SoK: Blockchain Solutions for Forensics

Dasaklis, Thomas K.; Casino, Fran; Patsakis, Constantinos

doi:10.1007/978-3-030-69460-9_2

Cited by 20 publications

(6 citation statements)

References 37 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Researchers work for data integrity by implementing Blockchain [11] to maintain the CoC for many devices/systems. The authors implemented Blockchain as a solution called Internet-of-Forensics (IoF) [24].…”

Section: Table 1 Literature Framework Comparisonmentioning

confidence: 99%

“…It starts with data collection, segregation, adding extra attributes, normalization, examination, analysis, and presentation at the court. We kept the data integrity using blockchain [11], stored in hashed [12] format, and we added a third-party server [13] located in a governmental body to achieve a trust factor. We replicate the hashed values to the server at the local government authority which in turn provides a certi ed report verifying the complete CoC.…”

Section: Introductionmentioning

confidence: 99%

See 1 more Smart Citation

MsFaaS: Microservices Forensics as a Service

Shehata¹,

Aslan²

2023

Preprint

View full text Add to dashboard Cite

The rapid increase in using cloud services leads to the rise of unlimited cyber threats. Due to the distributed architect nature, services like Software as a Service (SaaS) are hard to be monitored. Consequently, in digital crimes, the investigator faces several forensics challenges. Mainly, in collecting data and presenting acceptable electronic evidence at the court. While most researchers went towards the external investigator’s responsibility, fewer researchers went to the Cloud Service Provider’s (CSP) responsibility. In literature, no complete framework that resolves all challenges and succeeds in presenting trusted evidence to the court has been suggested. In the present paper, we propose a framework named Microservices Forensics as a Service (MsFaaS) that suggests solutions to resolve open challenges. Since the CSP holds the crime scene and there is a global legal responsibility against digital crimes, MsFaaS relies on enforcing international law and putting the responsibility on both CSP and local authorities where the victim/attacker and CSP operate. We collect several data types and use event reconstruction methodology to build a comprehensive crime scene in both live and postmortem scenarios. In addition, MsFaaS provides a validation service against man-in-the-middle attacks microservices. It also triggers a response action to virtual machines incidents and external attacks; finally, the framework is helpful for auditing and recording the external and internal traffic inside the cloud environment. As a result, the service provided by the framework offers an evidence report that is certified by the local authority which can be accepted in a digital crime trial.

show abstract

Section: Table 1 Literature Framework Comparisonmentioning

confidence: 99%

Section: Introductionmentioning

confidence: 99%

MsFaaS: Microservices Forensics as a Service

Shehata¹,

Aslan²

2023

Preprint

View full text Add to dashboard Cite

show abstract

“…This is due to its decentralized and transparent information-sharing approach. However, the adoption of this technology for privacy protection in digital forensics, especially in the traditional digital forensics subdomain, is still in its infancy stage [49].…”

Section: Privacy-preserving Techniques For Digital Forensicsmentioning

confidence: 99%

Cryptographic Techniques for Data Privacy in Digital Forensics

Ogunseyi,

Adedayo

2023

IEEE Access

View full text Add to dashboard Cite

The acquisition and analysis of data in digital forensics raise different data privacy challenges. Many existing works on digital forensic readiness discuss what information should be stored and how to collect relevant data to facilitate investigations. However, the cost of this readiness often directly impacts the privacy of innocent third parties and suspects if the collected information is irrelevant. Approaches that have been suggested for privacy-preserving digital forensics focus on the use of policy, non-cryptography-based, and cryptography-based solutions. Cryptographic techniques have been proposed to address issues of data privacy during data analysis. As the utilization of some of these cryptographic techniques continues to increase, it is important to evaluate their applicability and challenges in relation to digital forensics processes. This study provides digital forensics investigators and researchers with a roadmap to understanding the data privacy challenges in digital forensics and examines the various privacy techniques that can be utilized to tackle these challenges. Specifically, we review the cryptographic techniques applied for privacy protection in digital forensics and categorize them within the context of whether they support trusted third parties, multiple investigators, and multi-keyword searches. We highlight some of the drawbacks of utilizing cryptography-based methods in privacy-preserving digital forensics and suggest potential solutions to the identified shortcomings. In addition, we propose a conceptual privacypreserving digital forensics (PPDF) model that is based on the use of cryptographic techniques and analyze the model within the context of the above-mentioned factors. An evaluation of the model is provided through a consideration of identified factors that may affect an investigation. Lastly, we provide an analysis of how existing principles for preserving privacy in digital forensics are addressed in our PPDF model. Our evaluation shows that the model aligns with many of the existing privacy principles recommended for privacy protection in digital forensics.

show abstract

“…It failed, however, to accumulate network data by performing simulations concerned with computing precise TPS. Dasaklis et al [7] described a CF method relying on the available blockchain-based technologies. The approach provided a detailed review of the various advantages and shortcomings of the mutually beneficial relationship between blockchain technology and the current digital forensics approach.…”

Section: Literature Reviewmentioning

confidence: 99%

Preserving Integrity of Evidence with Blockchain Technology in Cloud Forensics for Immigration Management

Shinde¹,

Gurrala²

2023

JTIT

View full text Add to dashboard Cite

As the popularity of cloud computing increases, safety concerns are growing as well. Cloud forensics (CF) is a smart adaptation of the digital forensics model that is used for fighting the related offenses. This paper proposes a new forensic method relying on a blockchain network. Here, the log files are accumulated and preserved in the blockchain using different peers. In order to protect the system against illegitimate users, an improved blowfish method is applied. In this particular instance, the system is made up of five distinct components: hypervisor (VMM), IPFS file storage, log ledger, node controller, and smart contract. The suggested approach includes six phases: creation of the log file, key setup and exchange, evidence setup and control, integrity assurance, agreement validation and confidential file release, as well as blockchain-based communication. To ensure efficient exchange of data exchange between the cloud provider and the client, the methodology comprises IPFS. The SSA (FOI-SSA) model, integrated with forensic operations, is used to select the keys in the best possible way. Finally, an analysis is conducted to prove the effectiveness of the proposed FOI-SSA technique.

show abstract

SoK: Blockchain Solutions for Forensics

Cited by 20 publications

References 37 publications

MsFaaS: Microservices Forensics as a Service

MsFaaS: Microservices Forensics as a Service

Cryptographic Techniques for Data Privacy in Digital Forensics

Preserving Integrity of Evidence with Blockchain Technology in Cloud Forensics for Immigration Management

Contact Info

Product

Resources

About