A Digital Forensic Readiness framework for South African SME's

Barske, D.; Stander, Adrie; Jordaan, Jason

doi:10.1109/issa.2010.5588281

Cited by 27 publications

(17 citation statements)

References 3 publications

Supporting

Mentioning

Contrasting

Unclassified

Order By: Relevance

“…As a result, researchers have suggested that organisations implement well-defined policies to support forensic readiness [8], [20]. Barske, et al [20] assert that these policies include how systems are monitored, under what conditions data is preserved, data retention times, as well as policies on how investigations are to be undertaken. Rowlingson [8] adds that policies should also cover topics such as identifying data sources, determining data collection and secure data storage.…”

Section: Analysis Of Forensic Readiness Approachesmentioning

confidence: 99%

Are you ready? Towards the engineering of forensic-ready systems

Grispos

García-Galán

Pasquale

et al. 2017

2017 11th International Conference on Research Challenges in Information Science (RCIS)

View full text Add to dashboard Cite

Abstract-1 . As security incidents continue to impact organisations, there is a growing demand for systems to be 'forensicready' -to maximise the potential use of evidence whilst minimising the costs of an investigation. Researchers have supported organisational forensic readiness efforts by proposing the use of policies and processes, aligning systems with forensics objectives and training employees. However, recent work has also proposed an alternative strategy for implementing forensic readiness called forensic-by-design. This is an approach that involves integrating requirements for forensics into relevant phases of the systems development lifecycle with the aim of engineering forensic-ready systems. While this alternative forensic readiness strategy has been discussed in the literature, no previous research has examined the extent to which organisations actually use this approach for implementing forensic readiness. Hence, we investigate the extent to which organisations consider requirements for forensics during systems development. We first assessed existing research to identify the various perspectives of implementing forensic readiness, and then undertook an online survey to investigate the consideration of requirements for forensics during systems development lifecycles. Our findings provide an initial assessment of the extent to which requirements for forensics are considered within organisations. We then use our findings, coupled with the literature, to identify a number of research challenges regarding the engineering of forensic-ready systems.

show abstract

Section: Analysis Of Forensic Readiness Approachesmentioning

confidence: 99%

Are you ready? Towards the engineering of forensic-ready systems

Grispos

García-Galán

Pasquale

et al. 2017

2017 11th International Conference on Research Challenges in Information Science (RCIS)

View full text Add to dashboard Cite

show abstract

“…Barske et al. also add that although the need for digital forensics and digital evidence in organizations has been explored (as has been the need for digital forensic readiness within organizations), decision makers still need to understand what is needed within their organizations to ensure digital forensic readiness.…”

Section: The Proposed Taxonomy Of Challenges For Digital Forensicsmentioning

confidence: 99%

Taxonomy of Challenges for Digital Forensics

Karie

Venter

2015

Journal of Forensic Sciences

View full text Add to dashboard Cite

Since its inception, over a decade ago, the field of digital forensics has faced numerous challenges. Despite different researchers and digital forensic practitioners having studied and analysed various known digital forensic challenges, as of 2013, there still exists a need for a formal classification of these challenges. This paper, therefore, reviews existing research literature and highlights the various challenges that digital forensics has faced for the last ten years. In conducting this research study, however, it was difficult for the authors to review all the existing research literature in the digital forensic domain, hence, sampling and randomisation techniques were employed to facilitate the review of the gathered literature. Taxonomy of the various challenges is subsequently proposed in this paper based on our review of the literature. The taxonomy classifies the large number of digital forensic challenges into four welldefined and easily understood categories. The proposed taxonomy can be useful, for example, in future developments of automated digital forensic tools by explicitly describing processes and procedures that focus on addressing specific challenges identified in this paper. However, it should also be noted that the purpose of this paper is not to propose any solutions to the individual challenges that digital forensics face, but to serve as a survey of the state of the art of the research area.

show abstract

“…Digital forensic readiness looks for proactively collecting digital evidence and preparing the infrastructure of the organization in question for reactive digital forensic investigation [39]. As a result, both collecting evidence and preparing infrastructure of the organization for forensics investigation has to be addressed by the digital forensic readiness policy.…”

Section: Policymentioning

confidence: 99%

Conceptual forensic readiness framework for infrastructure as a service consumers

Moussa

Ithnin

Miaikil

2014

2014 IEEE Conference on Systems, Process and Control (ICSPC 2014)

View full text Add to dashboard Cite

Cloud computing provides to the consumers basic computing resources that range from storage and computing power to sophisticated applications. When digital forensics is needed for suspected cases involving cloud computing, the provider is responsible for collecting the digital evidence. Limitations of this approach include lack of efficient incident response, and that the consumers may have a little or no choice but to accept electronic evidences made available by the cloud provider. This research investigates whether it is possible to perform consumer-side digital forensics where a consumer independently collects all digital evidences required for a suspected case from Infrastructure as a Service resources (IaaS). In particular, the research contributes to a digital forensics readiness framework that shows how digital evidence collection can be made strongly consumer-centric, so that all the electronic evidences that digital forensic investigation requires for suspected cases can be provided independently by the IaaS consumers.

show abstract

A Digital Forensic Readiness framework for South African SME's

Cited by 27 publications

References 3 publications

Are you ready? Towards the engineering of forensic-ready systems

Are you ready? Towards the engineering of forensic-ready systems

Taxonomy of Challenges for Digital Forensics

Conceptual forensic readiness framework for infrastructure as a service consumers

Contact Info

Product

Resources

About