A metamodeling approach for iot forensic investigation
The Internet of Things (IoT) Investigation of Forensics (IoTFI) is one of the subdomains of Digital Forensics that aims to record and evaluate incidents involving the Internet of Things (IoT). Because of the many different standards, operating systems, and infrastructure-based aspects that make up t...
Saved in:
| Main Authors: | , , , , , , |
|---|---|
| Format: | Article |
| Language: | English |
| Published: |
MDPI
2023
|
| Subjects: | |
| Online Access: | http://eprints.utm.my/106607/1/SitiHajarOthman2023_AMetamodelingApproachforIoTForensicInvestigation.pdf http://eprints.utm.my/106607/ http://dx.doi.org/10.3390/electronics12030524 |
| Tags: |
Add Tag
No Tags, Be the first to tag this record!
|
| Institution: | Universiti Teknologi Malaysia |
| Language: | English |
| id |
my.utm.106607 |
|---|---|
| record_format |
eprints |
| spelling |
my.utm.1066072024-07-14T09:23:51Z http://eprints.utm.my/106607/ A metamodeling approach for iot forensic investigation Muhammed Saleh, Muhammed Saleh Othman, Siti Hajar Driss, Maha Al-dhaqm, Arafat Ali, Abdulalem Yafooz, Wael M. S. M. Emara, Abdel-Hamid QA75 Electronic computers. Computer science The Internet of Things (IoT) Investigation of Forensics (IoTFI) is one of the subdomains of Digital Forensics that aims to record and evaluate incidents involving the Internet of Things (IoT). Because of the many different standards, operating systems, and infrastructure-based aspects that make up the Internet of Things industry, this sector is extremely varied, ambiguate, and complicated. Many distinct IoTFI models and frameworks were developed, each one based on a unique set of investigation procedures and activities tailored to a particular IoT scenario. Because of these models, the domain becomes increasingly complicated and disorganized among those who perform domain forensics. As a result, the IoTFI domain does not have a general model for managing, sharing, and reusing the processes and activities that it offers. With the use of the metamodeling development process, this work aims to create an Internet of Things Forensic Investigation Metamodel (IoTFIM) for the IoTFI domain. Utilizing the metamodeling development process allows for the construction and validation of a metamodel and the verification that the metamodel is both comprehensive and consistent. The IoTFIM is divided into two phases: the first phase identifies the problem, and the second phase develops the IoTFIM. It is utilized to structure and organize IoTFI domain knowledge, which makes it easier for domain forensic practitioners to manage, organize, share, and reuse IoTFI domain knowledge. The purpose of this is to detect, recognize, extract, and match various IoTFI processes, concepts, activities, and tasks from various IoTFI models in an IoTFIM that was established, facilitating the process of deriving and instantiating solution models for domain practitioners. Utilizing several metamodeling methodologies, we were able to validate the generated IoTFMI’s consistency as well as its applicability (comparison against other models, frequency-based selection). Based on the findings, it can be concluded that the built IoTFIM is consistent and coherent. This makes it possible for domain forensic practitioners to simply instantiate new solution models by picking and combining concept elements (attribute and operations) based on the requirements of their models. MDPI 2023 Article PeerReviewed application/pdf en http://eprints.utm.my/106607/1/SitiHajarOthman2023_AMetamodelingApproachforIoTForensicInvestigation.pdf Muhammed Saleh, Muhammed Saleh and Othman, Siti Hajar and Driss, Maha and Al-dhaqm, Arafat and Ali, Abdulalem and Yafooz, Wael M. S. and M. Emara, Abdel-Hamid (2023) A metamodeling approach for iot forensic investigation. Electronics (Switzerland), 12 (3). pp. 1-38. ISSN 2079-9292 http://dx.doi.org/10.3390/electronics12030524 DOI : 10.3390/electronics12030524 |
| institution |
Universiti Teknologi Malaysia |
| building |
UTM Library |
| collection |
Institutional Repository |
| continent |
Asia |
| country |
Malaysia |
| content_provider |
Universiti Teknologi Malaysia |
| content_source |
UTM Institutional Repository |
| url_provider |
http://eprints.utm.my/ |
| language |
English |
| topic |
QA75 Electronic computers. Computer science |
| spellingShingle |
QA75 Electronic computers. Computer science Muhammed Saleh, Muhammed Saleh Othman, Siti Hajar Driss, Maha Al-dhaqm, Arafat Ali, Abdulalem Yafooz, Wael M. S. M. Emara, Abdel-Hamid A metamodeling approach for iot forensic investigation |
| description |
The Internet of Things (IoT) Investigation of Forensics (IoTFI) is one of the subdomains of Digital Forensics that aims to record and evaluate incidents involving the Internet of Things (IoT). Because of the many different standards, operating systems, and infrastructure-based aspects that make up the Internet of Things industry, this sector is extremely varied, ambiguate, and complicated. Many distinct IoTFI models and frameworks were developed, each one based on a unique set of investigation procedures and activities tailored to a particular IoT scenario. Because of these models, the domain becomes increasingly complicated and disorganized among those who perform domain forensics. As a result, the IoTFI domain does not have a general model for managing, sharing, and reusing the processes and activities that it offers. With the use of the metamodeling development process, this work aims to create an Internet of Things Forensic Investigation Metamodel (IoTFIM) for the IoTFI domain. Utilizing the metamodeling development process allows for the construction and validation of a metamodel and the verification that the metamodel is both comprehensive and consistent. The IoTFIM is divided into two phases: the first phase identifies the problem, and the second phase develops the IoTFIM. It is utilized to structure and organize IoTFI domain knowledge, which makes it easier for domain forensic practitioners to manage, organize, share, and reuse IoTFI domain knowledge. The purpose of this is to detect, recognize, extract, and match various IoTFI processes, concepts, activities, and tasks from various IoTFI models in an IoTFIM that was established, facilitating the process of deriving and instantiating solution models for domain practitioners. Utilizing several metamodeling methodologies, we were able to validate the generated IoTFMI’s consistency as well as its applicability (comparison against other models, frequency-based selection). Based on the findings, it can be concluded that the built IoTFIM is consistent and coherent. This makes it possible for domain forensic practitioners to simply instantiate new solution models by picking and combining concept elements (attribute and operations) based on the requirements of their models. |
| format |
Article |
| author |
Muhammed Saleh, Muhammed Saleh Othman, Siti Hajar Driss, Maha Al-dhaqm, Arafat Ali, Abdulalem Yafooz, Wael M. S. M. Emara, Abdel-Hamid |
| author_facet |
Muhammed Saleh, Muhammed Saleh Othman, Siti Hajar Driss, Maha Al-dhaqm, Arafat Ali, Abdulalem Yafooz, Wael M. S. M. Emara, Abdel-Hamid |
| author_sort |
Muhammed Saleh, Muhammed Saleh |
| title |
A metamodeling approach for iot forensic investigation |
| title_short |
A metamodeling approach for iot forensic investigation |
| title_full |
A metamodeling approach for iot forensic investigation |
| title_fullStr |
A metamodeling approach for iot forensic investigation |
| title_full_unstemmed |
A metamodeling approach for iot forensic investigation |
| title_sort |
metamodeling approach for iot forensic investigation |
| publisher |
MDPI |
| publishDate |
2023 |
| url |
http://eprints.utm.my/106607/1/SitiHajarOthman2023_AMetamodelingApproachforIoTForensicInvestigation.pdf http://eprints.utm.my/106607/ http://dx.doi.org/10.3390/electronics12030524 |
| _version_ |
1805880845652721664 |