Professional Documents
Culture Documents
06866510-2
06866510-2
Environment
Abstract— Cloud computing is changing the way we use overview of mobile cloud forensics. In section III, we present
mobile application by offering a powerful, scalable and on- challenges faced by investigator when dealing with mobile
demand computational resources to mobile users. However, this cloud infrastructure. In section IV, we conduct a comparative
new paradigm is a challenging issue for forensic investigators study among some proposals for mobile cloud forensics.
since it combines two different environments. The adoption of Finally, section V concludes this paper and explores the future
Mobile Cloud computing solutions is increasing rapidly, so it is works.
necessary for digital investigation applications and procedure to
be adapted to this new environment. This paper provides an II. MOBILE CLOUD FORENSICS
overview of mobile cloud forensics including challenging issues
and some existing proposals in order to overcome these Mobile Cloud computing inherent from the Cloud
challenges. computing advantages and help mobile devices to overcome
problems faced by traditional mobile applications; especially
Keywords—Mobile Cloud computing, digital forensics, mobile in term of data storage and processing capabilities. Cloud is
cloud forensics. then considered to be a promising solution for mobile
computing by improving data storage capacity and processing
I. INTRODUCTION power, improving reliability, extending battery lifetime,
Mobile Computing becomes a powerful trend in the providing dynamic provisioning and scalability and ease of
development of IT technology; latest generation of mobile integration [2]. As application execution is partitioned
communication networks offers to the user a rich experience between the terminal and the cloud server, mobile cloud
of mobile Internet and applications. However, the variety of forensics should take on consideration these two different
environments. Consequently, investigations should be made in
mobile devices and their limited resources is hampering
two levels: mobile level and cloud level.
some sophisticated applications that require large processing
and storage capabilities. The cloud extends the performance of Mobile phone forensics is the science of recovering digital
mobile terminals and enable applications previously not evidence from a mobile phone under forensically sound
feasible to find their way to mobile users. This is called conditions using accepted methods [3]. Mobile data evidence
"Mobile Cloud Computing" which is increasing rapidly; cloud can be extracted from the user mobile device; Subscriber
computing based mobile software and application are expected Identity Module (SIM) card, internal memory, external
to rise by 88% per year between 2009 and 2014[1]. memory card. Data collected is related to call or SMS history,
Internet browsing history, Emails, multimedia files. Other
Mobile cloud computing is now offering to mobile phones additional information provided by the Network Service
large connectivity options, storage and processing capabilities, Provider may be useful like historical call records, messages
which can be a way to abuse digital crimes. The growth of information, and user localization over the time. According to
mobile device use is not only increasing and diversifying the Brother in [4], there are three main extraction methods used by
data to be analyzed, but also complicating investigations. forensics investigators for mobile data acquisition. These
Regarding Clouds, the task is more difficult given the changes methods are classified in a layered pyramid; manual, logical
in the way information is created, stored, accessed and and physical extraction methods. Going up from the bottom
managed. Digital forensics is facing specificities of Mobile layer to the top layer, the extraction procedure produce a more
Cloud environment such as, terminals proliferation, loss of forensically sound memory images, require longer analysis
control over data, lack of access to physical infrastructure and time and involve more technical expertise and training.
lack of tools for large distributed and virtualized systems.
Cloud forensics has been defined as “the application of
Mobile cloud forensics is about a very rich research area. digital forensics science in cloud computing environments.
This paper aims to present challenging issues for Mobile Technically, it consists of a hybrid forensic approach towards
Cloud forensics and give a look into some works that deal the generation of digital evidence. Organizationally, it
with forensic problems within this environment. The rest of involves interactions among cloud actors for the purpose of
the article is organized as follows: section II provides an
[11] - - - - - - -
storage service
[12] - - - - - - -
Storage service Expoit traces
Exploit traces in
[13] - - - mobile device that - -
Storage service
accessed the cloud
storage service
[14] - Cloud - - - - - - -
Logs management
application
Not all type of Limited
[15] - - - - - - -
iPhone device data were Do not support
extracted locked phones
[16] - - - - - - -
Traditional
[17] - - Using VM - - - forensic tool
Introspecton were used
[18] - - - - - - -