Digital forensics subdomains: The state of the art and future directions

Al-Dhaqm, Arafat and Ikuesan, Richard A. and Kebande, Victor R. and Shukor, Abd Razak and Grispos, George and Choo, Raymond Kim-Kwang and Al-rimy, Bander Ali Saleh and Alsewari, Abdulrahman A. (2021) Digital forensics subdomains: The state of the art and future directions. IEEE Access, 9. 152476 -152502. ISSN 2169-3536. (Published)

Preview

Pdf
Digital forensics subdomains_The state of the art and future directions.pdf
Available under License Creative Commons Attribution.
Download (1MB) | Preview

DOI/Official URL: https://doi.org/10.1109/ACCESS.2021.3124262

Abstract

For reliable and relevant scientific evidence to be admitted in a court of law, it is important to apply digital forensic investigation techniques to corroborate a suspected potential security incident. Mainly, traditional digital forensics techniques have focused on computer desktops and servers. However, recent advances in digital media and platforms have seen an increased need for the application of digital forensic investigation techniques to other subdomains including small and mobile devices, databases, networks, cloud-based platforms, and the Internet of Things (IoT). To assist forensic investigators, conduct investigations within these subdomains, academic researchers have attempted to develop a number of investigative processes. However, many of these processes are domain-specific or describe domain-specific investigative tools. Hence, we hypothesize that the literature is littered with potentially overlapping and contradicting investigative process for conducting investigations within these subdomains. To investigate this hypothesis, a digital forensic model-orientated Systematic Literature Review (SLR) within the above digital forensic subdomains was undertaken. The purpose of the SLR was to identify the different and heterogeneous practices that have emerged within the specific subdomains. A key finding from the SLR is that there is a potential information overload and a high-degree of ambiguity among investigative processes in the above subdomains. The outcome of this study proposes a high-level abstract metamodel called The Digital Forensic Metamodel (DFM), which combines common processes, activities, techniques, and tasks for the above subdomains.

Item Type:	Article
Additional Information:	Indexed by Scopus
Uncontrolled Keywords:	Digital forensics; Database forensics; Mobile forensic; Network forensics; IoT forensics; Digital forensic metamodel
Subjects:	H Social Sciences > HV Social pathology. Social and public welfare Q Science > QA Mathematics > QA76 Computer software
Faculty/Division:	Centre of Excellence: IBM Centre of Excellence Faculty of Computing
Depositing User:	Mr Muhamad Firdaus Janih@Jaini
Date Deposited:	09 Feb 2022 07:57
Last Modified:	09 Feb 2022 07:57
URI:	http://umpir.ump.edu.my/id/eprint/32735
Download Statistic:	View Download Statistics

Actions (login required)

View Item