Abstract
The design of a chain-of-custody management system must be based on an architecture that guarantees non-manipulation in court, from the very beginning of the evidence is acquired to putting it on judge hands. Knowing, without doubt, who, when, how and why the involved actors were able to access it. This is a necessary condition, although not sufficient, for the court to decide on the admissibility of real the evidence. This way, the Blockchain technology is an optimal solution for issues where integrity must be guaranteed among untrustworthy parties. However, it is necessary to tackle a possible solution in a holistic way, by considering technologies, actors and industry involved during the process. Therefore, three basic architectural designs with different challenges are proposed in this work. In addition to this, we discuss about the need to promote a nationwide smart contract standardization for the chain-of-custody process. It must be open-source and compatible with current top languages used in the Blockchain landscape. These contracts must be deployed in consortium environments, where reliable independent third parties validate the transactions without knowing their specific content. This is possible thanks to the Zero Knowledge Proof protocols.
Authors would like to acknowledge the support of the I4Labs UNED research group, the CiberGID UNED innovation group with the CiberScratch 2.0 project, the SUMA-CITeL research project for the 2022–2023 period, as well as the E-Madrid-CM Network of Excellence (S2018/TCS-4307). The authors also acknowledge the support of SNOLA, officially recognized Thematic Network of Excellence (RED2018-102725-T) by the Spanish Ministry of Science, Innovation and Universities.
Access this chapter
Tax calculation will be finalised at checkout
Purchases are for personal use only
References
Adam, I., Varol, C.: Intelligence in digital forensics process. In: Proceedings of the 2020 8th International Symposium on Digital Forensics and Security (ISDFS), pp. 1–6 (2020). https://doi.org/10.1109/ISDFS49300.2020.9116442
Al-Khateeb, H., Epiphaniou, G., Daly, H.: Blockchain for Modern Digital Forensics: The Chain-of-Custody as a Distributed Ledger, pp. 149–168. Springer International Publishing (2019). https://doi.org/10.1007/978-3-030-11289-9_7
Alastria, C.: Alastrial (2019). Available at: https://www.alastria.io/. Accessed on 27th April
Anne, V.P.K., Ayyadevara, R.C., Potta, D., Ankem, N.: Storing and securing the digital evidence in the process of digital forensics through blockchain technology. In: Proceedings of the International Conference on Data Science, Machine Learning and Artificial Intelligence, pp. 272-276. DSMLAI ‘21’, Association for Computing Machinery, New York, NY, USA (2021). https://doi.org/10.1145/3484824.3484899
Arroyo, D., Rezola, A., Hernández, L.: Principales problemas de seguridad en los smartcontractsde ethereum. In: XII Jornadas STIC CCN-CERT. CCN-CERT (2019). https://www.youtube.com/watch?v=r3HruAORpz0
ioBUILDERS Blockchain Tech & Ventures: Khipus, deja huella con tu móvil (2018). Available at: https://khipus.io/. Accessed on 27th April
Bonomi, S., Casini, M., Ciccotelli, C.: B-CoC: a blockchain-based chain of custody for evidences management in digital forensics. CoRR abs/1807.10359 (2018). http://arxiv.org/abs/1807.10359
Cohen, M., Garfinkel, S., Schatz, B.: Extending the advanced forensic format to accommodate multiple data sources, logical evidence, arbitrary information and forensic workflow. Digit. Invest. 6, S57–S68 (2009)
Española, U.N.: Information Technologies (IT). Methodology for the digital evidences forensic analysis. Standard, UNE. Normalización Española (2013). https://www.une.org/encuentra-tu-norma/busca-tu-norma/norma?c=N0051414
Giova, G.: Improving chain of custody in forensic investigation of electronic digital systems. Int. J. Comput. Sci. Netw. Secur. 1 (2011)
Grassi, P.A., Garcia, M.E., Fenton, J.L.: NIST special publication 800-63. Digital identity guidelines (2017). Available at: https://pages.nist.gov/800-63-3/. Accessed on 27th April
Li, M., Lal, C., Conti, M., Hu, D.: LEChain: a blockchain-based lawful evidence management scheme for digital forensics. Future Gener. Comput. Syst. 115, 406–420 (2021)
Li, X., Jiang, P., Chen, T., Luo, X., Wen, Q.: A survey on the security of blockchain systems. Future Gener. Comput. Syst. 107, 841–853 (2020)
Lone, A.: Forensic-chain: Ethereum blockchain based digital forensics chain of custody. Sci. Pract. Cyber Secur. J. 1 (2017)
Lone, A.H., Mir, R.N.: Forensic-chain: blockchain based digital forensics chain of custody with PoC in hyperledger composer. Digit. Invest. 28, 44–55 (2019)
Lusetti, M., Salsi, L., Dallatana, A.: A blockchain based solution for the custody of digital files in forensic medicine. Forensic Sci. Int.: Digit. Invest. 35, 301017 (2020)
Manning, A.: Solidity security: comprehensive list of known attack vectors and common anti-patterns (2018). Available at: https://blog.sigmaprime.io/solidity-security.html. (Accessed 27th April)
Stringer-Calvert, D.W.: Digital evidence. Commun. ACM 45(4), 128 (2002). https://doi-org.bibliotecauned.idm.oclc.org/10.1145/505248.505280
Author information
Authors and Affiliations
Corresponding author
Editor information
Editors and Affiliations
Rights and permissions
Copyright information
© 2023 The Author(s), under exclusive license to Springer Nature Switzerland AG
About this paper
Cite this paper
Santamaría, P., Tobarra, L., Pastor-Vargas, R., Robles-Gómez, A. (2023). Designing the Chain of Custody Process for Blockchain-Based Digital Evidences. In: Prieto, J., Benítez Martínez, F.L., Ferretti, S., Arroyo Guardeño, D., Tomás Nevado-Batalla, P. (eds) Blockchain and Applications, 4th International Congress . BLOCKCHAIN 2022. Lecture Notes in Networks and Systems, vol 595. Springer, Cham. https://doi.org/10.1007/978-3-031-21229-1_21
Download citation
DOI: https://doi.org/10.1007/978-3-031-21229-1_21
Published:
Publisher Name: Springer, Cham
Print ISBN: 978-3-031-21228-4
Online ISBN: 978-3-031-21229-1
eBook Packages: Intelligent Technologies and RoboticsIntelligent Technologies and Robotics (R0)