Abstract
The explosive growth of the Internet of Things offers numerous innovative applications such as smart homes, e-healthcare, smart surveillance, smart industries, smart cities and smart grids. However, this has significantly increased the threat of attacks that exploit the vulnerable surfaces of Internet of Things devices. It is, therefore, immensely important to develop security solutions for protecting vulnerable devices and digital forensic models for recovering evidence of suspected attacks. Digital forensic solutions typically target specific application domains such as smart wearables, smart surveillance systems and smart homes. What is needed is a holistic approach that covers the diverse application domains, eliminating the overhead of employing ad hoc models.
This chapter presents a holistic forensic model for the Internet of Things that is based on the ISO/IEC 27043 international standard. The model has three phases – forensic readiness (proactive), forensic initialization (incident) and forensic investigation (reactive) – that cover the entire lifecycle of Internet of Things forensics. The holistic model, which provides a customizable and configurable environment that supports diverse Internet of Things applications, can be enhanced to create a comprehensive framework.
Chapter PDF
Similar content being viewed by others
References
F. Alaba, M. Othman, I. Hashem and F. Alotaibi, Internet of Things security: A survey, Journal of Network and Computer Applications, vol. 88, pp. 10–28, 2017.
M. Ali, J. Nelson, R. Shea and M. Freedman, Blockstack: A global naming and storage system secured by blockchains, Proceedings of the USENIX Annual Technical Conference, pp. 181–194, 2016.
E. Al-Masri, Y. Bai and J. Li, A fog-based digital forensics investigation framework for IoT systems, Proceedings of the Third IEEE International Conference on Smart Cloud, pp. 196–201, 2018.
V. Asati, E. Pilli, S. Vipparthi, S. Garg, S. Singhal and S. Pancholi, RMDD: Cross-layer attack in Internet of Things, Proceedings of the International Conference on Advances in Computing, Communications and Informatics, pp. 172–178, 2018.
L. Babun, A. Sikder, A. Acar and A. Uluagac, IoTDots: A Digital Forensics Framework for Smart Environments, arXiv:1809.00745 (arxiv.org/abs/1809.00745), 2018.
M. Banerjee, J. Lee and K. Choo, A blockchain future for Internet of Things security: A position paper, Digital Communications and Networks, vol. 4(3), pp. 149–160, 2018.
M. Chernyshev, S. Zeadally, Z. Baig and A. Woodward, Internet of Things forensics: The need, process models and open issues, IT Professional, vol. 20(3), pp. 40–49, 2018.
M. Conti, A. Dehghantanha, K. Franke and S. Watson, Internet of Things security and forensics: Challenges and opportunities, Future Generation Computer Systems, vol. 78(2), pp. 544–546, 2018.
K. Dolui and S. Datta, Comparison of edge computing implementations: Fog computing, cloudlet and mobile edge computing, Proceedings of the Global Internet of Things Summit, 2017.
T. Fernandez-Carames and P. Fraga-Lamas, A review of the use of blockchain for the Internet of Things, IEEE Access, vol. 6, pp. 32979–33001, 2018.
M. Harbawi and A. Varol, An improved digital evidence acquisition model for Internet of Things forensics I: A theoretical framework, Proceedings of the Fifth International Symposium on Digital Forensics and Security, 2017.
R. Hegarty, D. Lamb and A. Attwood, Digital evidence challenges in the Internet of Things, Proceedings of the Ninth International Workshop on Digital Forensics and Incident Analysis, pp. 163–172, 2014.
International Organization for Standardization and International Telecommunication Union, ISO/IEC 27043:2015: Information Technology – Security Techniques – Incident Investigation Principles and Processes, Geneva, Switzerland, 2015.
International Telecommunication Union, Recommendation ITU-T Y.2060: Overview of the Internet of Things, Geneva, Switzerland, 2012.
V. Kebande and I. Ray, A generic digital forensic investigation framework for Internet of Things (IoT), Proceedings of the Fourth IEEE International Conference on Future Internet of Things and Cloud, pp. 356–362, 2016.
C. Meffert, D. Clark, I. Baggili and F. Breitinger, Forensic state acquisition from Internet of Things (FSAIoT): A general framework and practical approach for IoT forensics through IoT device state acquisition, Proceedings of the Twelfth International Conference on Availability, Reliability and Security, article no. 65, 2017.
R. Minerva, A. Biru and D. Rotondi, Towards a Definition of the Internet of Things (IoT), Revision 1, IEEE Internet Initiative, Piscataway, New Jersey (http://www.iot.ieee.org/images/files/pdf/IEEE_IoT_Towards_Definition_Internet_of_Things_Revision1_27MAY15.pdf)
E. Oriwoh and P. Sant, The Forensics Edge Management System: A concept and design, Proceedings of the Tenth IEEE International Conference on Ubiquitous Intelligence and Computing and the Tenth IEEE International Conference on Autonomic and Trusted Computing, pp. 544–550, 2013.
S. Perumal, N. Norwawi and V. Raman, Internet of Things (IoT) digital forensic investigation model: Top-down forensic approach methodology, Proceedings of the Fifth International Conference on Digital Information Processing and Communications, pp. 19–23, 2015.
C. Shin, P. Chandok, R. Liu, S. Nielson and T. Leschke, Potential forensic analysis of IoT data: An overview of the state-of-the-art and future possibilities, Proceedings of the IEEE International Conference on the Internet of Things, IEEE Green Computing and Communications, IEEE Cyber, Physical and Social Computing and IEEE Smart Data, pp. 705–710, 2017.
S. Watson and A. Dehghantanha, Digital forensics: The missing piece of the Internet of Things promise, Computer Fraud and Security, vol. 2016(6), pp. 5–8, 2016.
K. Yeow, A. Gani, R. Ahmad, J. Rodrigues and K. Ko, Decentralized consensus for edge-centric Internet of Things: A review, taxonomy and research issues, IEEE Access, vol. 6, pp. 1513–1524, 2017.
S. Zawoad and R. Hasan, FAIoT: Towards building a forensics aware ecosystem for the Internet of Things, Proceedings of the IEEE International Conference on Services Computing, pp. 279–284, 2015.
T. Zia, P. Liu and W. Han, Application-specific digital forensics investigative model in Internet of Things (IoT), Proceedings of the Twelfth International Conference on Availability, Reliability and Security, article no. 55, 2017.
Author information
Authors and Affiliations
Corresponding author
Editor information
Editors and Affiliations
Rights and permissions
Copyright information
© 2019 IFIP International Federation for Information Processing
About this paper
Cite this paper
Sadineni, L., Pilli, E., Battula, R.B. (2019). A Holistic Forensic Model for the Internet of Things. In: Peterson, G., Shenoi, S. (eds) Advances in Digital Forensics XV. DigitalForensics 2019. IFIP Advances in Information and Communication Technology, vol 569. Springer, Cham. https://doi.org/10.1007/978-3-030-28752-8_1
Download citation
DOI: https://doi.org/10.1007/978-3-030-28752-8_1
Published:
Publisher Name: Springer, Cham
Print ISBN: 978-3-030-28751-1
Online ISBN: 978-3-030-28752-8
eBook Packages: Computer ScienceComputer Science (R0)