Investigasi Forensik Digital dan Respon Insiden di Internet of Things (IoT DFIR): Kerangka Kerja dan Alat
Keywords:
IoT Forensics Tools, IoT Forensics Framework, Incident Response IoT, DFIR IoTAbstract
Investigasi forensik memerlukan standar dan kerangka kerja yang dapat digunakan untuk investigasi forensik digital pada infrastruktur IoT guna menyediakan pendekatan yang signifikan dalam menyediakan mekanisme respons pascaperistiwa yang efektif terhadap serangan jahat pada infrastruktur IoT. Kendala lain yang dapat diatasi adalah kurangnya alat forensik IoT. Alat ini dapat dibuat dengan cara yang memenuhi persyaratan pengadilan sekaligus memungkinkan penyidik mencapai tujuan mereka. Artikel ini diawali dengan pembahasan menyeluruh tentang paradigma forensik IoT, respons insiden, persyaratan berdasarkan desain, dan penawaran keamanan sistem IoT untuk IoT-DigFor.
Downloads
References
Janarthanan, T., Bagheri, M., Zargari, S. (2021). IoT-DigFor: An Overview of the Current Issues and Challenges. In: Montasari, R., Jahankhani, H., Hill, R., Parkinson, S. (eds) Digital Forensic Investigation of Internet of Things (IoT) Devices. Advanced Sciences and Technologies for Security Applications. Springer, Cham.
C. Itodo, S. Varlioglu and N. Elsayed, "Digital Forensics and Incident Response (DFIR) Challenges in IoT Platforms," 2021 4th International Conference on Information and Computer Technologies (ICICT), 2021, pp. 199-203.
G. Grispos, F. Tursi, K. -K. R. Choo, W. Mahoney and W. B. Glisson, "A Digital Forensics Investigation of a Smart Scale IoT Ecosystem," 2021 IEEE 20th International Conference on Trust, Security and Privacy in Computing and Communications (TrustCom), 2021, pp. 710-717.
A. Al-Dhaqm et al., "Digital Forensics Subdomains: The State of the Art and Future Directions," in IEEE Access, vol. 9, pp. 152476-152502, 2021.
S. Amiroon and C. Fachkha, "Digital Forensics and Investigations of the Internet of Things: A Short Survey," 2020 3rd International Conference on Signal Processing and Information Security (ICSPIS), 2020, pp. 1-4.
J. Hou, Y. Li, J. Yu and W. Shi, "A Survey on Digital Forensics in Internet of Things," in IEEE Internet of Things Journal, vol. 7, no. 1, pp. 1-15, Jan. 2020.
H.F. Atlam, E. El-Din Hemdan, A. Alenezi, M.O. Alassafi, G.B. Wills, Internet of Things forensics: a review, Internet Things 11 (2020) 100220.
M. Stoyanova, Y. Nikoloudakis, S. Panagiotakis, E. Pallis and E. K. Markakis, "A Survey on the Internet of Things (IoT) Forensics: Challenges, Approaches, and Open Issues," in IEEE Communications Surveys & Tutorials, vol. 22, no. 2, pp. 1191-1221, Secondquarter 2020.
Atlam, H.F., Alenezi, A., Alassafi, M.O., Alshdadi, A.A., Wills, G.B. (2020). Security, Cybercrime and Digital Forensics for IoT. In: Peng, SL., Pal, S., Huang, L. (eds) Principles of Internet of Things (IoT) Ecosystem: Insight Paradigm. Intelligent Systems Reference Library, vol 174. Springer, Cham.
Alenezi, A.; Atlam, H.; Alsagri, R.; Alassafi, M. and Wills, G. (2019). IoT-DigFor: A State of-the-Art Review, Challenges and Future Directions. In Proceedings of the 4th International Conference on Complexity, Future Information Systems and Risk - COMPLEXIS, ISBN 978-989-758-366-7; ISSN 2184-5034, pages 106-115.
N. Koroniotis, N. Moustafa and E. Sitnikova, "Forensics and Deep Learning Mechanisms for Botnets in Internet of Things: A Survey of Challenges and Solutions," in IEEE Access, vol. 7, pp. 61764-61785, 2019.
T. Bakhshi, "Forensic of Things: Revisiting Digital Forensic Investigations in Internet of Things," 2019 4th International Conference on Emerging Trends in Engineering, Sciences and Technology (ICEEST), 2019, pp. 1-8.
J. Kruger and H. Venter, "Requirements for IoT-DigFor," 2019 Conference on Next Generation Computing Applications (NextComp), 2019, pp. 1-7.
S. Ahdan et al., "Digital Forensics Investigation and Incident Response in Internet of Things (IoT-DFIR): Challenges and Models," 2023 9th International Conference on Wireless and Telematics (ICWT), Solo, Indonesia, 2023, pp. 1-6.
F. Abdel-Fattah, S. Fayyad, A. M. Heyari and H. Al-Zoubi, "A Survey of Internet of Things (IoT) Forensics Frameworks and Challenges," 2023 International Conference on Information Technology (ICIT), Amman, Jordan, 2023, pp. 373-377.
M. B. Al-Sadi, L. Chen and R. J. Haddad, "Internet of Things Digital Forensic Investigation Using Open Source Gears," SoutheastCon 2018, 2018, pp. 1-5.
V. R. Kebande, N. M. Karie and H. S. Venter, "Cloud-Centric Framework for isolating Big data as forensic evidence from IoT infrastructures," 2017 1st International Conference on Next Generation Computing Applications (NextComp), 2017, pp. 54-60.
E. Al-Masri, Y. Bai and J. Li, "A Fog-Based Digital Forensics Investigation Framework for IoT Systems," 2018 IEEE International Conference on Smart Cloud (SmartCloud), 2018, pp. 196-201.
M. Hossain, Y. Karim and R. Hasan, "FIF-IoT: A Forensic Investigation Framework for IoT Using a Public Digital Ledger," 2018 IEEE International Congress on Internet of Things (ICIOT), 2018, pp. 33-40.
S. Sathwara, N. Dutta and E. Pricop, "IoT Forensic A digital investigation framework for IoT systems," 2018 10th International Conference on Electronics, Computers and Artificial Intelligence (ECAI), 2018, pp. 1-4.
V. R. Kebande et al., "Towards an Integrated Digital Forensic Investigation Framework for an IoT-Based Ecosystem," 2018 IEEE International Conference on Smart Internet of Things (SmartIoT), 2018, pp. 93-98.
E. Nwafor and H. Olufowobi, "Towards an Interactive Visualization Framework for IoT Device Data Flow," 2019 IEEE International Conference on Big Data (Big Data), 2019, pp. 4175-4178.
M. J. Islam, M. Mahin, A. Khatun, B. C. Debnath and S. Kabir, "Digital Forensic Investigation Framework for Internet of Things (IoT): A Comprehensive Approach," 2019 1st International Conference on Advances in Science, Engineering and Robotics Technology (ICASERT), 2019, pp. 1-6.
Kebande, V. R., Mudau, P. P., Ikuesan, R. A., Venter, H. S., & Choo, K.-K. R. (2020). Holistic digital forensic readiness framework for IoT enabled organizations. Forensic Science International: Reports, 2, 100117.
J. Liu, R. Sasaki and T. Uehara, "An Ontology-Based Framework for Medical IoT Forensic Evidence," 2023 IEEE 23rd International Conference on Software Quality, Reliability, and Security Companion (QRS-C), Chiang Mai, Thailand, 2023, pp. 863-864.
E. Oriwoh, D. Jazani, G. Epiphaniou and P. Sant, "Internet of Things Forensics: Challenges and approaches," 9th IEEE International Conference on Collaborative Computing:Networking, Applications and Worksharing, 2013, pp. 608-615.
M. Rasmi Al-Mousa, "Generic Proactive IoT Cybercrime Evidence Analysis Model for Digital Forensics," 2021 International Conference on Information Technology (ICIT), 2021, pp. 654-659.
E. Becker, M. Gupta and F. M. Awaysheh, "Analyzing Edge IoT Digital Forensics Tools: Cyber Attacks Reconstruction and Anti-Forensics Enhancements," 2023 IEEE Intl Conf on Dependable, Autonomic and Secure Computing, Intl Conf on Pervasive Intelligence and Computing, Intl Conf on Cloud and Big Data Computing, Intl Conf on Cyber Science and Technology Congress (DASC/PiCom/CBDCom/CyberSciTech), Abu Dhabi, United Arab Emirates, 2023, pp. 0991-0998.
A. Aslam, S. M. Maher, L. Kanwal and M. A. Shah, "An Aspect of Internet of Things Security: Analysis of Digital Fingerprinting of Generic Twitter Sessions by Using Forensic Tool," 2019 25th International Conference on Automation and Computing (ICAC), Lancaster, UK, 2019, pp. 1-5.
N. Scheidt, M. Adda, L. Chateau and Y. E. Kutlu, "Forensic Tools for IoT Device Investigations in regards to Human Trafficking," 2021 IEEE International Conference on Smart Internet of Things (SmartIoT), 2021, pp. 1-7.
Wazuh Agent. [online] Available:https://documentation.wazuh.com/ current/installation-guide/wazuh-agent/index.html
J. Makopa, A. Christopher, R. Shah and N. Mandela, "Internet of Things (IoT) Network Forensic Analysis Using the Raspberry Pi 4 Model B and Open-Source Tools," 2023 International Conference on Quantum Technologies, Communications, Computing, Hardware and Embedded Systems Security (iQ-CCHESS), KOTTAYAM, India, 2023, pp. 1-7.
Z. Zhao et al., "CMD: Co-Analyzed IoT Malware Detection and Forensics via Network and Hardware Domains," in IEEE Transactions on Mobile Computing, vol. 23, no. 5, pp. 5589 5603, May 2024.
F. Palmese and A. E. C. Redondi, "Collecting Channel State Information in Wi-Fi Access Points for IoT Forensics," 2023 21st Mediterranean Communication and Computer Networking Conference (MedComNet), Island of Ponza, Italy, 2023, pp. 176-183.
E. Dragonas, C. Lambrinoudakis and M. Kotsis, "IoT Forensics: Investigating the Mobile App of Dahua Technology," 2023 IEEE International Conference on Cyber Security and Resilience (CSR), Venice, Italy, 2023, pp. 452-457.
Dahua Technology. [online] Available:https://us.dahuasecurity.com/intelligent-safety-and-security-solutions/office-block-security-solution/
Kirmani, M.S., & Banday, M.T. (2019). Digital Forensics in the Context of the Internet of Things. Cryptographic Security Solutions for the Internet of Things.
C. Riggs, J. Patel and K. Gagneja, "IoT Device Discovery for Incidence Response," 2019 Fifth Conference on Mobile and Secure Services (MobiSecServ), 2019, pp. 1-8,