Network Investigation Methodology for BitTorrent Sync: A Peer-to-Peer Based File Synchronisation Service

Files in This Item:
File Description SizeFormat 
NetworkInvestigationMethodologyForBitTorrentSync.pdf1.58 MBAdobe PDFDownload
Title: Network Investigation Methodology for BitTorrent Sync: A Peer-to-Peer Based File Synchronisation Service
Authors: Scanlon, Mark
Farina, Jason
Kechadi, Tahar
Permanent link: http://hdl.handle.net/10197/7396
Date: Oct-2015
Abstract: High availability is no longer just a business continuity concern. Users are increasingly dependant on devices that consume and produce data in ever increasing volumes. A popular solution is to have a central repository which each device accesses after centrally managed authentication. This model of use is facilitated by cloud based file synchronisation services such as Dropbox, OneDrive, Google Drive and Apple iCloud. Cloud architecture allows the provisioning of storage space with 'always-on' access. Recent concerns over unauthorised access to third party systems and large scale exposure of private data have made an alternative solution desirable. These events have caused users to assess their own security practices and the level of trust placed in third party storage services. One option is BitTorrent Sync, a cloudless synchronisation utility provides data availability and redundancy. This utility replicates files stored in shares to remote peers with access controlled by keys and permissions. While lacking the economies brought about by scale, complete control over data access has made this a popular solution. The ability to replicate data without oversight introduces risk of abuse by users as well as difficulties for forensic investigators. This paper suggests a methodology for investigation and analysis of the protocol to assist in the control of data flow across security perimeters.
Type of material: Journal Article
Publisher: Elsevier
Copyright (published version): 2015 Elsevier
Keywords: BitTorrent sync;Distributed storage;Peer-to-peer;Network traffic analysis;Remote evidence acquisition
DOI: 10.1016/j.cose.2015.05.003
Language: en
Status of Item: Peer reviewed
Appears in Collections:Computer Science Research Collection
Insight Research Collection

Show full item record

SCOPUSTM   
Citations 50

3
Last Week
0
Last month
checked on Jun 16, 2018

Google ScholarTM

Check

Altmetric


This item is available under the Attribution-NonCommercial-NoDerivs 3.0 Ireland. No item may be reproduced for commercial purposes. For other possible restrictions on use please refer to the publisher's URL where this is made available, or to notes contained in the item itself. Other terms may apply.