Abstract
Until now, there has been little research on digital forensics in the IoT (Internet of Things)-based infrastructure. Current digital forensic tools, investigation frameworks, and processes cannot meet the heterogeneity and distribution characteristics of the IoT environment. These characteristics are a challenge for digital forensic investigators and law enforcement agencies. To solve these problems, this paper proposes a digital forensics framework for the IoT environment based on the blockchain technology. In the proposed framework, all communications of IoT devices are stored in the blockchain as transactions, thus making the existing chain of custody process easier and more powerful. By using the blockchain technology, the integrity of the data to be analyzed is ensured and security is strengthened, and the preservation of integrity is made more reliable by a decentralized method of integrity preservation. In addition, since the public distributed ledger is provided, participants in the forensic investigation—such as device users, manufacturers, investigators, and service providers—can confirm the investigation process transparently. We simulated the proposed model to support the proof of concept.
Similar content being viewed by others
References
Sharma PK et al (2018) Li-Fi based on security cloud framework for future IT environment. Hum Cent Comput Inf Sci 8:23
Kebande VR, Ray I (2016) A generic digital forensic investigation framework for Internet of Things (IoT). In: 2016 IEEE 4th International Conference on Future Internet of Things and Cloud (FiCloud)
Nakamoto S (2008) Bitcoin: a peer-to-peer electronic cash system. http://www.bitcoin.org
Harbawi M, Varol A (2017) An improved digital evidence acquisition model for the Internet of Things forensic I: a theoretical framework. In: 2017 5th International Symposium on Digital Forensic and Security (ISDFS)
Perumal S et al (2015) Internet of Things (IoT) digital forensic investigation model: top-down forensic approach methodology. In: 2015 Fifth International Conference on Digital Information Processing and Communications (ICDIPC)
Zhang Y et al (2017) A blockchain-based process provenance for cloud forensics. In: 3rd IEEE International Conference on Computer and Communications (ICCC)
MacDermott A et al (2018) IoT forensics: challenges for the IoA era. In: 2018 9th IFIP International Conference on New Technologies, Mobility and Security (NTMS)
Cebe M et al (2018) Block4Forensic: an integrated lightweight blockchain framework for forensics applications of connected vehicles. Cornell University. arXiv preprint arXiv:1802.00561
Oriwoh E et al (2013) Internet of things forensics: challenges and approaches. In: 2013 9th International Conference on Collaborative Computing: Networking, Applications and Worksharing (Collaboratecom)
Conti M et al (2018) Internet of Things security and forensics: challenges and opportunities. Fut Gen Comput Syst 78(2):544–546
Kouwen A et al (2018) Digital forensic investigation of two-way radio communication equipment and services. Dig Investig 26:77–86
Sharma PK et al (2017) Distblocknet: a distributed blockchains-based secure SDN architecture for iot networks. IEEE Commun Mag 55(9):78–85
Wang M et al (2018) Lightweight and manageable digital evidence preservation system on bitcoin. J Comput Sci Technol 33(3):568–586
Rivera J, van der Meulen R (2013) Gartner says the internet of things installed base will grow to 26 billion units by 2020. Stamford, CT, Dec 2013
Feng Q et al (2018) A survey on privacy protection in blockchain system. J Netw Comput Appl 126:45–58
Henry R et al (2018) Blockchain access privacy: challenges and directions. IEEE Secur Priv 16(4):38–45
Ethereum private network platform (online). https://www.ethereum.org/. Accessed date 04 Sept 2018
Geth (online). https://geth.ethereum.org/downloads/. Accessed date 04 Sept 2018
Mist browser (online). https://github.com/ethereum/mist. Accessed date 04 Sept 2018
Ryu JH et al (2018) Analysis of a third-party application for mobile forensic investigation. J Inf Process Syst (JIPS) 14(3):680–693
Acknowledgements
This work was supported by Institute for Information and communications Technology Promotion (IITP) grant funded by the Korea government (MSIT) (No. 2018-0-00644, Linux Malware Dynamic Detection and Protection Solution on Embedded Device).
Author information
Authors and Affiliations
Corresponding author
Additional information
Publisher's Note
Springer Nature remains neutral with regard to jurisdictional claims in published maps and institutional affiliations.
Rights and permissions
About this article
Cite this article
Ryu, J.H., Sharma, P.K., Jo, J.H. et al. A blockchain-based decentralized efficient investigation framework for IoT digital forensics. J Supercomput 75, 4372–4387 (2019). https://doi.org/10.1007/s11227-019-02779-9
Published:
Issue Date:
DOI: https://doi.org/10.1007/s11227-019-02779-9