Skip to content

usnistgov/FRA

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

13 Commits
 
 
 
 
 
 
 
 
 
 
 
 
 
 

Repository files navigation

NIST Cloud Computing Forensic Reference Architecture

With the rapid adoption of cloud computing technology, there is a need to apply digital forensics to this domain. New methodologies are required for the identification, acquisition, preservation, examination, and interpretation of digital evidence in multi-tenant cloud environments that offer rapid provisioning, global elasticity, and broad network accessibility. This is necessary to provide capabilities for incident response and secure internal enterprise operations and to support the U.S. criminal justice and civil litigation systems.

This repository contains information associated with the NIST Cloud Computing Forensic Reference Architecture (CC FRA or symply FRA), whose goal is to provide support for a cloud system’s forensic readiness.

The CC FRA is meant to help the user understand which cloud forensic challenges might exist for an organization’s cloud system. The FRA uses a set of identified forensic challenges to identify which cloud computing capabilities or components require mitigation strategies and how a forensic investigator would apply that to a particular forensic investigation.

The CC FRA provides a useful starting point for all cloud forensic stakeholders to analyze the impacts of cloud forensic challenges previously reported by NIST. It does so by considering each cloud forensic challenge in the context of each functional capability presented in the Cloud Security Alliance’s Enterprise Architecture.

While the CC FRA can be used by any cloud computing practitioner, it is specifically designed to allow Cloud System Architects, Cloud Engineers, Forensic Practitioners and Cloud Consumers to ask specific questions relative to their cloud computing architectures.

The CC FRA is both a methodology and an initial set of data which is the result of applying the methodology to the cloud capabilities and components adopted from the CSA's Enterprise Architecture in conjunction with the cloud forensic challenges identified in NIST IR 8006. We encourage the users of the FRA to preserve the methodology but feel free to customize the initial data to their specific situation and needs.

Contact us:

Dr. Michaela Iorga

email: sp800-201@nist.gov)

NOTE:

A README.md file, formatted using GitHub-flavored Markdown and is provided in each subdirectory and aims to provide additional information pertaining to the project.

Per the GitHub ROB and NIST Suborder 1801.02, the README.md will contain:

  1. Software or Data description
    • Statements of purpose and maturity
    • Description of the repository contents
    • Technical installation instructions, including operating system or software dependencies
  2. Contact information
    • PI name, NIST OU, Division, and Group names
    • Contact email address at NIST
    • Details of mailing lists, chatrooms, and discussion forums, where applicable
  3. Related Material
    • URL for associated project on the NIST website or other Department of Commerce page, if available
    • References to user guides if stored outside of GitHub
  4. Directions on appropriate citation with example text
  5. When applicable, references to any included non-public domain software modules, and additional license language if needed, e.g. BSD, GPL, or MIT

About

No description, website, or topics provided.

Resources

License

Stars

Watchers

Forks

Releases

No releases published

Packages

No packages published