The rapid growth of Software-as-a-Service (SaaS) applications in cloud environments has introduced new challenges for digital forensics investigators. Traditional forensic methods are often insufficient to collect, preserve, and analyze digital evidence from cloud-based environments. To address these challenges, this scope will propose the development of an Intelligent System for Cloud SaaS Forensic (ISC-SF) for OpenStack environment. The ISC-SF will integrate machine learning algorithms with the SaaS model and will present the algorithms to design for attribute selection, machine learning model training, attack detection, evidence extraction, collection, and analysis. This paper provides an overview of OpenStack architecture, OpenStack services, and log locations. The ISC-SF aims to revolutionize the field of cloud SaaS forensic investigation by leveraging intelligent algorithms in a controlled cloud environment.
Read full abstract