Experts reviews of a cloud forensic readiness framework for organizations
Experts reviews of a cloud forensic readiness framework for organizations
Cloud computing has drastically altered the ways in which it is possible to deliver information technologies (ITs) to consumers as a service. In addition, the concept has given rise to multiple benefits for consumers and organizations. However, such a fast surge in the adoption of cloud computing has led to the emergence of the cloud as a new cybercrime environment, thus giving rise to fresh legal, technical and organizational challenges. In addition to the vast number of attacks that have had an impact on cloud computing and the fact that cloud-based data processing is carried out in a decentralized manner, many other concerns have been noted. Among these concerns are how to conduct a thorough digital investigation in cloud environments and how to be prepared to gather data ahead of time before the occurrence of an incident; indeed, this kind of preparation would reduce the amount of money, time and effort that is expended. As a number of cloud forensics challenges have not received enough attention, this study is motivated by a particular gap in research on the technical, legal and organizational factors that facilitate forensic readiness in organizations that utilize an Infrastructure as a Service (IaaS) model. This paper presents a framework with which to investigate the factors that facilitate the forensic readiness of organizations. This framework was identified by critically reviewing previous studies in the literature and by performing an in-depth examination of the relevant industrial standards. The factors were comprehensively studied and extracted from the literature; then, the factors were analysed, duplicates were removed, and the factors were categorized and synthesized to produce the framework. To obtain reliable results, the research method involved two steps: a literature review, followed by expert reviews. These techniques help us paint a comprehensive picture of the research topic and validate and confirm the results.
Cloud computing, Cloud forensic readiness, Cloud forensics, Digital forensics
Alenezi, Ahmed
121c053f-ddf0-404f-b1cb-460b542ebed9
Atlam, Hany F.
7c10ec9b-3846-4364-9f89-b85adc8b3d36
Wills, Gary B.
3a594558-6921-4e82-8098-38cd8d4e8aa0
1 December 2019
Alenezi, Ahmed
121c053f-ddf0-404f-b1cb-460b542ebed9
Atlam, Hany F.
7c10ec9b-3846-4364-9f89-b85adc8b3d36
Wills, Gary B.
3a594558-6921-4e82-8098-38cd8d4e8aa0
Alenezi, Ahmed, Atlam, Hany F. and Wills, Gary B.
(2019)
Experts reviews of a cloud forensic readiness framework for organizations.
Journal of Cloud Computing, 8 (1), [11].
(doi:10.1186/s13677-019-0133-z).
Abstract
Cloud computing has drastically altered the ways in which it is possible to deliver information technologies (ITs) to consumers as a service. In addition, the concept has given rise to multiple benefits for consumers and organizations. However, such a fast surge in the adoption of cloud computing has led to the emergence of the cloud as a new cybercrime environment, thus giving rise to fresh legal, technical and organizational challenges. In addition to the vast number of attacks that have had an impact on cloud computing and the fact that cloud-based data processing is carried out in a decentralized manner, many other concerns have been noted. Among these concerns are how to conduct a thorough digital investigation in cloud environments and how to be prepared to gather data ahead of time before the occurrence of an incident; indeed, this kind of preparation would reduce the amount of money, time and effort that is expended. As a number of cloud forensics challenges have not received enough attention, this study is motivated by a particular gap in research on the technical, legal and organizational factors that facilitate forensic readiness in organizations that utilize an Infrastructure as a Service (IaaS) model. This paper presents a framework with which to investigate the factors that facilitate the forensic readiness of organizations. This framework was identified by critically reviewing previous studies in the literature and by performing an in-depth examination of the relevant industrial standards. The factors were comprehensively studied and extracted from the literature; then, the factors were analysed, duplicates were removed, and the factors were categorized and synthesized to produce the framework. To obtain reliable results, the research method involved two steps: a literature review, followed by expert reviews. These techniques help us paint a comprehensive picture of the research topic and validate and confirm the results.
Text
s13677-019-0133-z
- Version of Record
More information
Accepted/In Press date: 27 June 2019
e-pub ahead of print date: 14 August 2019
Published date: 1 December 2019
Keywords:
Cloud computing, Cloud forensic readiness, Cloud forensics, Digital forensics
Identifiers
Local EPrints ID: 433471
URI: http://eprints.soton.ac.uk/id/eprint/433471
PURE UUID: 61ca9e85-04d1-44d7-80b8-f67643bb59c2
Catalogue record
Date deposited: 23 Aug 2019 16:30
Last modified: 18 Mar 2024 02:41
Export record
Altmetrics
Contributors
Author:
Ahmed Alenezi
Author:
Hany F. Atlam
Author:
Gary B. Wills
Download statistics
Downloads from ePrints over the past year. Other digital versions may also be available to download e.g. from the publisher's website.
View more statistics