Visible to the public Categorization and Organization of Database Forensic Investigation Processes

TitleCategorization and Organization of Database Forensic Investigation Processes
Publication TypeJournal Article
Year of Publication2020
AuthorsAl-Dhaqm, A., Razak, S. A., Dampier, D. A., Choo, K. R., Siddique, K., Ikuesan, R. A., Alqarni, A., Kebande, V. R.
JournalIEEE Access
Keywordsacquisition and preservation category, Adaptation models, analysis and reconstruction category, Data models, Database forensic investigation, database forensic investigation processes, database forensics, database management systems, Databases, design science research methodology, digital data, digital forensics, harmonized DBFI process, Human Behavior, information forensics, investigation process model, Metrics, Planning, preparation and pre-response category, pubcrawl, resilience, Resiliency, Scalability, Servers, Terminology
AbstractDatabase forensic investigation (DBFI) is an important area of research within digital forensics. It's importance is growing as digital data becomes more extensive and commonplace. The challenges associated with DBFI are numerous, and one of the challenges is the lack of a harmonized DBFI process for investigators to follow. In this paper, therefore, we conduct a survey of existing literature with the hope of understanding the body of work already accomplished. Furthermore, we build on the existing literature to present a harmonized DBFI process using design science research methodology. This harmonized DBFI process has been developed based on three key categories (i.e. planning, preparation and pre-response, acquisition and preservation, and analysis and reconstruction). Furthermore, the DBFI has been designed to avoid confusion or ambiguity, as well as providing practitioners with a systematic method of performing DBFI with a higher degree of certainty.
Citation Keyal-dhaqm_categorization_2020