Objectives: To provide a competent secure framework for the cloud forensics system with enhancement of security in various phases of forensics investigation method. Methods/Statistical analysis: The various issues has been raised in above study about existing cloud forensics framework as security concern has been discussed during the evidence identification and collection, during acquisition, during preservation and during analysis and reporting. The study unveils about the requirement of various security parameters during the entire chain of custody in cloud system. Findings: The major finding is related to security concern in various phases. Coming towards the initial stage of identification and collection, it is not easy to execute these tasks. Since cloud data is stored in multiple data center and using conventional method for identification of evidence is a tedious job. Because of cloud distributing nature it is not easy to collect all evidence from these servers, as thousands of servers are running globally across data center and securing this evidence is the major task. After that level key challenges is locations of data centers and data acquisition from a large data set. The remote location of data centers and client machine may require stateless communication. Predictable time duration for data acquisition from remote data centers in comparison with local computer demoralize the investigation process and make it overwhelming for a moment of time. Furthermore, erroneous evidence acquisition not only wastes investigation effort but may lead the complete investigation into the wrong manner. After that concern is about log file format, analyzing logs is challenge due to unification issue. Also at time of reporting main challenge occur for choosing the right court of law; Cross boarder verification is a big issue during investigation, and then exchanging data between two countries needs more privacy. Application/Improvements: Strong secrecy for evidence identification and collection, with enhanced privacy level and improved chain of custody method. Recovery of data in cloud can be faster, which will help in disaster recovery also due to a unified format. And finally appropriate secure integrated framework may lead to resolve cases quickly.
[1]
Ahmed F. Shosha,et al.
Digital Forensic Investigation and Cloud Computing
,
2013
.
[2]
Ali Dehghantanha,et al.
Cloud computing and conflicts with digital forensic investigation
,
2013
.
[3]
Jianhua Che,et al.
Study on the Security Models and Strategies of Cloud Computing
,
2011
.
[4]
Yan Zhang,et al.
Research on the Key Technology of Secure Computer Forensics
,
2010,
2010 Third International Symposium on Intelligent Information Technology and Security Informatics.
[5]
ChengYan.
Cybercrime forensic system in cloud computing
,
2011
.
[6]
Ali Dehghantanha,et al.
Cloud Forensics Issues and Opportunities
,
2013
.
[7]
Yongquan Wang,et al.
Research On Some Relevant Problems in Computer Forensics
,
2013
.
[8]
Yuyin Cui,et al.
Research on Live Forensics in Cloud Environment
,
2013
.
[9]
Jianliang Wei,et al.
Study of Network Public Opinion Monitoring Based on Social Tagging
,
2013
.
[10]
Kim-Kwang Raymond Choo,et al.
Cloud storage forensics: ownCloud as a case study
,
2013,
Digit. Investig..
[11]
Kim-Kwang Raymond Choo,et al.
An integrated conceptual digital forensic framework for cloud computing
,
2012,
Digit. Investig..
[12]
Guangxuan Chen,et al.
Suggestions to digital forensics in Cloud computing ERA
,
2012,
2012 3rd IEEE International Conference on Network Infrastructure and Digital Content.
[13]
Denis Reilly,et al.
Cloud Computing: Pros and Cons for Computer Forensic Investigations
,
2011
.
[14]
Avita Katal,et al.
Hacktivism trends, digital forensic tools and challenges: A survey
,
2013,
2013 IEEE CONFERENCE ON INFORMATION AND COMMUNICATION TECHNOLOGIES.
[15]
Filipo Sharevski,et al.
Digital forensic investigation in cloud computing environment: Impact on privacy
,
2013,
2013 8th International Workshop on Systematic Approaches to Digital Forensics Engineering (SADFE).