Samuel Opuni Boateng,

DOI: https://doi.org/10.22624/aims/crp-bk3-p54

2022-07-26

Abstract:Cloud computing is a relatively new concept that offers the potential to deliver scalable elastic services to many. The notion of pay-per use is attractive and in the current global recession hit economy it offers an economic solution to an organizations' IT needs. Computer forensics is a relatively new discipline born out of the increasing use of computing and digital storage devices in criminal acts (both traditional and hi-tech). In the last decade computer forensics has developed in terms of procedures, practices and tool support to serve the law enforcement community. However, it now faces possibly its greatest challenges in dealing with cloud computing. Through this paper we explore these challenges and suggest some possible solutions. Keywords: Forensic, Cybercrime, law Enforcement, Digital Universe, Cyberspace, Security BOOK Chapter ǀ Research Nexus in IT, Law, Cyber Security & Forensics. Open Access. Distributed Free Citation: Samuel Opuni Boateng (2022): Cloud Computing Forensic Challenges for Law Enforcement Book Chapter Series on Research Nexus in IT, Law, Cyber Security & Forensics. Pp 339-344 www.isteams.net/ITlawbookchapter2022. dx.doi.org/10.22624/AIMS/CRP-BK3-P54

Adedayo M. Balogun,Shao Ying Zhu

DOI: https://doi.org/10.48550/arXiv.1312.3183

2013-12-11

Abstract:Owing to a number of reasons, the deployment of encryption solutions are beginning to be ubiquitous at both organizational and individual levels. The most emphasized reason is the necessity to ensure confidentiality of privileged information. Unfortunately, it is also popular as cyber-criminals' escape route from the grasp of digital forensic investigations. The direct encryption of data or indirect encryption of storage devices, more often than not, prevents access to such information contained therein. This consequently leaves the forensics investigation team, and subsequently the prosecution, little or no evidence to work with, in sixty percent of such cases. However, it is unthinkable to jeopardize the successes brought by encryption technology to information security, in favour of digital forensics technology. This paper examines what data encryption contributes to information security, and then highlights its contributions to digital forensics of disk drives. The paper also discusses the available ways and tools, in digital forensics, to get around the problems constituted by encryption. A particular attention is paid to the Truecrypt encryption solution to illustrate ideas being discussed. It then compares encryption's contributions in both realms, to justify the need for introduction of new technologies to forensically defeat data encryption as the only solution, whilst maintaining the privacy goal of users.

Cryptography and Security

Shams Zawoad,Ragib Hasan

DOI: https://doi.org/10.48550/arXiv.1302.6312

2013-02-26

Abstract:In recent years, cloud computing has become popular as a cost-effective and efficient computing paradigm. Unfortunately, today's cloud computing architectures are not designed for security and forensics. To date, very little research has been done to develop the theory and practice of cloud forensics. Many factors complicate forensic investigations in a cloud environment. First, the storage system is no longer local. Therefore, even with a subpoena, law enforcement agents cannot confiscate the suspect's computer and get access to the suspect's files. Second, each cloud server contains files from many users. Hence, it is not feasible to seize servers from a data center without violating the privacy of many other users. Third, even if the data belonging to a particular suspect is identified, separating it from other users' data is difficult. Moreover, other than the cloud provider's word, there is usually no evidence that links a given data file to a particular suspect. For such challenges, clouds cannot be used to store healthcare, business, or national security related data, which require audit and regulatory compliance. In this paper, we systematically examine the cloud forensics problem and explore the challenges and issues in cloud forensics. We then discuss existing research projects and finally, we highlight the open problems and future directions in cloud forensics research area. We posit that our systematic approach towards understanding the nature and challenges of cloud forensics will allow us to examine possible secure solution approaches, leading to increased trust on and adoption of cloud computing, especially in business, healthcare, and national security. This in turn will lead to lower cost and long-term benefit to our society as a whole.

Distributed, Parallel, and Cluster Computing,Cryptography and Security

Jukka Ruohonen

DOI: https://doi.org/10.48550/arXiv.2302.09942

2023-02-20

Computers and Society

Abstract:Access to online data has long been important for law enforcement agencies in their collection of electronic evidence and investigation of crimes. These activities have also long involved cross-border investigations and international cooperation between agencies and jurisdictions. However, technological advances such as cloud computing have complicated the investigations and cooperation arrangements. Therefore, several new laws have been passed and proposed both in the United States and the European Union for facilitating cross-border crime investigations in the context of cloud computing. These new laws and proposals have also brought many new legal challenges and controversies regarding extraterritoriality, data protection, privacy, and surveillance. With these challenges in mind and with a focus on Europe, this paper reviews the recent trends and policy initiatives for cross-border data access by law enforcement agencies.

Pieter Hartel,Rolf van Wegberg

DOI: https://doi.org/10.1186/s40163-023-00185-4

2023-03-08

Crime Science

Abstract:Law enforcement agencies struggle with criminals using end-to-end encryption (E2EE). A recent policy paper states: "while encryption is vital and privacy and cyber security must be protected, that should not come at the expense of wholly precluding law enforcement". The main argument is that E2EE hampers attribution and prosecution of criminals who rely on encrypted communication - ranging from drug syndicates to child sexual abuse material (CSAM) platforms. This statement - in policy circles dubbed 'going dark' - is not yet supported by empirical evidence. That is why, in our work, we analyse public court data from the Netherlands to show to what extent law enforcement agencies and the public prosecution service are impacted by the use of E2EE in bringing cases to court and their outcome. Our results show that in cases brought to court, the Dutch courts appear to be as successful in convicting offenders who rely on E2EE as those who do not. Our data do not permit us to draw conclusions on the effect of E2EE on criminal investigations.

Moses Ashawa,Ali Mansour,Jackie Riley,Jude Osamor,Nsikak Pius Owoh

DOI: https://doi.org/10.37256/ccds.5120233845

2023-12-25

Cloud Computing and Data Science

Abstract:The significance of the cloud environment is growing in the current digital world. It provides several advantages, such as reduced expenses, the ability to adjust to different needs, adaptability and enhanced cooperation. The field of digital forensic investigations has encountered substantial difficulties in reconciling the requirement for efficient data analysis with the increasing apprehensions regarding privacy in recent times. As investigators analyse digital evidence to unearth crucial information, they must also traverse an intricate network of privacy rules and regulations. Given the increasing prevalence of remote work and the necessity for businesses to be adaptable and quick to react to shifting market circumstances, the cloud infrastructure has become a crucial asset for organisations of various scales. Although the cloud offers benefits such as scalability, flexibility and enhanced collaboration, it presents difficulties in digital forensic investigations regarding data protection, ownership and jurisdictional boundaries. These concerns are becoming increasingly significant as more data is kept in the cloud. In this paper, we present three major challenges that are faced during cloud-based forensics investigation. We analyse the extent to which different data formats increase complexity in forensics investigations in cyberspace. This paper analyses three core challenges facing digital forensics in the cloud environment: legitimacy, complexity and an increase in data volume, looking at the implications these have on data liable for legal issues in court. These challenges contribute to the backlog in digital forensics investigations due to a lack of modularisation of the procedures. To address these concerns, modularisation model is proposed to offer a way to integrate traditional processing functions while ensuring strict adherence to privacy protocols. To overcome these challenges, we propose modularisation as a strategy for improving the future of digital forensic research's operational efficiency, overcoming the identified challenges faced during cloud-based investigations and demonstrating how organisations can mitigate potential risks associated with storing sensitive information in the cloud.

George Grispos,Tim Storer,William Bradley Glisson

DOI: https://doi.org/10.48550/arXiv.1410.2123

2014-10-08

Cryptography and Security

Abstract:Cloud computing is a rapidly evolving information technology (IT) phenomenon. Rather than procure, deploy and manage a physical IT infrastructure to host their software applications, organizations are increasingly deploying their infrastructure into remote, virtualized environments, often hosted and managed by third parties. This development has significant implications for digital forensic investigators, equipment vendors, law enforcement, as well as corporate compliance and audit departments (among others). Much of digital forensic practice assumes careful control and management of IT assets (particularly data storage) during the conduct of an investigation. This paper summarises the key aspects of cloud computing and analyses how established digital forensic procedures will be invalidated in this new environment. Several new research challenges addressing this changing context are also identified and discussed.

Matthew Green,Gabriel Kaptchuk,Gijs Van Laer

DOI: https://doi.org/10.1007/978-3-030-77883-5_19

2021-01-01

Abstract:The increasing deployment of end-to-end encrypted communications services has ignited a debate between technology firms and law enforcement agencies over the need for lawful access to encrypted communications. Unfortunately, existing solutions to this problem suffer from serious technical risks, such as the possibility of operator abuse and theft of escrow key material. In this work we investigate the problem of constructing law enforcement access systems that mitigate the possibility of unauthorized surveillance. We first define a set of desirable properties for an abuse-resistant law enforcement access system (ARLEAS), and motivate each of these properties. We then formalize these definitions in the Universal Composability (UC) framework, and present two main constructions that realize this definition. The first construction enables prospective access, allowing surveillance only if encryption occurs after a warrant has been issued and activated. The second, more powerful construction, allows retrospective access to communications that occurred prior to a warrant’s issuance. To illustrate the technical challenge of constructing the latter type of protocol, we conclude by investigating the minimal assumptions required to realize these systems.

Yun Gao,Xiao Fu,Bin Luo

DOI: https://doi.org/10.3969/j.issn.1001-3695.2016.01.001

2016-01-01

Abstract:Cloud users can get a lot of computer resources and storage space at low cost.However,the security risks,such as the spreading of illegal information,sensitive data leakage,data tampering,are still crucial problem in cloud computing envi-ronment.Hence,the forensics of cloud computing crime becomes particular important.Firstly,this paper introduced the con-cept of cloud forensics and listed the technical and legal challenges in could forensics.Then it introduced researches by now in cloud forensics and presented analysis summary on current researches.Finally,it put forward opportunities of cloud forensics.

Ahmed MohanRaj Alenezi

2024-03-04

Abstract:This paper explores strategies for enhancing cloud security through encryption and digital forensic readiness. The adoption of cloud computing has brought unprecedented benefits to organizations but also introduces new security challenges. Encryption plays a crucial role in protecting data confidentiality and integrity within cloud environments. Various encryption techniques and key management practices are discussed, along with their implications for data privacy and regulatory compliance. Additionally, the paper examines the importance of digital forensic readiness in facilitating effective incident response and investigation in the cloud. Challenges associated with conducting digital forensics in cloud environments are addressed, and strategies for overcoming these challenges are proposed. By integrating encryption and digital forensic readiness into a cohesive security strategy, organizations can strengthen their resilience against emerging threats and maintain trust in their cloud-based operations.

Cryptography and Security

Manuel Jesús Rivas Sández

DOI: https://doi.org/10.48550/arXiv.1508.01053

2015-08-05

Abstract:Cloud computing is a relatively new technology which is quickly becoming one of the most important technological advances for computer science. This technology has had a significant growth in recent years. It is now more affordable and cloud platforms are becoming more stable. Businesses are successfully migrating their systems to a cloud infrastructure, obtaining technological and economic benefits. However, others still remain reluctant to do it due to both security concerns and the loss of control over their infrastructures and data that the migration entails. At the same time that new technologies progress, its benefits appeal to criminals too. They can not only steal data from clouds, but they can also hide data in clouds, which has provoked an increased in the number of cybercrimes and their economic impacts. Their victims range from children and adults to companies and even countries. On the other hand, digital forensics have negatively suffered the impact of the boom of cloud computing due to its dynamic nature. The tools and procedures that were successfully proved and used in digital investigations are now becoming irrelevant, making it an urging necessity to develop new forensics capabilities for conducting an investigation in this new environment. As a consequence of these needs a new area has emerged, Cloud Forensics, which is the result of the intersection between cloud computing and digital forensics. Keywords: Cloud forensics, cloud computing, forensics investigation, forensic challenges.

Cryptography and Security,Computers and Society

Junwei Huang,Zhen Ling,Tao Xiang,Jie Wang,Xinwen Fu

DOI: https://doi.org/10.1109/icdcsw.2012.45

2012-01-01

Abstract:Academic researchers in digital forensics often lack backgrounds in related laws. This ignorance could make their research and development legally invalid, or with less relevance in practice. To better assist academic researchers, we discuss related laws that regulate the government's investigation and summarize different requirements of acquiring data and evidence in different crime scene investigations. We show that certain strategies (including attacks against security systems) would violate relevant laws, and so law enforcement cannot use them to collect data. We recommend that researchers focus on crime scene investigations that do not need Warrant/Court Order/Subpoena for trace back related network forensics. This would help make their research and development accepted more easily by law enforcement with a larger impact.

Annas Wasim Malik,David Samuel Bhatti,Tae-Jin Park,Hafiz Usama Ishtiaq,Jae-Cheol Ryou,Ki-Il Kim

DOI: https://doi.org/10.3390/s24020433

IF: 3.9

2024-01-11

Sensors

Abstract:Cloud computing technology is rapidly becoming ubiquitous and indispensable. However, its widespread adoption also exposes organizations and individuals to a broad spectrum of potential threats. Despite the multiple advantages the cloud offers, organizations remain cautious about migrating their data and applications to the cloud due to fears of data breaches and security compromises. In light of these concerns, this study has conducted an in-depth examination of a variety of articles to enhance the comprehension of the challenges related to safeguarding and fortifying data within the cloud environment. Furthermore, the research has scrutinized several well-documented data breaches, analyzing the financial consequences they inflicted. Additionally, it scrutinizes the distinctions between conventional digital forensics and the forensic procedures specific to cloud computing. As a result of this investigation, the study has concluded by proposing potential opportunities for further research in this critical domain. By doing so, it contributes to our collective understanding of the complex panorama of cloud data protection and security, while acknowledging the evolving nature of technology and the need for ongoing exploration and innovation in this field. This study also helps in understanding the compound annual growth rate (CAGR) of cloud digital forensics, which is found to be quite high at ≈16.53% from 2023 to 2031. Moreover, its market is expected to reach ≈USD 36.9 billion by the year 2031; presently, it is ≈USD 11.21 billion, which shows that there are great opportunities for investment in this area. This study also strategically addresses emerging challenges in cloud digital forensics, providing a comprehensive approach to navigating and overcoming the complexities associated with the evolving landscape of cloud computing.

engineering, electrical & electronic,chemistry, analytical,instruments & instrumentation

Prof. Mallika Dwivedi,Prof. Pankaj Pali,Jaya Choubey,Abhishek Mishra,Himani Hedau

DOI: https://doi.org/10.15680/ijirset.2023.1205495

2023-11-25

Abstract:Cloud computing forensics has emerged as a critical field due to the widespread adoption of cloud services in various sectors. This comprehensive review aims to investigate the challenges and future directions in cloud computing forensics. The paper identifies key obstacles such as data volatility, multi-tenancy, and jurisdictional issues that hinder effective forensic investigations in cloud environments. It also explores current methodologies, tools, and frameworks used in cloud forensics, evaluating their strengths and limitations. Furthermore, the review highlights emerging trends and proposes potential research directions to address existing gaps. By synthesizing current knowledge and identifying future prospects, this paper seeks to provide a robust foundation for advancing cloud computing forensics, ensuring improved security and reliability in cloud services.

Muhammad Faheem,M-Tahar Kechadi,Nhien-An Le-Khac

DOI: https://doi.org/10.48550/arXiv.1611.09566

2016-11-29

Cryptography and Security

Abstract:Smartphones have become popular in recent days due to the accessibility of a wide range of applications. These sophisticated applications demand more computing resources in a resource constraint smartphone. Cloud computing is the motivating factor for the progress of these applications. The emerging mobile cloud computing introduces a new architecture to offload smartphone and utilize cloud computing technology to solve resource requirements. The popularity of mobile cloud computing is an opportunity for misuse and unlawful activities. Therefore, it is a challenging platform for digital forensic investigations due to the non-availability of methodologies, tools and techniques. The aim of this work is to analyze the forensic tools and methodologies for crime investigation in a mobile cloud platform as it poses challenges in proving the evidence. The advancement of forensic tools and methodologies are much slower than the current technology development in mobile cloud computing. Thus, forces the available tools, and techniques become increasingly obsolete. Therefore, it opens up the door for the new forensic tools and techniques to cope up with recent developments. Hence, this work presents a detailed survey of forensic methodology and corresponding issues in a mobile device, cloud environment, and mobile cloud applications. It mainly focuses on digital forensic issues related to mobile cloud applications and also analyze the scope, challenges and opportunities. Finally, this work reviewed the forensic procedures of two cloud storage services used for mobile cloud applications such as Dropbox and SkyDrive.

Halefom H. Abraha

DOI: https://doi.org/10.1093/ijlit/eaab001

2021-04-13

International Journal of Law and Information Technology

Abstract:Abstract With the ubiquity of cloud computing, criminal investigations today—including exclusively domestic ones—often require access to data across borders. However, the traditional system of cross-border legal cooperation—the Mutual Legal Assistance system—is ill-suited to this development. There is a growing consensus that this system is unsustainable and needs to be reformed or replaced with new alternatives. That is where the consensus ends, however. Despite the shared understanding of the problem and repeated calls for reform or replacement of the traditional system, there is little agreement on what these reforms or alternative approaches should look like. What one can witness instead is the proliferation of uncoordinated initiatives that could lead to further jurisdictional conflict and legal uncertainty. The purpose of the present contribution is to map and examine these various initiatives based on the approaches they follow in addressing the challenges in obtaining electronic evidence across borders—issues that are referred to broadly in this article as ‘cross-border data access [CBDA] problem’. It tries to answer two questions: what approaches can best explain the proliferation of initiatives aimed at improving law enforcement access to electronic evidence across borders? To what extent are these initiatives apt to address the CBDA problem? This article develops and distinguishes between four approaches—reformist, unilateralist, internationalist and nuanced—that can best explain the current and emerging initiatives. It then examines the suitability and sustainability of these approaches against their stated objectives and some key principles that have enjoyed extensive support in policy and academic discussions.

Sunaina Bagga

DOI: https://doi.org/10.55524/ijircst.2021.9.6.69

2021-11-01

Abstract:Numerous firm’s architectures management of data guarantees substantially alter method, gain access to maintain private commercial business. Occur additional facts protection problems. Existing statistics safety methods have limits in preventing records legal assaults, in particular these performed by utilizing companion diploma business executives to the cloud dealer to monitor data get right of entry to within the cloud and find out unusual records get right of entry to. Sorts require method of building a machine robust protection privateer’s statistic through files person team customer’s technique much documents. Not simply the encryption keys but also the search keys need to be utilized and consumers have to keep their keys resistant and disseminated. The cutting-edge current gadget the place the facts proprietor can solely share one key with the user, whether or not it is any kind of document, massive or small variety of documents, and the function of the person is to cross a lure in the cloud of overall performance checking out and safety evaluation of shared documents, which is an impenetrable and superb proposed gives schemes. And consumers are also extremely concerned about data sharing storage, inexplicable information leak in the cloud, and harmful attackers. In the article, an experiment is done to format a method for encryption for impenetrable statistics allocation.

Eneli Laurits

DOI: https://doi.org/10.12697/ji.2023.32.10

2023-12-13

Juridica International

Abstract:The process of striving to enhance law enforcement's access to digital data held extraterritorially while finding the right balance in fundamental-rights protection began with establishing the Convention on Cybercrime. Evolving risks of evidence being lost, intimately connected with the urgency of collecting digital data, impose a constant need for new, more efficient models for data acquisition and access. The article examines the set of mechanisms connected with states gaining access unilaterally (without needing foreign states’ assistance) to extraterritorially located data from the perspective of protecting suspects' privacy and family-life rights. In light of the fact that one virtually steps onto foreign ground to gain such access, most states have refrained from regulating it domestically and have officially addressed the issue by means of international co-operation instruments created for situations significantly different from this, yet investigators in circumstances such as a domestic criminal investigation wherein the only connection to the other state lies in an e-mail message sent via a foreign service provider ought to avoid resorting to extremely burdensome mutual legal-assistance instruments. At the same time, sufficient domestic guarantees of fundamental-rights protection should be in place. The author proposes a model for unilaterally accessing extraterritorial data that considers the rights of individuals involved in criminal procedure and, alongside these, state interests in unilaterally accessing and receiving extraterritorially held data.

Ahmed MohanRaj Alenezi

DOI: https://doi.org/10.48550/arXiv.2305.03059

2023-05-03

Cryptography and Security

Abstract:Digital forensics and cloud forensics are increasingly important fields that face a range of challenges. This study aims to assess the general challenges faced in these fields. A literature review was conducted to identify the major challenges in digital and cloud forensics, including data acquisition, data analysis, data preservation, privacy concerns, and legal issues. The challenges were analyzed in detail, considering the reasons why they are challenges, the impact they have on digital and cloud forensics, and any potential solutions. The study concludes that the challenges faced in digital and cloud forensics are significant and varied, and that addressing these challenges is critical for the effective and efficient use of digital and cloud forensics in investigations. This study provides a valuable overview of the current state of digital and cloud forensic challenges and can help guide future research in this important field.

Hoang Pham,Jason Woodworth,Mohsen Amini Salehi

DOI: https://doi.org/10.1002/cpe.5284

2019-04-07

Concurrency and Computation: Practice and Experience

Abstract:Cloud computing has become a potential resource for businesses and individuals to outsource their data to remote but highly accessible servers. However, the potential of cloud services has not been fully realized due to users concerns about data privacy and security. User‐side encryption techniques can be employed to mitigate the security concerns, but once the data is encrypted, no processing (eg, searching) can be performed on the outsourced data. Searchable Encryption (SE) techniques have been widely studied to enable searching on the data while they are encrypted. These techniques enable various types of search on the encrypted data and offer different levels of security. While these techniques enable different search types and vary in details, they share similarities in their components and architectures. In this paper, we provide a comprehensive survey on different secure search techniques, a high‐level architecture for these systems, and an analysis of their performance and security level.