Open AccessForensic Analysis of the IoT Operating System Ubuntu Core
Author(s) -
Juan Manuel Castelo Gómez,
José Roldán-Gómez,
José Luis Martínez,
Álvaro del Amo Mínguez
Publication year - 2022
Publication title -
journal of physics. conference series
Language(s) - English
Resource type - Journals
SCImago Journal Rank - 0.21
H-Index - 85
eISSN - 1742-6596
pISSN - 1742-6588
DOI - 10.1088/1742-6596/2224/1/012082
Subject(s) - internet of things , computer science , perspective (graphical) , computer security , order (exchange) , core (optical fiber) , forensic science , data science , telecommunications , artificial intelligence , business , archaeology , history , finance
The number of cyber incidents in which an Internet of Things (IoT) device or system is present is increasing every day, requiring the opening of forensic investigations that can shed light on what has occurred. In order to be able to provide investigators with proper solutions for performing complete and efficient examinations in this new environment, IoT systems and devices are being studied from a forensic perspective so that tools and procedures can be designed accordingly. In this article, the IoT version of one of the most used Linux distributions, namely Ubuntu, is studied to determine in what way a forensic investigation of this system should be performed, detailing how to approach the acquisition and analysis phases. In addition, both the volatile and non-volatile artifacts that might held useful information are listed and described.