Please enable JavaScript.
Coggle requires JavaScript to display documents.
The Most Ideal Forensics Model for Public Cloud Forensics - Coggle Diagram
The Most Ideal Forensics Model for Public Cloud Forensics
What are the current model on conducting Cloud Forensics?
FROST
Problem:
Reduce Dependency on CSP
Benefits
: Useful to forensic acquisition as it supports IaaS
A framework to collect CSP independence forensics data
Problem:
Depend on CSP for forensic data
Benefit:
Necessary information can be collected by FMP and validated by DDoS
LINEA
Problem:
Difficult to collect network evidence due to volatility in cloud
Benefits:
Evidence collection made by online services
Semi Formal Modeling Approach
Problem:
Difficult to collect forensic information in UCaaS network infrastructure due to complexity and limited access to cloud infrasructure.
Benefit:
Can be reused in investigation based on its patterns
Log Based Cloud Forensic Techniques
Problem:
To identify all the To understand all log based activities
Benefit:
Log management process is described.
CSPCR: Cloud Security, Privacy and Compliance Readiness
Problem:
Many models for self evaluation of organizations but not satisfactory for improvement of the system
Benefit:
Achieve high level security
Cloud Forensic Techniques in IaaS
Problem:
Create awareness about all cloud forensics techniques in cloud forensics
Benefit:
Data integrity to prevent evidence tampering.
CFaaS
Problem:
No framework to collect and verify data at both consumer and provider side
Benefit:
Useful to collect and verify independent data at consumer and provider side to resolve potential disputes
Generic methodology to build cloud forensic-enabled services (CFeS)
Problem:
Gap in field of cloud forensics as there was no methodology to cloud forensics enabled services.
Benefit:
Integrated model based on cloud services characteristics to help engineers invent cloud forensics enabled
Scope
Public Cloud
How big would the cloud to be analyzed?
How to identify data centers involved?
Multi tenancy
How to get cloud forensics data from CSP?
How reliable are data from CSP?
Will different CSP have different format of cloud forensic evidence?
Methodology
It is the application of digital forensics in the cloud and it is a subset of network forensics.
It is harder to identify evidence in cloud infrastructure since the data are located in different geographical areas.
Approach
How to compare cloud forensics models?
What tools needed?
What are the important variables in cloud forensics?
Collection
Examination
Analysis
Reporting
What are condition of cloud services?
Will it affect the effectiveness of cloud forensic model?
What are the technological factors that influence cloud forensic readiness?