信息网络安全 ›› 2015, Vol. 15 ›› Issue (3): 69-73.doi: 10.3969/j.issn.1671-1122.2015.03.014

• 技术研究 • 上一篇    下一篇

对微云的网络取证研究

杨新宇, 王健()   

  1. 北京交通大学计算机与信息技术学院,北京100044
  • 收稿日期:2015-01-21 出版日期:2015-03-10 发布日期:2015-05-08
  • 作者简介:

    作者简介: 杨新宇(1988-),男,山西,硕士,主要研究方向:信息安全;王健(1975-),男,山东,硕士生导师,讲师,博士,主要研究方向:网络信息安全、认证与加密技术、电子取证技术。

Research on Network Forensic Based on Weiyun

YANG Xin-yu, WANG Jian()   

  1. College of Computer and Information Technology, Beijing Jiaotong University, Beijing 100044, China
  • Received:2015-01-21 Online:2015-03-10 Published:2015-05-08

摘要:

云存储应用是目前使用最广泛的云计算服务之一,然而云存储为用户提供随时存取数据的便捷服务的同时,通过云存储传播敏感文件,导致泄密的风险也大大增加。而云计算环境给传统的数字取证带来诸多挑战。为此面向云存储的取证已经成为取证技术研究热点。文章在传统数字取证模型的基础上,提出一种基于网络取证的云存储取证模型,通过协议分析对微云进行取证,证实了云存储网络取证的可行性。最后为云存储取证的下一步工作提出方法和思路。

关键词: 云存储, 网络取证, 取证模型, 协议分析

Abstract:

The storage as a service (StaaS) is one of the most widely used cloud computing services. But convenient service is provided means dissemination of sensitive documents is possible at the same time. However, traditional forensic frameworks reviewed to identify the required changes to current forensic practices. We propose a network forensic framework which emphasizes the differences in StaaS data for forensic purposes. Using a cloud StaaS application - weiyun - as a case study. Verified the feasibility of undertaking cloud storage forensics with protocol analyzing. Finally we provide some general guidelines for future forensic analysis and recommendations for future work.

Key words: StaaS, network forensics, forensic framework, protocol analysis

中图分类号: