Paper Info
Title
Towards the Forensic Identification and Investigation of Cloud Hosted Servers through Non-Invasive Wiretaps
Abstract
When conducting modern cybercrime investigations, evidence has often to be gathered from computer systems located at cloud-based data centres of hosting providers. In cases where the investigation cannot rely on the cooperation of the hosting provider, or where documentation is not available, investigators can often find the identification of which distinct server among many is of interest difficult and extremely time consuming. To address the problem of identifying these servers, in this paper a new approach to rapidly and reliably identify these cloud hosting computer systems is presented. In the outlined approach, a handheld device composed of an embedded computer combined with a method of undetectable interception of Ethernet based communications is presented. This device is tested and evaluated, and a discussion is provided on its usefulness in identifying of server of interest to an investigation.
Year
DOI
Venue
2015
10.1109/ARES.2015.77
2015 10th International Conference on Availability, Reliability and Security
Keywords
Field
DocType
forensic identification,forensic investigation,cloud hosted servers,noninvasive wiretaps,cybercrime investigations,evidence,cloud-based data centres,hosting providers,cloud hosting computer systems,handheld device,embedded computer,Ethernet based communications,server identification
Digital forensics,Computer science,Computer security,Server,Forensic identification,Cybercrime,Ethernet,Mobile device,Documentation,Cloud computing,Distributed computing
Journal
Volume
Citations 
PageRank 
abs/1510.00664
2
0.53
References 
Authors
2
4
Name
Order
Citations
PageRank
Hessel Schut120.53
Mark Scanlon22310.74
Jason Farina3344.58
Nhien-An Le-Khac422449.63