Software Agent and Cloud Forensics: A Conceptual Framework

Abstract: Recently, a number of digital storage and services of computing data is moving towards cloud computing. Due to this movement, in case of attack occur in the cloud this would like more investigation and acquiring. Digital forensics is the application of science to the identification, examination, collection, and analysis of data while preserving the information and maintaining a strict chain of custody for the data. Cloud forensics is the application of digital forensics in cloud computing. In this paper a framework is acquiring the digital forensics for cloud computing is proposed. A framework consists of two main layers, firstly, cloud forensics layer that consists of Cloud Service Provider (CSP), law enforcement, forensics investigators and cloud users. Secondly, Multi Agent System (MAS) architecture layer that consists of two main agents: Cloud Acquiring Agent (CAA) and Cloud Forensics Agent (FCA) are proposed. Our results in the practical scenario defined formally in this paper, show the Round Trip Time (RTT) for an agent to acquire the cloud forensics and measured by the times required for an agent to travel around different number of CSPs before and after the implementation.