Cloud forensic: Technical challenges, solutions and comparative analysis
Cloud computing is arguably one of the most significant advances in information technology (IT) services today. Several cloud service providers (CSPs) have offered services that have produced various transformative changes in computing activities and presented numerous promising technological and ec...
| Main Authors: | , , |
|---|---|
| Format: | Journal Article |
| Published: |
Elsevier Advanced Technology
2015
|
| Subjects: | |
| Online Access: | http://hdl.handle.net/20.500.11937/33937 |
| _version_ | 1848754084524326912 |
|---|---|
| author | Pichan, A. Lazarescu, Mihai Soh, S. |
| author_facet | Pichan, A. Lazarescu, Mihai Soh, S. |
| author_sort | Pichan, A. |
| building | Curtin Institutional Repository |
| collection | Online Access |
| description | Cloud computing is arguably one of the most significant advances in information technology (IT) services today. Several cloud service providers (CSPs) have offered services that have produced various transformative changes in computing activities and presented numerous promising technological and economic opportunities. However, many cloud customers remain reluctant to move their IT needs to the cloud, mainly due to their concerns on cloud security and the threat of the unknown. The CSPs indirectly escalate their concerns by not letting customers see what is behind virtual wall of their clouds that, among others, hinders digital investigations. In addition, jurisdiction, data duplication and multi-tenancy in cloud platform add to the challenge of locating, identifying and separating the suspected or compromised targets for digital forensics. Unfortunately, the existing approaches to evidence collection and recovery in a non-cloud (traditional) system are not practical as they rely on unrestricted access to the relevant system and user data; something that is not available in the cloud due its decentralized data processing.In this paper we systematically survey the forensic challenges in cloud computing and analyze their most recent solutions and developments. In particular, unlike the existing surveys on the topic, we describe the issues in cloud computing using the phases of traditional digital forensics as the base. For each phase of the digital forensic process, we have included a list of challenges and analysis of their possible solutions. Our description helps identifying the differences between the problems and solutions for non-cloud and cloud digital forensics. Further, the presentation is expected to help the investigators better understand the problems in cloud environment. More importantly, the paper also includes most recent development in cloud forensics produced by researchers, National Institute of Standards and Technology and Amazon. |
| first_indexed | 2025-11-14T08:34:47Z |
| format | Journal Article |
| id | curtin-20.500.11937-33937 |
| institution | Curtin University Malaysia |
| institution_category | Local University |
| last_indexed | 2025-11-14T08:34:47Z |
| publishDate | 2015 |
| publisher | Elsevier Advanced Technology |
| recordtype | eprints |
| repository_type | Digital Repository |
| spelling | curtin-20.500.11937-339372017-09-13T15:09:37Z Cloud forensic: Technical challenges, solutions and comparative analysis Pichan, A. Lazarescu, Mihai Soh, S. Cloud customer Cloud forensics Digital forensics Digital evidence Amazon EC2 Cloud service provider Cloud computing Service level agreement Cloud computing is arguably one of the most significant advances in information technology (IT) services today. Several cloud service providers (CSPs) have offered services that have produced various transformative changes in computing activities and presented numerous promising technological and economic opportunities. However, many cloud customers remain reluctant to move their IT needs to the cloud, mainly due to their concerns on cloud security and the threat of the unknown. The CSPs indirectly escalate their concerns by not letting customers see what is behind virtual wall of their clouds that, among others, hinders digital investigations. In addition, jurisdiction, data duplication and multi-tenancy in cloud platform add to the challenge of locating, identifying and separating the suspected or compromised targets for digital forensics. Unfortunately, the existing approaches to evidence collection and recovery in a non-cloud (traditional) system are not practical as they rely on unrestricted access to the relevant system and user data; something that is not available in the cloud due its decentralized data processing.In this paper we systematically survey the forensic challenges in cloud computing and analyze their most recent solutions and developments. In particular, unlike the existing surveys on the topic, we describe the issues in cloud computing using the phases of traditional digital forensics as the base. For each phase of the digital forensic process, we have included a list of challenges and analysis of their possible solutions. Our description helps identifying the differences between the problems and solutions for non-cloud and cloud digital forensics. Further, the presentation is expected to help the investigators better understand the problems in cloud environment. More importantly, the paper also includes most recent development in cloud forensics produced by researchers, National Institute of Standards and Technology and Amazon. 2015 Journal Article http://hdl.handle.net/20.500.11937/33937 10.1016/j.diin.2015.03.002 Elsevier Advanced Technology restricted |
| spellingShingle | Cloud customer Cloud forensics Digital forensics Digital evidence Amazon EC2 Cloud service provider Cloud computing Service level agreement Pichan, A. Lazarescu, Mihai Soh, S. Cloud forensic: Technical challenges, solutions and comparative analysis |
| title | Cloud forensic: Technical challenges, solutions and comparative analysis |
| title_full | Cloud forensic: Technical challenges, solutions and comparative analysis |
| title_fullStr | Cloud forensic: Technical challenges, solutions and comparative analysis |
| title_full_unstemmed | Cloud forensic: Technical challenges, solutions and comparative analysis |
| title_short | Cloud forensic: Technical challenges, solutions and comparative analysis |
| title_sort | cloud forensic: technical challenges, solutions and comparative analysis |
| topic | Cloud customer Cloud forensics Digital forensics Digital evidence Amazon EC2 Cloud service provider Cloud computing Service level agreement |
| url | http://hdl.handle.net/20.500.11937/33937 |