Are you ready? Towards the engineering of forensic-ready systems

George Grispos, Jesus Garcia-Galan, Liliana Pasquale, Bashar Nuseibeh

Research output: Chapter in Book/Report/Conference proceedingConference contribution

5 Scopus citations

Abstract

As security incidents continue to impact organisations, there is a growing demand for systems to be 'forensic-ready'-to maximise the potential use of evidence whilst minimising the costs of an investigation. Researchers have supported organisational forensic readiness efforts by proposing the use of policies and processes, aligning systems with forensics objectives and training employees. However, recent work has also proposed an alternative strategy for implementing forensic readiness called forensic-by-design. This is an approach that involves integrating requirements for forensics into relevant phases of the systems development lifecycle with the aim of engineering forensic-ready systems. While this alternative forensic readiness strategy has been discussed in the literature, no previous research has examined the extent to which organisations actually use this approach for implementing forensic readiness. Hence, we investigate the extent to which organisations consider requirements for forensics during systems development. We first assessed existing research to identify the various perspectives of implementing forensic readiness, and then undertook an online survey to investigate the consideration of requirements for forensics during systems development lifecycles. Our findings provide an initial assessment of the extent to which requirements for forensics are considered within organisations. We then use our findings, coupled with the literature, to identify a number of research challenges regarding the engineering of forensic-ready systems.

Original languageEnglish (US)
Title of host publicationRCIS 2017 - 11th IEEE International Conference on Research Challenges in Information Science - Conference Proceedings
EditorsOscal Pastor, Haralambos Mouratidis, Said Assar
PublisherIEEE Computer Society
Pages328-333
Number of pages6
ISBN (Electronic)9781509054763
DOIs
StatePublished - Jun 23 2017
Event11th IEEE International Conference on Research Challenges in Information Science - RCIS 2017 - Brighton, United Kingdom
Duration: May 10 2017May 12 2017

Publication series

NameProceedings - International Conference on Research Challenges in Information Science
ISSN (Print)2151-1349
ISSN (Electronic)2151-1357

Conference

Conference11th IEEE International Conference on Research Challenges in Information Science - RCIS 2017
CountryUnited Kingdom
CityBrighton
Period5/10/175/12/17

Keywords

  • Forensic Readiness
  • Forensic-By-Design
  • Survey

ASJC Scopus subject areas

  • Computer Science Applications
  • Information Systems
  • Software

Fingerprint Dive into the research topics of 'Are you ready? Towards the engineering of forensic-ready systems'. Together they form a unique fingerprint.

Cite this