Iot Forensics: Challenges for the Ioa Era

MacDermott, Áine; Baker, Thar; Shi, Qi

doi:10.1109/ntms.2018.8328748

Cited by 78 publications

(55 citation statements)

References 10 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Current models are criticised from different aspects, such as being too specific (Reith, M., Carr, C., & Gunsch, 2002), too broad (Rogers, 2006), or too complex (Selamat, S. R., Yusof, R., & Sahib, 2008). In contrast, "CFSAP" (Computer Forensics -Secure, Analyse, Present) comprises the four key elements of computer forensics (identification, preservation, analysis, and presentation) into three steps to follow: Secure (identify sources of digital evidence, preserve digital evidence), Analyse (forensic analysis of digital evidence: extract, process, interpret), Present (Presentation of digital evidence, expert opinion and testimony) (Macdermott et al, 2018). "Framework for Reliable Experimental Design" (FRED) proposed by Horsman, focuses on the underpinning procedures involved within undertaking the reverse engineering of digital data structures and the process of extracting and interpreting digital content in a reliable way.…”

Section: Cybercrime Investigations and Digital Forensicsmentioning

confidence: 99%

“…In the infancy of computer forensics, cases were limited to the analysis of a single device; increasingly cases require the analysis of multiple devices followed by the correlation of the collected evidence. Issues identified within the study are still prominent now in 2018 (Horsman, 2018), and the rapid embrace of the IoT/IoA era enhances these concerns (Macdermott et al, 2018).…”

Section: Cybercrime Investigations and Digital Forensicsmentioning

confidence: 99%

“…Previously, criminal investigations generally relied on the analysis of physical evidence, the study of the crime scene, speaking to and taking statements from witnesses, and interviews with suspects. Today, the criminal investigator must recognise that the evidence they have to analyse could be in an electronic or digital form (Macdermott, Baker, & Shi, 2018). The crime scene may comprise a computer system, smart and small-scale digital devices or network traffic/logs as opposed to the traditional 'physical' scene.…”

Section: Introductionmentioning

confidence: 99%

See 2 more Smart Citations

The Internet of Things: Challenges and Considerations for Cybercrime Investigations and Digital Forensics

MacDermott

Baker

Buck

et al. 2020

International Journal of Digital Crime and Forensics

Self Cite

View full text Add to dashboard Cite

The Internet of Things (IoT) represents the seamless merging of the real and digital world, with new devices created that store and pass around data. Processing large quantities of IoT data will proportionately increase workloads of data centres, leaving providers with new security, capacity, and analytics challenges. Handling this data conveniently is a critical challenge, as the overall application performance is highly dependent on the properties of the data management service. This article explores the challenges posed by cybercrime investigations and digital forensics concerning the shifting landscape of crime – the IoT and the evident investigative complexity – moving to the Internet of Anything (IoA)/Internet of Everything (IoE) era. IoT forensics requires a multi-faceted approach where evidence may be collected from a variety of sources such as sensor devices, communication devices, fridges, cars and drones, to smart swarms and intelligent buildings.

show abstract

Section: Cybercrime Investigations and Digital Forensicsmentioning

confidence: 99%

Section: Cybercrime Investigations and Digital Forensicsmentioning

confidence: 99%

Section: Introductionmentioning

confidence: 99%

See 1 more Smart Citation

The Internet of Things: Challenges and Considerations for Cybercrime Investigations and Digital Forensics

MacDermott

Baker

Buck

et al. 2020

International Journal of Digital Crime and Forensics

Self Cite

View full text Add to dashboard Cite

show abstract

“…In addition, the elimination of the proof form of these devices is also seen as another IoT concern as most vendors are facing distinctive levels, operating frames and phones. The CCTV forensic [12], in which CCTV producers are organized into their devices to connect the distinctive document framework. It is still a challenge to legally retrieve curiosities from the storage devices of CCTV.…”

Section: Forensic Iot Challengesmentioning

confidence: 99%

Advanced Digital Forensic IoT Based Secure Communication

Sharma¹,

Ghanshala²,

Mohan³

2020

IJITEE

View full text Add to dashboard Cite

With the explosive growth of the Internet-of-Things (IoT) due to its widespread applicability, it is imperative that IoT designers and architects must incorporate ensuring security of communication in IoT as a key requirement. This emerging field of study, communication in IoT, is concerned with ensuring secure collaboration between smart sensors, actuators and devices and the external environment that constitute the overarching arena of IoT. The field poses new challenges to security and privacy in communication. Most of the cloud service providers such as Amazon, IBM, Microsoft, and Google facilitate various cloud services at reduced cost. The architecture of IoT must be designed to have many features such as scalability, efficiency, accessibility, availability, and flexibility so that applications can be built that can benefit both public and commercial entities. Key factors in driving the success of the IoT will be an accurate specification of security parameters with various security measures that must be enforced. This paper gives an overview of security and privacy aspects in IoT communications using an advanced digital forensic approach for security enhancement. The researchers face various challenges in the investigation of security breaches in IoT. The challenges get magnified multiple folds as cloud service providers utilize many advanced techniques such as virtualization and a multi-tenant usage model to allocate its resources to users securely. These models and architectures make it difficult for investigators who try identify sources that launched various malicious activities and attacks on cloud services. The investigators resort to advanced digital forensic investigation to analyze such attacks. There exist various digital forensic techniques and tools which are not necessarily applied in the context of security breach in IoT. When any security breach occurs, investigators face challenges in collecting evidence as they cannot physically access the evidence buried in devices connected to a local host. The advanced digital forensic approach consists of identifying the evidence related to the source of the crime, and examining and reporting the results and conclusions. The proposed methodology, which employs an advanced digital forensic approach, describes an improved, efficient, and reliable method to identify the source of the crime and collect evidence responsible for security breach during communication.

show abstract

“…mobile device forensics), the diversity in IoT devices (e.g. 3D printers, roadside units in a smart transportation system, smart healthcare devices in a hospital, and smart military uniforms) and the different evidence and privacy regulations compound the challenges of such investigations [12]. Some of these challenges are as follows:…”

Section: Introductionmentioning

confidence: 99%

IoT Forensics: Amazon Echo as a Use Case

Choo

Sun

et al. 2019

IEEE Internet Things J.

112

View full text Add to dashboard Cite

Internet of Things (IoT) are increasingly common in our society, and can be found in applications such as battlefields and national security. These devices can also be targeted by attackers and hence, they are a valuable source in digital forensic investigations. In addition, incriminating evidence may be stored on an IoT device (e.g. Amazon Echo in a home environment and Fitbit worn by the victim or an accused person). In comparison to the IoT security and privacy literature, however, IoT forensics is relatively under-studied. IoT forensics is also challenging in practice, particularly due to the complexity, diversity, and heterogeneity of IoT systems. In this paper, we present an IoT based forensic model that supports the identification, acquisition, analysis, and presentation of potential artifacts of forensic interest from IoT devices and the underpinning infrastructure. Specifically, we use the popular Amazon Echo as a use case to demonstrate how our proposed model can be used to guide forensics analysis of IoT devices.

show abstract

Iot Forensics: Challenges for the Ioa Era

Cited by 78 publications

References 10 publications

The Internet of Things: Challenges and Considerations for Cybercrime Investigations and Digital Forensics

The Internet of Things: Challenges and Considerations for Cybercrime Investigations and Digital Forensics

Advanced Digital Forensic IoT Based Secure Communication

IoT Forensics: Amazon Echo as a Use Case

Contact Info

Product

Resources

About