A Distributed Snapshot Framework for Digital Forensics Evidence Extraction and Event Reconstruction from Cloud Environment

Author

Almulla, S. ; Iraqi, Y. ; Jones, Andrew

Author_Institution

Electr. & Comput. Eng., Khalifa Univ. of Sci. Technol. & Res., Abu Dhabi, United Arab Emirates

Volume

1

fYear

2013

fDate

2-5 Dec. 2013

Firstpage

699

Lastpage

704

Abstract

In a heterogeneous and volatile environment such as the cloud, recording the underlying infrastructure state - snapshot-is an important paradigm for analysis, testing and verification of properties associated with distributed executions. In case of crime or e-discovery investigation, possible execution might require to generate digital forensics evidences. The aim of this research is to generate distributed snapshot and extract evidences in a forensically sound manner. The paper will cover literature review outcomes, preliminary findings, research methodology and work in progress.

Keywords

cloud computing; digital forensics; cloud environment; digital forensics evidence extraction; digital forensics evidences; distributed snapshot framework; e-discovery investigation; event reconstruction; forensically sound manner; infrastructure state; research methodology; Cloud computing; Computers; Digital forensics; Standards; Virtualization; Cloud computing; cloud forensics; digital forensics; distributed snapshots;

fLanguage

English

Publisher

ieee

Conference_Titel

Cloud Computing Technology and Science (CloudCom), 2013 IEEE 5th International Conference on

Conference_Location

Bristol

Type

conf

DOI

10.1109/CloudCom.2013.114

Filename

6753864