding the capability of resource constrained mobile devices in this manner comes at a price. There are many risks associated with the security of data within the cloud environment and as MCC essentially uses the cloud, it also inherits any security issues that are associated with cloud computing. The aim of this survey is to identify potential data security issues, and analyse and present some pioneering security mechanisms and finally suggest some future directions for better data security with MCC.

Sign in / Sign up

Export Citation Format

Share Document