Abstract
The study presented in this paper presents the need of an integrated intelligent IoT (Internet of Things) forensic framework. As there is increasing penetration of IoT into everyday life of a common man through smart home, smart city, smart industries etc. Thus, continuous escalation of numbers of IoT devices is generating enormous amount of very sensitive and personal data in various formats. Data, being the most important repository for any business, makes such environment susceptible to more attacks than ever to drain, steal or modify sensitive data. Hence IoT systems become prone to more cyber-attacks than other digital resources spanning a large range of attack vectors. Three important artifacts generated in any IoT environment are: memory, storage, ports used for connectivity, which are used as primary resources of data for digital forensic analysis in this study. These components generate network logs, system logs, registry entries which can be used to find out malicious activities done on the device or through the device. Due to its diversity in terms of manufacturing of IoT devices and architecture of IoT systems, the forensic analysis of artifacts collected from various resources spread across all the layers of IoT ecosystem imposes lot of challenges before investigating team. One such challenge being the need of a unified platform for collection of all artifacts from diverse devices at one place. In this work a study of heterogeneous nature of data obtained from various devices w.r.t to ecosystem of a specific IoT device has been carried out, by analysing the types of data that may be generated by an IoT device and may be forensically useful. A conceptual framework has been proposed to carryout forensic data acquisition and analysis using a unified repository of data collected from an IoT Ecosystem.
Similar content being viewed by others
References
Jara AJ, Ladid L, Gómez-Skarmeta AF (2013) The Internet of Everything through IPv6: an analysis of challenges, solutions and opportunities. J Wirel Mob Netw Ubiquitous Comput Depend Appl 4(3):97–118
Langley DJ, van Doorn J, Ng IC, Stieglitz S, Lazovik A, Boonstra A (2021) The Internet of Everything: smart things and their impact on business models. J Bus Res 122:853–863
Soumyalatha SGH (2016) Study of IoT: understanding IoT architecture, applications, issues and challenges. In: 1st international conference on innovations in computing and net-working (ICICN16), CSE, RRCE. International Journal of Advanced Networking and Applications, vol 478
Ademu IO, Imafidon CO, Preston DS (2011) A new approach of digital forensic model for digital forensic investigation. Int J Adv Comput Sci Appl 2(12):175–178
Atlam HF, Hemdan EED, Alenezi A, Alassafi MO, Wills GB (2020) Internet of Things forensics: a review. Int Things 11:100220
Alenezi A, Atlam H, Alsagri R, Alassafi M, Wills G (2019) IoT forensics: a state-of-the-art review, challenges and future directions. In: Proceedings of the 4th international conference on complexity, future information systems and risk - COMPLEXIS, pp 106–115. https://doi.org/10.5220/0007905401060115
Surange G, Khatri P (2021) IoT forensics: a review on current trends, approaches and foreseen challenges. In: 2021 8th international conference on computing for sustainable global development (INDIACom). IEEE, pp 909–913
Derhamy H, Eliasson J, Delsing J, Priller P (2015) A survey of commercial frameworks for the Internet of Things. In: 2015 IEEE 20th conference on emerging technologies and factory automation (ETFA). IEEE, pp 1–8
Mocnej J, Seah WK, Pekar A, Zolotova I (2018) Decentralised IoT architecture for efficient resources utilisation. IFAC-PapersOnLine 51(6):168–173
Suganuma T, Oide T, Kitagami S, Sugawara K, Shiratori N (2018) Multiagent-based flexible edge computing architecture for IoT. IEEE Netw 32(1):16–23
Arora U, Singh N (2021) IoT application modules placement in heterogeneous fog–cloud infrastructure. Int J Inf Technol 13(5):1975–1982
Lutta P, Sedky M, Hassan M, Jayawickrama U, Bastaki BB (2021) The complexity of Internet of Things forensics: a state-of-the-art review. Forensic Sci Int Digit Investig. https://doi.org/10.1016/j.fsidi.2021.301210
Yaqoob I, Hashem IAT, Ahmed A, Kazmi SA, Hong CS (2019) Internet of Things forensics: recent advances, taxonomy, requirements, and open challenges. Futur Gener Comput Syst 92:265–275. https://doi.org/10.1016/j.future.2018.09.058
Stoyanova M, Nikoloudakis Y, Panagiotakis S, Pallis E, Markakis EK (2020) A survey on the Internet of Things (IoT) forensics: challenges, approaches, and open issues. IEEE Commun Surv Tutor 22(2):1191–1221. https://doi.org/10.1109/COMST.2019.2962586
Hambouz A, Shaheen Y, Ababneh M (2021) An Internet of Things (IoT) forensics model using third-party logs-vault. In: International conference on data science, e-learning and information systems 2021, pp 143–146
Castelo Gómez JM, Carrillo Mondéjar J, Roldán Gómez J, Martínez Martínez JL (2021) A context-centered methodology for IoT forensic investigations. Int J Inf Secur 20(5):647–673. https://doi.org/10.1007/s10207-020-00523-6
Gómez JMC, Mondéjar JC, Gómez JR, Martínez JM (2021) Developing an IoT forensic methodology. A concept proposal. Forensic Sci Int Digit Investig 36:301114. https://doi.org/10.1016/j.fsidi.2021.301114
Parise G, Mohla D, Parise L, Lombardi M (2021) IoT innovations and forensic engineering in the digital age. IEEE Trans Ind Appl 57(3):2098–2103. https://doi.org/10.1109/TIA.2021.3057344
Kebande VR, Ray I (2016) A generic digital forensic investigation framework for Internet of Things (IoT). In: 2016 IEEE 4th international conference on future Internet of Things and Cloud (FiCloud). IEEE, pp 356–362. https://doi.org/10.1109/FiCloud.2016.57
Al-Masri E, Bai Y, Li J (2018) A fog-based digital forensics investigation framework for IoT systems. In: 2018 IEEE international conference on smart cloud (SmartCloud). IEEE, pp 196–201. https://doi.org/10.1109/SmartCloud.2018.00040
Lan D, Liu Y, Taherkordi A, Eliassen F, Delbruel S, Lei L (2021) A federated fog-cloud framework for data processing and orchestration: a case study in smart cities. In: Proceedings of the 36th annual ACM symposium on applied computing, pp 729–736. https://doi.org/10.1145/3412841.3444962
Hegarty R, Taylor M (2021) Digital evidence in fog computing systems. Comput Law Secur Rev 41:105576. https://doi.org/10.1016/j.clsr.2021.105576
Köckemann U, Alirezaie M, Renoux J, Tsiftes N, Ahmed MU, Morberg D, Loutfi A et al (2020) Open-source data collection and data sets for activity recognition in smart homes. Sensors 20(3):879. https://doi.org/10.3390/s20030879
Kim S, Park M, Lee S, Kim J (2020) Smart home forensics—data analysis of IoT devices. Electronics 9(8):1215. https://doi.org/10.3390/electronics9081215
Findlay B (2021) A forensically-sound methodology for advanced data acquisition from embedded devices at-scene. Forensic Sci Int Rep 3:100188. https://doi.org/10.1016/j.fsir.2021.100188
Thakar AA, Kumar K, Patel B (2021) Next generation digital forensic investigation model (NGDFIM)-enhanced, time reducing and comprehensive framework. In: Journal of physics: conference series, vol 1767, no 1. IOP Publishing, pp 012054. https://doi.org/10.1088/1742-6596/1767/1/012054
Nieto A, Rios R, Lopez J (2017) A methodology for privacy-aware IoT-forensics. In: 2017 IEEE Trustcom/BigDataSE/ICESS. IEEE, pp 626–633. https://doi.org/10.1109/Trustcom/BigDataSE/ICESS.2017.293
Kebande VR, Mudau PP, Ikuesan RA, Venter HS, Choo KKR (2020) Holistic digital forensic readiness framework for IoT-enabled organizations. Forensic Sci Int Rep 2:100117. https://doi.org/10.1016/j.fsir.2020.100117
Zulkipli NHN, Wills GB (2021) An exploratory study on readiness framework in IoT forensics. Procedia Comput Sci 179:966–973. https://doi.org/10.1016/j.procs.2021.01.086
Kumar G, Saha R, Lal C, Conti M (2021) Internet-of-Forensic (IoF): a blockchain based digital forensics framework for IoT applications. Futur Gener Comput Syst 120:13–25. https://doi.org/10.1016/j.future.2021.02.016
Mahrous WA, Farouk M, Darwish SM (2021) An enhanced blockchain-based IoT digital forensics architecture using fuzzy hash. IEEE Access 9:151327–151336. https://doi.org/10.1109/ACCESS.2021.3126715
Kumar G, Saha R, Lal CM (2021) Internet-of-Forensic (IoF): a blockchain based digital forensics framework for IoT applications. Futur Gener Comput Syst 120:13–25. https://doi.org/10.1016/j.future.2021.02.016
Mazhar MS, Saleem Y, Almogren A, Arshad J, Jaffery MH, Rehman AU, Hamam H et al (2022) Forensic analysis on Internet of Things (IoT) device using machine-to-machine (M2M) framework. Electronics 11(7):1126. https://doi.org/10.3390/electronics11071126
Hassan MA, Samara G, Fadda MA (2022) IoT forensic frameworks (DFIF, IoTDOTS, FSAIoT): a comprehensive study. arXiv preprint http://arxiv.org/abs/2203.15705https://doi.org/10.15849/IJASCA.220328.06
Janarthanan T, Bagheri M, Zargari S (2021) IoT forensics: an overview of the current issues and challenges. Digital Forensic Investigation of Internet of Things (IoT) Devices, 223–254. https://doi.org/10.1007/978-3-030-60425-7_10
Author information
Authors and Affiliations
Corresponding author
Ethics declarations
Conflict of interest
The authors declare that they have no known competing financial interests or personal relationships that could have appeared to influence the work reported in this paper.
Rights and permissions
About this article
Cite this article
Surange, G., Khatri, P. Integrated intelligent IOT forensic framework for data acquisition through open-source tools. Int. j. inf. tecnol. 14, 3011–3018 (2022). https://doi.org/10.1007/s41870-022-01025-5
Received:
Accepted:
Published:
Issue Date:
DOI: https://doi.org/10.1007/s41870-022-01025-5