Security and Digital Forensics in Cloud Computing (original) (raw)
Related papers
IMPLEMENTATION OF DIGITAL FORENSIC TECHNIQUE FOR CLOUD COMPUTING
Abstract- Cloud computing has penetrated the Information Technology industry deep enough to influence major companies to adopt it into their mainstream business. A strong thrust on the use of virtualization technology to realize Infrastructure-asa- Service (IaaS) has led enterprises to leverage subscription-oriented computing capabilities of public Clouds for hosting their application services. A seldomly discussed, but in this regard highly relevant open issue is the ability to perform digital investigations. This continues to fuel insecurity on the sides of both providers and customers. In Cloud Forensics, the lack of physical access to servers constitutes a completely new and disruptive challenge for investigators. Due to the decentralized nature of data processing in the Cloud, traditional approaches to evidence collection and recovery are no longer practical. The main disturbing element of the security of the cloud i.e. the DDoS attacks has led to the establishment of various technologies in order to gain defense against DDoS attacks. This paper gives the implementation of a forensic technique which detects DDoS attack and is used as a service provided by CSP.
An Approach Towards Digital Forensic Framework for Cloud
Cloud Computing is on demand network, data access anywhere anytime. Pay per model is gaining commercial day by day. Due to the popularity of cloud and all time availability, the security issue is again the main concern nowadays. The client don't know where the data is stored and in which datacenter. The distributed nature of cloud is again the point of security in cloud and also gives the chance to malicious activities to be carried out very easily. Cloud computing presents the abstract layer to user for storing their confidential data hiding their architectural details. Due to this whenever the malicious activity happens in cloud, it becomes very difficult to trace. This gives rise to new area of research in the field of digital forensics that has unique challenges and opportunities in context of cloud. This paper presents the detail study of malicious activity that can be carried out in cloud and with the help of some case studies and detailed methodology of proposed architecture earlier mentioned in the paper.
Forensics Issues in Cloud Computing
Journal of Computer and Communications, 2016
Cloud computing is an emerging technology that is being widely adopted throughout the world due to its ease-of-use. Organizations of all types can use it without prerequisites such as IT infrastructure, technical skills, managerial overload, storage capacity, processing power, and data recovery or privacy setup. It can be availed by all clients as per their needs, expectations and budget. However, cloud computing introduces new kinds of security vulnerabilities that need to be addressed. Traditional "Computer Forensics" deals with detection, preemption and prevention of IT triggered frauds and crimes but it lacks the ability to deal with cybercrimes pertaining to cloud computing environment. In this paper, we focus on forensics issues in cloud computing, assess limitations of forensic team and present the obstacles faced during investigation.
A Proposed Model of Digital Forensic on Cloud Computing Security Infrastructure
International Journal of Innovation in Enterprise System, 2018
Over the past decades, practitioners and researchers have made remarkable achievements in digital forensic. The abilities to conquer major technical obstacles are bestowing practitioners greater access to digital evidence. Sophisticated forensic techniques and tools are being developed to assist forensic acquisition and extraction of volatile data, inspection of remote repositories system and analysis of network traffic. Computer forensic is a comprehensive work that based on several attributes that are : objectivity, relevance and legitimacy to compose a system model that projected to be an electronic evidence forensic system. Latest studies show that the rapid growing of cloud computing facilities usage that has enable various improvements as part of the innovation process at organisations. Information systems are in frequently exposed to various types of threats which able to trigger different types of bad consequences as more and more information stored, problems arise especiall...
11.Cyber Forensics in Cloud Computing
Cloud computing is a broad and diverse phenomenon; much of the growth represents a transfer of traditional IT services to a new cloud model. Cloud computing is anticipated to be one of the most transformative technologies in the history of computing. Cloud organizations, including the providers and customers of cloud services, have yet to establish a well-defined forensic capability. Without this they are unable to ensure the robustness and suitability of their services to support investigations of criminal activity. In this paper, we take the first steps towards defining the new area of cloud forensics, and analyze its challenges and opportunities.
A novel approach of cloud computing security using forensics techniques
Using cloud computing, businesses can adopt IT without incurring a significant upfront cost. The Internet has numerous benefits, but model security remains a concern, which affects cloud embracing negatively. The security challenge gets too difficult underneath data center, while additional dimensions such as model design, multitenancy, elasticity, and the layers dependency stack have been added to the problem scope. We present a thorough examination of the cloud security challenge in this article. We looked at the issue from the standpoints of network infrastructure: cloud-provided features, cloud consumers, and cloud service delivery methods. Based on this research, we developed an in-depth characterization of the data protection challenge and recommended security solutions that should address the critical aspects of the issue. Cloud computing is an exploding field of research that relies on distributing computing power instead of using dedicated computers or smart devices. Most of the growth in this sector is attributed to the indispensability of electronic and digital gadgets and the shift from a traditional IT subscription model to a unique cloud model. Cloud computing offered a significant danger and difficulty for information system projects, but it also provided them with several possibilities to improve their data processing. It has also been noted that cloud users and consumers do not yet have the necessary forensic skills to detect illegal activity in the cloud. Although the cloud offers potential technological and economic advantages, consumers have been reluctant to adopt it primarily due to security concerns and the difficulty of conducting an appropriate investigation into the cloud. Some study has been done in this area, and strategies for conducting forensic investigations have been proposed. In this research paper, we begin by analyzing the intrusion detection progress made by other academics, and then we analyze and evaluate our conclusions in order to assess the potential difficulties that cloud forensics face based on these findings.
Cloud Forensics: Drawbacks in Current Methodologies and Proposed Solution
Cloud Computing is a heavily evolving domain in technology. Many public and private entities are shifting their workstations on the cloud due to its robust, remote, virtual environment. Due to the enormity of this domain, it has become increasingly easier to carry out any sort of malicious attacks on such cloud platforms. There is a very low research done to develop the theory and practice of cloud forensics. One of the main challenges includes the inability to collect enough evidence from each and every subscriber of a Cloud Service Provider(CSP) and thus not being able to trace out the roots of the malicious activity committed. In this paper we compare past research done in this field and address the gaps and loopholes in the frameworks previously suggested. Overcoming these, our system/framework facilitates the collection, organization, and thereby the analysis of the evidence sought, hence preserving the essential integrity of the sensitive and volatile data.
Digital Forensics in the Cloud
Today's cloud computing architectures often lack support for computer forensic investigations. Besides this, the existing digital forensics tools cannot cope with the dynamic nature of the cloud. This paper explores the challenges of digital forensics in the cloud, possible attacks on cloud-evidence, and mitigation strategies against those challenges.
International Journal of Advanced Research in Computer Science, 2017
Cloud computing is evolving web based technology. Which provide various service to physical IT infrastructure which is managed and hosted by third party. Features due to which cloud find its application in E-learning, cloud based ERP and Egovernance are flexibility, availability, scalability, efficiency and reliability. As large number of computing technology is involved in cloud computing it is an object of security issues. In this research, we have discussed about basics of cloud computing, features, models, application, security issue, basics of digital forensics and cloud forensic as well as the challenges faced during the cloud investigation.
Advances in Digital Forensics VII, 2011
Cloud computing may well become one of the most transformative technologies in the history of computing. Cloud service providers and customers have yet to establish adequate forensic capabilities that could support investigations of criminal activities in the cloud. This paper discusses the emerging area of cloud forensics, and highlights its challenges and opportunities.