Digital Forensics: Challenges and Opportunities for Future Studies

Digital Forensics: Challenges and Opportunities for Future Studies

Reza Montasari (The University of Huddersfield, Huddersfield, UK), Richard Hill (Department of Computer Science, University of Huddersfield, Huddersfield, UK), Simon Parkinson (University of Huddersfield, Huddersfield, UK), Pekka Peltola (CAR-CSIC, Center of Automation and Robotics, Spanish Research Council, Madrid, Spain), Amin Hosseinian-Far (Faculty of Business & Law, The University of Northampton, Northampton, UK) and Alireza Daneshkhah (Coventry University, Coventry, UK)
Copyright: © 2020 |Pages: 17
DOI: 10.4018/IJOCI.2020040103

Abstract

Considering the ever-growing ubiquity of technology, there is an associated growth in the possibility of digital devices related to a criminal investigation or civil litigation. As the variety of digital devices is increasing, the storage capacity of each is also rising exponentially. Due to the varied and large volumes of data produced, law enforcement agencies (LEAs) worldwide are facing a significant backlog of cases. This has culminated in significant delays in dealing with cases that urgently require digital forensic investigations (DFIs). It is of paramount importance that new research approaches be adopted to address such challenges. This article evaluates the existing set of circumstances surrounding the field of digital forensics (DF). The article provides two important contributions to the field of DF; it identifies and analyses the most important mid- and long-term challenges that need to be considered by LEAs. It also proposes important specific future research directions, the undertaking of which can assist LEAs in adopting a new approach to addressing these challenges.
Article Preview
Top

1. Introduction

Over the past few years, technology has become prevalent in many aspects of day to day life. we have witnessed rapid advancements in Information and Communication Technology (ICT) features. Technologies such as communication networks, mobile devices, Internet of Things (IoT) solutions, Cloud-Based Services (CBSs), Cyber-Physical Systems (CPSs) have brought many benefits to technologically advanced societies (Montasari & Hill, 2019; Montasari, 2017b; Caviglione et al., 2017; Pichan et al., 2015). As a result, commercial transactions and governmental services have rapidly grown, revolutionising the lifestyles of many individuals living in these societies. While technological advancements undoubtedly present many advantages, at the same time they pose new cybersecurity threats (Jahankhani et al., 2014), which have significant impacts on a variety of domains such as government systems, enterprises, ecommerce, online banking, and critical infrastructure (Hosseinian-Far et al., 2017). According to an official survey conducted by The Office for National Statistics (BBC, 2017), there were an estimated 3.6 million cases of fraud and two million computer misuse offences in a year.

Some of the challenges resulting from such technological advancements include, but are not limited to: high volume of data, heterogeneous nature of digital devices, advanced hardware and software technologies, anti-forensic techniques, video and rich media, whole drive encryption, wireless, virtualisation, live response, distributed evidence, borderless cybercrime and dark web tools, lack of standardised tools and methods, usability and visualisation. The deployment of IP anonymity and the ease with which individuals can sign up for a cloud service with minimum information can also pose significant challenges in relation to identifying a perpetrator (Caviglione et al., 2017; Lillis et al., 2016; Chen et al., 2012; Ruan et al., 2011; Cameron, 2018). As a result, the number of cases that necessitate DFIs are on the rise, culminating in the creation of a backlog of cases for LEAs worldwide (Montasari, 2016a; Montasari, 2016c). Without a clear plan to facilitate research efforts that extend one another, forensic research will lag behind, tools will become outdated, and law enforcements’ products will be incapable of relying on the results of DF analysis (Garfinkel, 2010; Montasari et al., 2019).

In recent years the area of digital forensics has attracted interest from researchers, with notable survey and position papers being published. One recent position paper (Watson & Dehghantanha, 2016) states the high-level challenges associated with preforming digital forensics on IoT devices. The authors focus their attention on the location and inability to extract meaningful data from IoT devices. However, they provide little information on what the future direction of this field might be, which could for example, include IoT producers accommodating forensic capabilities from the design stage of the technology. In another study, the authors focus their attention on suggesting future challenges within Smart Infrastructure, which includes IoT devices (Baig et al., 2017). IoT forensic can be related to data, service and/or architecture fusion. Sometimes fusion with other data and users is common. Innovative solutions/recommendations are required to resolve some of the known existing issues (Kuo et al., 2018). The paper provides a comprehensive speculation as to the threats facing Smart Infrastructure and how digital forensics might be performed.

Complete Article List

Search this Journal:
Reset
Open Access Articles
Volume 11: 4 Issues (2021): Forthcoming, Available for Pre-Order
Volume 10: 4 Issues (2020): 3 Released, 1 Forthcoming
Volume 9: 4 Issues (2019)
Volume 8: 4 Issues (2018)
Volume 7: 4 Issues (2017)
Volume 6: 4 Issues (2016)
Volume 5: 4 Issues (2015)
Volume 4: 4 Issues (2014)
Volume 3: 4 Issues (2012)
Volume 2: 4 Issues (2011)
Volume 1: 4 Issues (2010)
View Complete Journal Contents Listing