TY - JOUR
T1 - Internet of things devices
T2 - digital forensic process and data reduction
AU - Montasari, Reza
AU - Hill, Richard
AU - Montaseri, Farshad
AU - Jahankhani, Hamid
AU - Hosseinian-Far, Amin
PY - 2020/10/1
Y1 - 2020/10/1
N2 - The rapid increase in the pervasiveness of digital devices, combined with their heterogeneous nature, has culminated in increasing volumes of diverse data, aka big data, that can become subject to criminal or civil investigations. This growth in big digital forensic data (DFD) has forced digital forensic practitioners (DFPs) to consider seizing a wider range of devices and acquiring larger volumes of data that can be pertinent to the case being investigated. This, in turn, has created an immense backlog of cases for law enforcement agencies worldwide. The method of data reduction by targeted imaging, combined with a robust process model, however, can assist with speeding up the processes of data acquisition and data analysis in IoT device forensic investigations. To this end, we propose an IoT Forensic Investigation Process Model, IoT-FIPM, that can facilitate not only the reduction of the evidentiary IoT data but also a timely acquisition and analysis of this data.
AB - The rapid increase in the pervasiveness of digital devices, combined with their heterogeneous nature, has culminated in increasing volumes of diverse data, aka big data, that can become subject to criminal or civil investigations. This growth in big digital forensic data (DFD) has forced digital forensic practitioners (DFPs) to consider seizing a wider range of devices and acquiring larger volumes of data that can be pertinent to the case being investigated. This, in turn, has created an immense backlog of cases for law enforcement agencies worldwide. The method of data reduction by targeted imaging, combined with a robust process model, however, can assist with speeding up the processes of data acquisition and data analysis in IoT device forensic investigations. To this end, we propose an IoT Forensic Investigation Process Model, IoT-FIPM, that can facilitate not only the reduction of the evidentiary IoT data but also a timely acquisition and analysis of this data.
KW - IoT Forensics
KW - Digitial forensics
KW - Data acquistion
KW - Big data
KW - Process model
KW - Digital investigations
KW - Computer forensics
KW - Formal process
UR - http://www.scopus.com/inward/record.url?scp=85094904192&partnerID=8YFLogxK
U2 - 10.1504/IJESDF.2020.110676
DO - 10.1504/IJESDF.2020.110676
M3 - Article
VL - 12
SP - 424
EP - 436
JO - International Journal of Electronic Security and Digital Forensics
JF - International Journal of Electronic Security and Digital Forensics
SN - 1751-911X
IS - 4
ER -