Adding Digital Forensic Readiness as a Security Component to the IoT Domain

The unique identities of remote sensing, monitoring, self-actuating, self–adapting and self-configuring “things” in Internet of Things (IoT) has come out as fundamental building blocks for the development of “smart environments”. This experience has begun to be felt across different IoT-based domains like healthcare, surveillance, energy systems, home appliances, industrial machines, smart grids and smart cities. These developments have, however, brought about a more complex and heterogeneous environment which is slowly becoming a home to cyber attackers. Digital Forensic Readiness (DFR) though can be employed as a mechanism for maximizing the potential use of digital evidence while minimizing the cost of conducting a digital forensic investigation process in IoT environments in case of an incidence. The problem addressed in this paper, therefore, is that at the time of writing this paper, there still exist no IoT architectures that have a DFR capability that is able to attain incident preparedness across IoT environments as a mechanism of preparing for post-event response process. It is on this premise, that the authors are proposing an architecture for incorporating DFR to IoT domain for proper planning and preparing in the case of security incidents. It is paramount to note that the DFR mechanism in IoT discussed in this paper complies with ISO/IEC 27043: 2015, 27030:2012 and 27017: 2015 international standards. It is the authors’ opinion that the architecture is holistic and very significant in IoT forensics.

[1]  Les Labuschagne,et al.  A conceptual model for digital forensic readiness , 2012, 2012 Information Security for South Africa.

[2]  Nickson M. Karie,et al.  How an IoT-enabled “smart refrigerator” can play a clandestine role in perpetuating cyber-crime , 2017, 2017 IST-Africa Week Conference (IST-Africa).

[3]  P. Harwood Michael , 1985 .

[4]  Kevin Barraclough,et al.  I and i , 2001, BMJ : British Medical Journal.

[5]  Andrew Lonie,et al.  Towards A Systemic Framework for Digital Forensic Readiness , 2014, J. Comput. Inf. Syst..

[6]  Nicola Bui,et al.  Internet of Things Architecture - IoT-A , 2013 .

[7]  Soo Young Shin,et al.  IoT and Public Weather Data Based Monitoring & Control Software Development for Variable Color Temperature LED Street Lights , 2017 .

[8]  Rabiah Ahmad,et al.  Developing Forensic Readiness Secure Network Architecture for Wireless Body Area Network (WBAN) , 2014 .

[9]  Norashidah Md Din,et al.  A Review on Sensor Node Placement Techniques in Wireless Sensor Networks , 2017 .

[10]  Nickson M. Karie,et al.  Taxonomy of Challenges for Digital Forensics , 2015, Journal of forensic sciences.

[11]  Victor R. Kebande,et al.  Novel digital forensic readiness technique in the cloud environment , 2018 .

[13]  Indrakshi Ray,et al.  A Generic Digital Forensic Investigation Framework for Internet of Things (IoT) , 2016, 2016 IEEE 4th International Conference on Future Internet of Things and Cloud (FiCloud).

[14]  Hein S. Venter,et al.  Adding event reconstruction to a Cloud Forensic Readiness model , 2015, 2015 Information Security for South Africa (ISSA).

[15]  George M. Mohay,et al.  Technical challenges and directions for digital forensics , 2005, First International Workshop on Systematic Approaches to Digital Forensic Engineering (SADFE'05).

[16]  G. G. Stokes "J." , 1890, The New Yale Book of Quotations.

[17]  Nickson M. Karie,et al.  Toward a General Ontology for Digital Forensic Disciplines , 2014, Journal of forensic sciences.

[18]  Buks Louwrens,et al.  Digital Forensic Readiness as a Component of Information Security Best Practice , 2007, SEC.

[19]  Surya Sumpeno,et al.  Performance IEEE 802.14.5 and zigbee protocol on realtime monitoring augmented reality based wireless sensor network system , 2017 .