Managing forensic recovery in the cloud

George R. S. Weir, Andreas Aßmuth, Nicholas Jäger

Research output: Contribution to conferencePaperpeer-review

41 Downloads (Pure)


As organisations move away from locally hosted computer services toward Cloud platforms, there is a corresponding need to ensure the forensic integrity of such instances. The primary reasons for concern are (i) the locus of responsibility, and (ii) the associated risk of legal sanction and financial penalty. Building upon previously proposed techniques for intrusion monitoring, we highlight the multi-level interpretation problem, propose enhanced monitoring of Cloud-based systems at diverse operational and data storage level as a basis for review of historical change across the hosted system and afford scope to identify any data impact from hostile action or 'friendly fire'.
Original languageEnglish
Number of pages6
Publication statusAccepted/In press - 12 Jan 2018
EventCloud Computing 2018: The Ninth International Conference on Cloud Computing, GRIDs, and Virtualization - Barcelona, Spain
Duration: 18 Feb 201822 Feb 2018


ConferenceCloud Computing 2018
Internet address


  • cloud security
  • forensic readiness
  • message authentication codes
  • secret sharing


Dive into the research topics of 'Managing forensic recovery in the cloud'. Together they form a unique fingerprint.

Cite this