Current Challenges and Future Research Areas for Digital Forensic Investigation

Given the ever-increasing prevalence of technology in modern life, there is a corresponding increase in the likelihood of digital devices being pertinent to a criminal investigation or civil litigation. As a direct consequence, the number of investigations requiring digital forensic expertise is resulting in huge digital evidence backlogs being encountered by law enforcement agencies throughout the world. It can be anticipated that the number of cases requiring digital forensic analysis will greatly increase in the future. It is also likely that each case will require the analysis of an increasing number of devices including computers, smartphones, tablets, cloud-based services, Internet of Things devices, wearables, etc. The variety of new digital evidence sources pose new and challenging problems for the digital investigator from an identification, acquisition, storage and analysis perspective. This paper explores the current challenges contributing to the backlog in digital forensics from a technical standpoint and outlines a number of future research topics that could greatly contribute to a more efficient digital forensic process.

[1]  Nicole Beebe,et al.  Digital forensic text string searching: Improving information retrieval effectiveness by thematically clustering search results , 2007, Digit. Investig..

[2]  Jignesh M. Patel,et al.  Toward GPUs being mainstream in analytic processing: An initial argument using simple scan-aggregate queries , 2015, DaMoN.

[3]  Kim-Kwang Raymond Choo,et al.  Impacts of increasing volume of digital forensic data: A survey and future research challenges , 2014, Digit. Investig..

[4]  S. Almulla,et al.  Cloud forensics: A research perspective , 2013, 2013 9th International Conference on Innovations in Information Technology (IIT).

[5]  Nicole Beebe,et al.  Post-retrieval search hit clustering to improve information retrieval effectiveness: Two digital forensics case studies , 2011, Decis. Support Syst..

[6]  Martin Schäler,et al.  Forensics on GPU Coprocessing in Databases - Research Challenges, First Experiments, and Countermeasures , 2013, BTW Workshops.

[7]  Nickson M. Karie,et al.  Taxonomy of Challenges for Digital Forensics , 2015, Journal of forensic sciences.

[8]  Bill Hill,et al.  Teleporter: An analytically and forensically sound duplicate transfer system , 2009, Digit. Investig..

[9]  M. Tahar Kechadi,et al.  Digital Evidence Bag Selection for P2P Network Investigation , 2014, ArXiv.

[10]  Guangxuan Chen,et al.  Suggestions to digital forensics in Cloud computing ERA , 2012, 2012 3rd IEEE International Conference on Network Infrastructure and Digital Content.

[11]  G. Richard,et al.  Breaking the Performance Wall: The Case for Distributed Digital Forensics , 2004 .

[12]  Nicole Beebe,et al.  Ranking algorithms for digital forensic string search hits , 2014, Digit. Investig..

[13]  Ziming Zhong,et al.  Data Partitioning on Heterogeneous Multicore and Multi-GPU Systems Using Functional Performance Models of Data-Parallel Applications , 2012, 2012 IEEE International Conference on Cluster Computing.

[14]  Nicole Beebe,et al.  A New Process Model for Text String Searching , 2007, IFIP Int. Conf. Digital Forensics.

[15]  Avita Katal,et al.  Hacktivism trends, digital forensic tools and challenges: A survey , 2013, 2013 IEEE CONFERENCE ON INFORMATION AND COMMUNICATION TECHNOLOGIES.

[16]  Sriram Raghavan,et al.  Digital forensic research: current state of the art , 2012, CSI Transactions on ICT.

[17]  Anthony Keane,et al.  Digital forensics investigations in the Cloud , 2014, 2014 IEEE International Advance Computing Conference (IACC).

[18]  Frank Breitinger,et al.  Watch What You Wear: Preliminary Forensic Analysis of Smart Watches , 2015, 2015 10th International Conference on Availability, Reliability and Security.

[19]  M. Tahar Kechadi,et al.  Cloud forensics definitions and critical criteria for cloud forensic capability: An overview of survey results , 2013, Digit. Investig..

[20]  Iain Sutherland,et al.  Forensic analysis of smart TV: A current issue and call to arms , 2014, Digit. Investig..

[21]  David Defour,et al.  Using Graphics Processors for Parallelizing Hash-Based Data Carving , 2009, 2009 42nd Hawaii International Conference on System Sciences.

[22]  Mehrdad S. Sharbaf,et al.  Cloud Computing: Digital Forensic Solutions , 2015, 2015 12th International Conference on Information Technology - New Generations.

[23]  Vassil Roussev,et al.  Real-time digital forensics and triage , 2013, Digit. Investig..

[24]  Nicole Beebe,et al.  Digital Forensic Research: The Good, the Bad and the Unaddressed , 2009, IFIP Int. Conf. Digital Forensics.

[25]  Joshua James,et al.  Measuring digital crime investigation capacity to guide international crime prevention strategies , 2013, ArXiv.

[26]  Lucian Sasu,et al.  GPU accelerated information retrieval using Bloom filters , 2015, 2015 19th International Conference on System Theory, Control and Computing (ICSTCC).

[27]  Christophe Nicolle,et al.  Event Reconstruction: A State of the Art , 2015 .

[28]  Vassil Roussev,et al.  Automated evaluation of approximate matching algorithms on real data , 2014, Digit. Investig..

[29]  E. J. van Eijk,et al.  Digital Forensics as a Service: A game changer , 2014, Digit. Investig..

[30]  JatowtAdam,et al.  Survey of Temporal Information Retrieval and Related Applications , 2014 .

[31]  Stefanos Gritzalis,et al.  Cloud Forensics Solutions: A Review , 2014, CAiSE Workshops.

[32]  Nhien-An Le-Khac,et al.  Tiered Forensic Methodology Model for Digital Field Triage by Non-Digital Evidence Specialists , 2016, ArXiv.

[33]  Nasir D. Memon,et al.  ForNet: A Distributed Forensics Network , 2003, MMM-ACNS.

[34]  Xiaohui Yuan,et al.  Digital forensics in social networks and the cloud: Process, approaches, methods, tools, and challenges , 2015, 2015 International Conference on Computing, Networking and Communications (ICNC).

[35]  Golden G. Richard,et al.  Massive threading: Using GPUs to increase the performance of digital forensics tools , 2007, Digit. Investig..

[36]  Sartaj Sahni,et al.  Fast in-Place File Carving for Digital Forensics , 2010, e-Forensics.

[37]  Simson L. Garfinkel,et al.  Digital forensics research: The next 10 years , 2010, Digit. Investig..

[38]  Simson L. Garfinkel,et al.  Bringing science to digital forensics with standardized forensic corpora , 2009, Digit. Investig..

[39]  Jaydip Sen,et al.  Embedded security for Internet of Things , 2011, 2011 2nd National Conference on Emerging Trends and Applications in Computer Science.

[40]  Susan T. Dumais,et al.  The vocabulary problem in human-system communication , 1987, CACM.