Research Area:  Digital Forensics
In today’s Internet-connected world, mobile devices are increasingly used to access cloud storage services, which allow users to access data anywhere, anytime. Mobile devices have, however, been known to be used and/or targeted by cyber criminals to conduct malicious activities, such as data exfiltration, malware, identity theft, piracy, illegal trading, sexual harassment, cyber stalking and cyber terrorism. Consequently, mobile devices are an increasing important source of evidence in digital investigations. In this paper, we examine four popular cloud client apps, namely OneDrive, Box, GoogleDrive, and Dropbox, on both Android and iOS platforms (two of the most popular mobile operating systems). We identify artefacts of forensic interest, such as information generated during login, uploading, downloading, deletion, and the sharing of files. These findings may assist forensic examiners and practitioners in real-world examination of cloud client applications on Android and iOS platforms.
Keywords:  
Author(s) Name:  Farid Daryabar, Ali Dehghantanha, Brett Eterovic-Soric, Kim-Kwang Raymond Choo
Journal name:  Australian Journal of Forensic Sciences
Conferrence name:  
Publisher name:  Taylor and Francis
DOI:  10.1080/00450618.2015.1110620
Volume Information:  Volume 48, 2016 - Issue 6
Paper Link:   https://www.tandfonline.com/doi/abs/10.1080/00450618.2015.1110620