Home
This Title All WIREs
WIREs RSS Feed
How to cite this WIREs title:
WIREs Forensic Sci

Ontology‐driven perspective of CFRaaS

Full article on Wiley Online Library:   HTML PDF

Can't access this content? Tell your librarian.

Abstract A Cloud Forensic Readiness as a Service (CFRaaS) model allows an environment to preemptively accumulate relevant potential digital evidence (PDE) which may be needed during a post‐event response process. The benefit of applying a CFRaaS model in a cloud environment, is that, it is designed to prevent the modification/tampering of the cloud architectures or the infrastructure during the reactive process, which if it could, may end up having far‐reaching implications. The authors of this article present the reactive process as a very costly exercise when the infrastructure must be reprogrammed every time the process is conducted. This may hamper successful investigation from the forensic experts and law enforcement agencies perspectives. The CFRaaS model, in its current state, has not been presented in a way that can help to classify or visualize the different types of potential evidence in all the cloud deployable models, and this may limit the expectations of what or how the required PDE may be collected. To address this problem, the article presents the CFRaaS from a holistic ontology‐driven perspective, which allows the forensic experts to be able to apply the CFRaaS based on its simplicity of the concepts, relationship or semantics between different form of potential evidence, as well as how the security of a digital environment being investigated could be upheld. The CFRaaS in this context follows a fundamental ontology engineering approach that is based on the classical Resource Description Framework. The proposed ontology‐driven approach to CFRaaS is, therefore, a knowledge‐base that uses layer‐dependencies, which could be an essential toolkit for digital forensic examiners and other stakeholders in cloud‐security. The implementation of this approach could further provide a platform to develop other knowledge base components for cloud forensics and security. This article is categorized under: Digital and Multimedia Science > Cloud Forensics Digital and Multimedia Science > Cyber Threat Intelligence Digital and Multimedia Science > Multimedia Forensics
CFRaaS process flow (Kebande & Venter, 2018). CFRaaS, Cloud Forensic Readiness as a Service
[ Normal View | Magnified View ]
Classification of CFRaaS terminologies disparities. CFRaaS, Cloud Forensic Readiness as a Service
[ Normal View | Magnified View ]
Mapping of the proposed CFRaaS ontology to ISO/IEC 27043 Standard. CFRaaS, Cloud Forensic Readiness as a Service
[ Normal View | Magnified View ]
CFRaaS ontology development lifecycle. CFRaaS, Cloud Forensic Readiness as a Service
[ Normal View | Magnified View ]
Instance and sub‐instance type of the virtualization layer
[ Normal View | Magnified View ]
Instance and sub‐instance type of the provider layer
[ Normal View | Magnified View ]
Layer‐dependencies in CFRaaS. CFRaaS, Cloud Forensic Readiness as a Service
[ Normal View | Magnified View ]

Browse by Topic

Digital and Multimedia Science > Multimedia Forensics
Digital and Multimedia Science > Cyber Threat Intelligence
Digital and Multimedia Science > Cloud Forensics

Access to this WIREs title is FREE for members of registered institutions.

Register Your Institution Now!

The latest WIREs articles in your inbox

Sign Up for Article Alerts