Digital forensics subdomains: the state of the art and future directions
For reliable digital evidence to be admitted in a court of law, it is important to apply scientifically proven digital forensic investigation techniques to corroborate a suspected security incident. Mainly, traditional digital forensics techniques focus on computer desktops and servers. However, rec...
Saved in:
Main Authors: | , , , , , , , |
---|---|
Format: | Article |
Language: | English |
Published: |
Institute of Electrical and Electronics Engineers Inc.
2021
|
Subjects: | |
Online Access: | http://eprints.utm.my/id/eprint/94902/1/ArafatAlDhaqm2021_DigitalForensicsSubdomainstheState.pdf http://eprints.utm.my/id/eprint/94902/ http://dx.doi.org/10.1109/ACCESS.2021.3124262 |
Tags: |
Add Tag
No Tags, Be the first to tag this record!
|
id |
my.utm.94902 |
---|---|
record_format |
eprints |
spelling |
my.utm.949022022-04-29T22:32:33Z http://eprints.utm.my/id/eprint/94902/ Digital forensics subdomains: the state of the art and future directions Al-Dhaqm, Arafat Ikuesan, Richard Adeyemi Kebande, Victor R. Abd. Razak, Shukor Grispos, George Choo, Raymond Kim Kwang Al-Rimy, Bander Ali Saleh A. Alsewari, Abdulrahman QA75 Electronic computers. Computer science For reliable digital evidence to be admitted in a court of law, it is important to apply scientifically proven digital forensic investigation techniques to corroborate a suspected security incident. Mainly, traditional digital forensics techniques focus on computer desktops and servers. However, recent advances in digital media and platforms have seen an increased need for the application of digital forensic investigation techniques to other subdomains. This includes mobile devices, databases, networks, cloud-based platforms, and the Internet of Things (IoT) at large. To assist forensic investigators to conduct investigations within these subdomains, academic researchers have attempted to develop several investigative processes. However, many of these processes are domain-specific or describe domain-specific investigative tools. Hence, in this paper, we hypothesize that the literature is saturated with ambiguities. To further synthesize this hypothesis, a digital forensic model-orientated Systematic Literature Review (SLR) within the digital forensic subdomains has been undertaken. The purpose of this SLR is to identify the different and heterogeneous practices that have emerged within the specific digital forensics subdomains. A key finding from this review is that there are process redundancies and a high degree of ambiguity among investigative processes in the various subdomains. As a way forward, this study proposes a high-level abstract metamodel, which combines the common investigation processes, activities, techniques, and tasks for digital forensics subdomains. Using the proposed solution, an investigator can effectively organize the knowledge process for digital investigation. Institute of Electrical and Electronics Engineers Inc. 2021-11 Article PeerReviewed application/pdf en http://eprints.utm.my/id/eprint/94902/1/ArafatAlDhaqm2021_DigitalForensicsSubdomainstheState.pdf Al-Dhaqm, Arafat and Ikuesan, Richard Adeyemi and Kebande, Victor R. and Abd. Razak, Shukor and Grispos, George and Choo, Raymond Kim Kwang and Al-Rimy, Bander Ali Saleh and A. Alsewari, Abdulrahman (2021) Digital forensics subdomains: the state of the art and future directions. IEEE Access, 9 . pp. 152476-152502. ISSN 21693536 http://dx.doi.org/10.1109/ACCESS.2021.3124262 DOI:10.1109/ACCESS.2021.3124262 |
institution |
Universiti Teknologi Malaysia |
building |
UTM Library |
collection |
Institutional Repository |
continent |
Asia |
country |
Malaysia |
content_provider |
Universiti Teknologi Malaysia |
content_source |
UTM Institutional Repository |
url_provider |
http://eprints.utm.my/ |
language |
English |
topic |
QA75 Electronic computers. Computer science |
spellingShingle |
QA75 Electronic computers. Computer science Al-Dhaqm, Arafat Ikuesan, Richard Adeyemi Kebande, Victor R. Abd. Razak, Shukor Grispos, George Choo, Raymond Kim Kwang Al-Rimy, Bander Ali Saleh A. Alsewari, Abdulrahman Digital forensics subdomains: the state of the art and future directions |
description |
For reliable digital evidence to be admitted in a court of law, it is important to apply scientifically proven digital forensic investigation techniques to corroborate a suspected security incident. Mainly, traditional digital forensics techniques focus on computer desktops and servers. However, recent advances in digital media and platforms have seen an increased need for the application of digital forensic investigation techniques to other subdomains. This includes mobile devices, databases, networks, cloud-based platforms, and the Internet of Things (IoT) at large. To assist forensic investigators to conduct investigations within these subdomains, academic researchers have attempted to develop several investigative processes. However, many of these processes are domain-specific or describe domain-specific investigative tools. Hence, in this paper, we hypothesize that the literature is saturated with ambiguities. To further synthesize this hypothesis, a digital forensic model-orientated Systematic Literature Review (SLR) within the digital forensic subdomains has been undertaken. The purpose of this SLR is to identify the different and heterogeneous practices that have emerged within the specific digital forensics subdomains. A key finding from this review is that there are process redundancies and a high degree of ambiguity among investigative processes in the various subdomains. As a way forward, this study proposes a high-level abstract metamodel, which combines the common investigation processes, activities, techniques, and tasks for digital forensics subdomains. Using the proposed solution, an investigator can effectively organize the knowledge process for digital investigation. |
format |
Article |
author |
Al-Dhaqm, Arafat Ikuesan, Richard Adeyemi Kebande, Victor R. Abd. Razak, Shukor Grispos, George Choo, Raymond Kim Kwang Al-Rimy, Bander Ali Saleh A. Alsewari, Abdulrahman |
author_facet |
Al-Dhaqm, Arafat Ikuesan, Richard Adeyemi Kebande, Victor R. Abd. Razak, Shukor Grispos, George Choo, Raymond Kim Kwang Al-Rimy, Bander Ali Saleh A. Alsewari, Abdulrahman |
author_sort |
Al-Dhaqm, Arafat |
title |
Digital forensics subdomains: the state of the art and future directions |
title_short |
Digital forensics subdomains: the state of the art and future directions |
title_full |
Digital forensics subdomains: the state of the art and future directions |
title_fullStr |
Digital forensics subdomains: the state of the art and future directions |
title_full_unstemmed |
Digital forensics subdomains: the state of the art and future directions |
title_sort |
digital forensics subdomains: the state of the art and future directions |
publisher |
Institute of Electrical and Electronics Engineers Inc. |
publishDate |
2021 |
url |
http://eprints.utm.my/id/eprint/94902/1/ArafatAlDhaqm2021_DigitalForensicsSubdomainstheState.pdf http://eprints.utm.my/id/eprint/94902/ http://dx.doi.org/10.1109/ACCESS.2021.3124262 |
_version_ |
1732945408070516736 |
score |
13.160551 |