Conceptual forensic readiness framework for infrastructure as a service consumers

Moussa, Ahmed Nour; Ithnin, Norafida; Miaikil, Othman A.M

doi:10.1109/spc.2014.7086250

Cited by 18 publications

(7 citation statements)

References 15 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…There are two ways of removing noise from collected sound data. That is with the use threshold based de-noising method [35,36,37] and recursive least squares adaptive filtering method [38,39]. However, the first is adopted in our work for its suitability of smart devices.…”

Section: Pre-processingmentioning

confidence: 99%

Untitled

2020

IJSPTM

View full text Add to dashboard Cite

Behavioral biometric authentication is considered as a promising approach to securing the internet of things (IoT) ecosystem. In this paper, we investigated the need and suitability of employing voice recognition systems in the user authentication of the IoT. Tools and techniques used in accomplishing voice recognition systems are reviewed, and their appropriateness to the IoT environment are discussed. In the end, a voice recognition system is proposed for IoT ecosystem user authentication. The proposed system has two phases. The first being the enrollment phase consisting of a pre-processing step where the noise is removed from the voice for the enrollment process, the feature extraction step where feature traits are extracted from user's voice, and the model training step where the voice model is trained for the IoT user. And the second being the phase verifies whether the identity claimer is the owner of the IoT device. Based on the resources limitedness of the IoT technologies, the suitability of text-dependent voice recognition systems is promoted. Likewise, the use of MFCC features is considered in the proposed system.

show abstract

Section: Pre-processingmentioning

confidence: 99%

Untitled

2020

IJSPTM

View full text Add to dashboard Cite

show abstract

“…The guidelines that were presented can assist in the implementation of digital forensic readiness measures in a diverse range of organizations. Moussa et al [21] proposed a conceptual framework that aims to assist IaaS consumers in achieving forensic readiness. IaaS consumers can utilize the framework to establish how they should gather the necessary digital evidence without having to rely on cloud providers.…”

Section: Review Of Related Workmentioning

confidence: 99%

Experts reviews of a cloud forensic readiness framework for organizations

2019

View full text Add to dashboard Cite

Cloud computing has drastically altered the ways in which it is possible to deliver information technologies (ITs) to consumers as a service. In addition, the concept has given rise to multiple benefits for consumers and organizations. However, such a fast surge in the adoption of cloud computing has led to the emergence of the cloud as a new cybercrime environment, thus giving rise to fresh legal, technical and organizational challenges. In addition to the vast number of attacks that have had an impact on cloud computing and the fact that cloud-based data processing is carried out in a decentralized manner, many other concerns have been noted. Among these concerns are how to conduct a thorough digital investigation in cloud environments and how to be prepared to gather data ahead of time before the occurrence of an incident; indeed, this kind of preparation would reduce the amount of money, time and effort that is expended. As a number of cloud forensics challenges have not received enough attention, this study is motivated by a particular gap in research on the technical, legal and organizational factors that facilitate forensic readiness in organizations that utilize an Infrastructure as a Service (IaaS) model. This paper presents a framework with which to investigate the factors that facilitate the forensic readiness of organizations. This framework was identified by critically reviewing previous studies in the literature and by performing an in-depth examination of the relevant industrial standards. The factors were comprehensively studied and extracted from the literature; then, the factors were analysed, duplicates were removed, and the factors were categorized and synthesized to produce the framework. To obtain reliable results, the research method involved two steps: a literature review, followed by expert reviews. These techniques help us paint a comprehensive picture of the research topic and validate and confirm the results.

show abstract

“…As stated in Section 4.6, it is natural that forensic data pertaining to a cloud computing environment should be collected from the CSCs and CPSs sides [2,27,28,49,56]. To collect its unilaterally trusted forensic data with respect to a cloud incident: (i) the CSCs can collect and analyze forensic data left behind on their client machine by invoking commands at the CFaaS service interface, and (ii) the CSCs must collect and analyze forensic data on the provider side by invoking commands at the CFaaS service interface.…”

Section: Forensic Data Collectionmentioning

confidence: 99%

“…According to the National Institute of Standards and Technology (NIST), cloud services can either be offered as an Infrastructure-as-a-Service (IaaS), Platform-as-a-Service (PaaS) or Software-as-a-Service (SaaS) model [1]. Leaving aside specific technical details, the authors consider there to be Cloud Service Providers (CSPs) that sell the three basic IaaS services including storage, compute power and network to remote CSCs [2]. The authors are interested in providing a Cloud-Forensics-as-aService (CFaaS) model that is integrated into cloud architectures for the purpose of forensic investigations involving cloud environments.…”

Section: Introductionmentioning

confidence: 99%

CFaaS: bilaterally agreed evidence collection

2018

Self Cite

View full text Add to dashboard Cite

A common cloud forensic model proposed by researchers is 'Cloud-Forensic-as-a-Service' where consumers have to access it as a service to collect forensic data from cloud environments. The 'Cloud-Forensic-as-a-Service' model raises the question of how it collects digital evidence pertaining to an incident which occurred in the cloud. Currently, types of 'Cloud-Forensic-as-a-Service' systems in the literature show that the system is controlled and implemented by the cloud provider, where they unilaterally define the type of evidence that can be collected by the system. A serious limitation of this approach is that it does not offer the consumer sufficient means of performing reasonableness checks to verify that the provider is not accidentally or maliciously contaminating the evidence. To address the problem, the paper proposes a conceptual bilateral Cloud-Forensic-as-a-Service model where both consumers and providers can independently collect, verify the equity of the forensic analysis process and try to resolve potential disputes emerging from the independently collected results. The authors have developed a cloud forensic process model to lead common and significant aspects of a bilateral Cloud-Forensics-as-a-Service model. The paper explicitly discusses the concept of a bilateral Cloud-Forensic-asa-Service model.

show abstract

Conceptual forensic readiness framework for infrastructure as a service consumers

Cited by 18 publications

References 15 publications

Untitled

Untitled

Experts reviews of a cloud forensic readiness framework for organizations

CFaaS: bilaterally agreed evidence collection

Contact Info

Product

Resources

About