Visible to the public Blockchain Solutions for Forensic Evidence Preservation in IoT Environments

TitleBlockchain Solutions for Forensic Evidence Preservation in IoT Environments
Publication TypeConference Paper
Year of Publication2019
AuthorsBrotsis, Sotirios, Kolokotronis, Nicholas, Limniotis, Konstantinos, Shiaeles, Stavros, Kavallieros, Dimitris, Bellini, Emanuele, Pavué, Clément
Conference Name2019 IEEE Conference on Network Softwarization (NetSoft)
Date Publishedjun
Keywordsblockchain, blockchain-based solution, composability, contracts, cryptocurrencies, cyber-attacks, cyber-security, digital forensic evidence, digital forensics, digitally handling forensic evidence, Distributed databases, forensic evidence, forensic evidence preservation, Forensics, high-level architecture, Human Behavior, Internet of Things, Internet service providers, Intrusion detection, IoT devices, IoT environments, IoT networks, law enforcement agencies, Metrics, permissioned blockchain, private forensic evidence database, pubcrawl, Repudiation, Resiliency, security services, smart contracts, smart home domain, Smart homes, smart phones
AbstractThe technological evolution brought by the Internet of things (IoT) comes with new forms of cyber-attacks exploiting the complexity and heterogeneity of IoT networks, as well as, the existence of many vulnerabilities in IoT devices. The detection of compromised devices, as well as the collection and preservation of evidence regarding alleged malicious behavior in IoT networks, emerge as areas of high priority. This paper presents a blockchain-based solution, which is designed for the smart home domain, dealing with the collection and preservation of digital forensic evidence. The system utilizes a private forensic evidence database, where the captured evidence is stored, along with a permissioned blockchain that allows providing security services like integrity, authentication, and non-repudiation, so that the evidence can be used in a court of law. The blockchain stores evidences' metadata, which are critical for providing the aforementioned services, and interacts via smart contracts with the different entities involved in an investigation process, including Internet service providers, law enforcement agencies and prosecutors. A high-level architecture of the blockchain-based solution is presented that allows tackling the unique challenges posed by the need for digitally handling forensic evidence collected from IoT networks.
Citation Keybrotsis_blockchain_2019