“…More specifically, including digital forensic practices will provide an in‐depth understanding of an incident, help identify perpetrators and potentially their motives, and identify appropriate response actions as well as improving the response strategy for rapid actions. This echoed the observations of Ab Rahman and Choo . For example, using forensic tools allowed us to recover data of forensic interest from the databases of apps, etc., which could be used to reconstruct the event.…”
Section: Discussionmentioning
confidence: 53%
“…In this study, we adapt our previously published models and present a refined model which integrates both cloud incident handling and forensic‐by‐design principles. We then demonstrate the utility of our model using a set of controlled experiments.…”
“…More specifically, including digital forensic practices will provide an in‐depth understanding of an incident, help identify perpetrators and potentially their motives, and identify appropriate response actions as well as improving the response strategy for rapid actions. This echoed the observations of Ab Rahman and Choo . For example, using forensic tools allowed us to recover data of forensic interest from the databases of apps, etc., which could be used to reconstruct the event.…”
Section: Discussionmentioning
confidence: 53%
“…In this study, we adapt our previously published models and present a refined model which integrates both cloud incident handling and forensic‐by‐design principles. We then demonstrate the utility of our model using a set of controlled experiments.…”
“…One potential future work is to develop and validate a cloud incident handling and forensic readiness model such as the model of Ab Rahman and Choo (Rahman and Choo, 2015b).…”
Section: Discussionmentioning
confidence: 99%
“…This concept of forensic readiness is important because not only does it facilitate digital investigations but it allows these activities to proceed with minimal interruption or cost to the business (Pangalos et al, 2010) (Rahman and Choo, 2015b). This concept of forensic readiness is important because not only does it facilitate digital investigations but it allows these activities to proceed with minimal interruption or cost to the business (Pangalos et al, 2010) (Rahman and Choo, 2015b).…”
“…In an extra effort in a recent work, to respond to the increased volume of forensic data and the sophisticated attacks targeting cloud services, the model was later enhanced to a cloud incident handling and forensics-by-design model. The efficacy of the model was then demonstrated by using Google Drive, Dropbox, and OneDrive [57][58][59][60].…”
A common cloud forensic model proposed by researchers is 'Cloud-Forensic-as-a-Service' where consumers have to access it as a service to collect forensic data from cloud environments. The 'Cloud-Forensic-as-a-Service' model raises the question of how it collects digital evidence pertaining to an incident which occurred in the cloud. Currently, types of 'Cloud-Forensic-as-a-Service' systems in the literature show that the system is controlled and implemented by the cloud provider, where they unilaterally define the type of evidence that can be collected by the system. A serious limitation of this approach is that it does not offer the consumer sufficient means of performing reasonableness checks to verify that the provider is not accidentally or maliciously contaminating the evidence. To address the problem, the paper proposes a conceptual bilateral Cloud-Forensic-as-a-Service model where both consumers and providers can independently collect, verify the equity of the forensic analysis process and try to resolve potential disputes emerging from the independently collected results. The authors have developed a cloud forensic process model to lead common and significant aspects of a bilateral Cloud-Forensics-as-a-Service model. The paper explicitly discusses the concept of a bilateral Cloud-Forensic-asa-Service model.
scite is a Brooklyn-based organization that helps researchers better discover and understand research articles through Smart Citations–citations that display the context of the citation and describe whether the article provides supporting or contrasting evidence. scite is used by students and researchers from around the world and is funded in part by the National Science Foundation and the National Institute on Drug Abuse of the National Institutes of Health.