The End of effective Law Enforcement in the Cloud? - To encrypt, or not to encrypt
|Title:||The End of effective Law Enforcement in the Cloud? - To encrypt, or not to encrypt||Authors:||Ryder, Steven
|Permanent link:||http://hdl.handle.net/10197/8013||Date:||2-Jul-2016||Abstract:||With an exponentially increasing usage of cloud services, the need for forensic investigations of virtual space is equally in constantly increasing demand, which includes as a very first approach, the gaining of access to it as well as the data stored. This is an aspect that faces a number of challenges, stemming not only from the technical difficulties and peculiarities, but equally covers the interaction with an emerging line of businesses offering cloud storage and services. Beyond the forensic aspects, it also covers to an ever increasing amount the non-forensic considerations, such as the availability of logs and archives, legal and data protection considerations from a global perspective and the clashes in between, as well as the ever competing interests between law enforcement to seize evidence which is non-physical, and businesses who need to be able to continue to operate and provide their hosted services, even if law enforcement seek to collect evidence. The trend post-Snowden has been unequivocally towards default encryption, and driven by market leaders such as Apple, motivated to a large extent by the perceived demands for privacy of the consumer. The central question to be explored in this paper is to what extent this trend towards default encryption will have a negative impact on law enforcement investigations and possibilities, and will at the end attempt to provide a solution, which takes into account the needs of both law enforcement, but also of the cloud service providers. It is hoped that the recommendations from this paper will be able to have an impact in the ability for law enforcement to continue with their investigations in an efficient manner, whilst also safeguarding the ability for business to thrive and continue to develop and offer new and innovative solutions, which do not put law enforcement at risk.||Type of material:||Conference Publication||Publisher:||IEEE||Copyright (published version):||2016 IEEE||Keywords:||Cloud platform;Legislation;Encryption;Cloud storage||DOI:||10.1109/CLOUD.2016.0133||Language:||en||Status of Item:||Not peer reviewed||Conference Details:||9th IEEE International Conference on Cloud Computing (CLOUD 2016), San Francisco, USA, 27 June - 2 July 2016|
|Appears in Collections:||Computer Science Research Collection|
Show full item record
This item is available under the Attribution-NonCommercial-NoDerivs 3.0 Ireland. No item may be reproduced for commercial purposes. For other possible restrictions on use please refer to the publisher's URL where this is made available, or to notes contained in the item itself. Other terms may apply.