TY - GEN
T1 - Distributed cloud forensic system with decentralization and multi-participation
AU - Liu, Xuanyu
AU - Fu, Xiao
AU - Luo, Bin
AU - Du, Xiaojiang
N1 - Publisher Copyright:
© ICST Institute for Computer Sciences, Social Informatics and Telecommunications Engineering 2018.
PY - 2018
Y1 - 2018
N2 - A considerable number of cloud forensic systems and tools have been proposed in recent years. Trust issue of digital evidence, a significant security topic, is indispensable for cloud forensics systems. In this paper, we propose a different cloud forensic system—Distributed Cloud Forensic System with Decentralization and Multi-participation (DCFS). The DCFS is set in an untrusted and multi-tenancy cloud environment, and it is assumed that cloud users, cloud employees, or forensic investigators can be dishonest. The DCFS, which is different from existing centralized cloud forensic systems, is a distributed and decentralized system that does not rely on any single node or any third party to obtain credible evidence from the cloud. Trust is divided into all participants in the DCFS, and these participants supervise each other. A distributed public ledger is maintained in the DCFS, and this ledger records all the proofs of forensic evidence along with other useful information. This ledger can enhance the credibility and integrity of forensic evidence to some degree and complete the chain of custody in forensic investigation. The forensic evidence, which are provided by the cloud employees, presented to the court of law using the DCFS will be more trustful.
AB - A considerable number of cloud forensic systems and tools have been proposed in recent years. Trust issue of digital evidence, a significant security topic, is indispensable for cloud forensics systems. In this paper, we propose a different cloud forensic system—Distributed Cloud Forensic System with Decentralization and Multi-participation (DCFS). The DCFS is set in an untrusted and multi-tenancy cloud environment, and it is assumed that cloud users, cloud employees, or forensic investigators can be dishonest. The DCFS, which is different from existing centralized cloud forensic systems, is a distributed and decentralized system that does not rely on any single node or any third party to obtain credible evidence from the cloud. Trust is divided into all participants in the DCFS, and these participants supervise each other. A distributed public ledger is maintained in the DCFS, and this ledger records all the proofs of forensic evidence along with other useful information. This ledger can enhance the credibility and integrity of forensic evidence to some degree and complete the chain of custody in forensic investigation. The forensic evidence, which are provided by the cloud employees, presented to the court of law using the DCFS will be more trustful.
KW - Byzantine faults
KW - Cloud forensics
KW - Data provenance
KW - Decentralization
KW - Distributed systems
KW - Multi-participation
UR - http://www.scopus.com/inward/record.url?scp=85048043122&partnerID=8YFLogxK
UR - http://www.scopus.com/inward/citedby.url?scp=85048043122&partnerID=8YFLogxK
U2 - 10.1007/978-3-319-90802-1_16
DO - 10.1007/978-3-319-90802-1_16
M3 - Conference contribution
AN - SCOPUS:85048043122
SN - 9783319908014
T3 - Lecture Notes of the Institute for Computer Sciences, Social-Informatics and Telecommunications Engineering, LNICST
SP - 181
EP - 196
BT - Wireless Internet - 10th International Conference, WiCON 2017, Proceedings
A2 - Mao, Shiwen
A2 - Li, Cheng
T2 - 10th International Conference on Wireless Internet, WiCON 2017
Y2 - 16 December 2017 through 17 December 2017
ER -