摘要
云存储应用是目前使用最广泛的云计算服务之一,然而云存储为用户提供随时存取数据的便捷服务的同时,通过云存储传播敏感文件,导致泄密的风险也大大增加。而云计算环境给传统的数字取证带来诸多挑战。为此面向云存储的取证已经成为取证技术研究热点。文章在传统数字取证模型的基础上,提出一种基于网络取证的云存储取证模型,通过协议分析对微云进行取证,证实了云存储网络取证的可行性。最后为云存储取证的下一步工作提出方法和思路。
The storage as a service (StaaS) is one of the most widely used cloud computing services. But convenient service is provided means dissemination of sensitive documents is possible at the same time. However, traditional forensic frameworks reviewed to identify the required changes to current forensic practices. We propose a network forensic framework which emphasizes the differences in StaaS data for forensic purposes. Using a cloud StaaS application - weiyun - as a case study. Verified the feasibility of undertaking cloud storage forensics with protocol analyzing. Finally we provide some general guidelines for future forensic analysis and recommendations for future work,
出处
《信息网络安全》
2015年第3期69-73,共5页
Netinfo Security
基金
教育部高校创新团队项目[IRT201206]
教育部高等学校博士学科点专项科研基金[20120009110007]
关键词
云存储
网络取证
取证模型
协议分析
StaaS
network forensics
forensic framework
protocol analysis
