{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2025,2,21]],"date-time":"2025-02-21T20:17:36Z","timestamp":1740169056231,"version":"3.37.3"},"reference-count":93,"publisher":"Institute of Electrical and Electronics Engineers (IEEE)","license":[{"start":{"date-parts":[[2016,1,1]],"date-time":"2016-01-01T00:00:00Z","timestamp":1451606400000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/ieeexplore.ieee.org\/Xplorehelp\/downloads\/license-information\/OAPA.html"}],"funder":[{"name":"Bright Spark Unit, University of Malaya, Malaysia"},{"name":"Malaysian Ministry of Higher Education under the University of Malaya High Impact Research","award":["UM.C\/625\/1\/HIR\/MOE\/FCSIT\/03","RP012C-13AFR"],"award-info":[{"award-number":["UM.C\/625\/1\/HIR\/MOE\/FCSIT\/03","RP012C-13AFR"]}]},{"DOI":"10.13039\/501100002383","name":"Deanship of Scientific Research at King Saud University for its funding this Prolific Research Group","doi-asserted-by":"publisher","award":["PRG-1436-16"],"award-info":[{"award-number":["PRG-1436-16"]}],"id":[{"id":"10.13039\/501100002383","id-type":"DOI","asserted-by":"publisher"}]}],"content-domain":{"domain":[],"crossmark-restriction":false},"short-container-title":["IEEE Access"],"published-print":{"date-parts":[[2016]]},"DOI":"10.1109\/access.2016.2631543","type":"journal-article","created":{"date-parts":[[2016,12,30]],"date-time":"2016-12-30T19:19:58Z","timestamp":1483125598000},"page":"9800-9820","source":"Crossref","is-referenced-by-count":15,"title":["Towards an Applicability of Current Network Forensics for Cloud Networks: A SWOT Analysis"],"prefix":"10.1109","volume":"4","author":[{"ORCID":"https:\/\/orcid.org\/0000-0002-5725-6184","authenticated-orcid":false,"given":"Suleman","family":"Khan","sequence":"first","affiliation":[]},{"given":"Abdullah","family":"Gani","sequence":"additional","affiliation":[]},{"given":"Ainuddin Wahid","family":"Abdul Wahab","sequence":"additional","affiliation":[]},{"given":"Salman","family":"Iqbal","sequence":"additional","affiliation":[]},{"given":"Ahmed","family":"Abdelaziz","sequence":"additional","affiliation":[]},{"given":"Omar Adil","family":"Mahdi","sequence":"additional","affiliation":[]},{"given":"Abdelmuttlib Ibrahim","family":"Abdallaahmed","sequence":"additional","affiliation":[]},{"given":"Muhammad","family":"Shiraz","sequence":"additional","affiliation":[]},{"given":"Yusor Rafid Bahar","family":"Al-Mayouf","sequence":"additional","affiliation":[]},{"given":"Ziar","family":"Khan","sequence":"additional","affiliation":[]},{"given":"Kwangman","family":"Ko","sequence":"additional","affiliation":[]},{"given":"Muhammad Khurram","family":"Khan","sequence":"additional","affiliation":[]},{"given":"Victor","family":"Chang","sequence":"additional","affiliation":[]}],"member":"263","reference":[{"key":"ref73","doi-asserted-by":"publisher","DOI":"10.1080\/09544820500275180"},{"key":"ref72","doi-asserted-by":"publisher","DOI":"10.1080\/13678860701718760"},{"key":"ref71","doi-asserted-by":"publisher","DOI":"10.1108\/17554251011064837"},{"key":"ref70","first-page":"801","article-title":"Recent research on team and organizational diversity: SWOT analysis and implications","volume":"29","author":"jackson","year":"2003","journal-title":"J Manage"},{"key":"ref76","doi-asserted-by":"publisher","DOI":"10.1109\/ICCGI.2009.53"},{"key":"ref77","first-page":"236","article-title":"VoIP network forensic analysis with digital evidence procedure","author":"lin","year":"2010","journal-title":"Proc 6th Int Conf Netw Comput Adv Inf Manage (NCM)"},{"key":"ref74","doi-asserted-by":"publisher","DOI":"10.1068\/a38262"},{"key":"ref39","first-page":"439","article-title":"A survey of password attacks and comparative analysis on methods for secure authentication","volume":"19","author":"raza","year":"2012","journal-title":"World Appl Sci J"},{"key":"ref75","first-page":"181","article-title":"A study on the live forensic techniques for anomaly detection in user terminals","volume":"7","author":"kim","year":"2013","journal-title":"Int J Secur Appl"},{"key":"ref38","doi-asserted-by":"publisher","DOI":"10.17487\/rfc2827"},{"key":"ref78","first-page":"1","article-title":"Topology discovery in software defined networks: Threats, taxonomy, and state-of-the-art","volume":"pp","author":"khan","year":"2016","journal-title":"IEEE Commun Surveys Tut"},{"key":"ref79","doi-asserted-by":"publisher","DOI":"10.1002\/wcm.2715"},{"key":"ref33","first-page":"4902","article-title":"Survey on network virtualization using OpenFlow: Taxonomy, opportunities, and open issues","volume":"10","author":"abdelaziz","year":"2016","journal-title":"KSII Trans Internet Inf Syst"},{"key":"ref32","doi-asserted-by":"publisher","DOI":"10.1016\/j.diin.2005.04.002"},{"key":"ref31","first-page":"11","article-title":"An event-based digital forensic investigation framework","author":"carrier","year":"2004","journal-title":"Proc Digital Forensic Res Workshop"},{"key":"ref30","first-page":"1","article-title":"An examination of digital forensic models","volume":"1","author":"reith","year":"2002","journal-title":"Int l J Digital Evidence"},{"key":"ref37","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-642-24037-9_57"},{"key":"ref36","doi-asserted-by":"publisher","DOI":"10.1109\/MIC.2006.5"},{"key":"ref35","doi-asserted-by":"publisher","DOI":"10.1109\/SECPRI.2000.848453"},{"article-title":"Guide to integrating forensic techniques into incident response","year":"2006","author":"grance","key":"ref34"},{"key":"ref60","doi-asserted-by":"crossref","first-page":"433","DOI":"10.1016\/j.jnca.2010.02.002","article-title":"Better network traffic identification through the independent combination of techniques","volume":"33","author":"callado","year":"2010","journal-title":"J Netw Comput Appl"},{"key":"ref62","doi-asserted-by":"publisher","DOI":"10.1016\/j.jnca.2014.04.009"},{"key":"ref61","doi-asserted-by":"publisher","DOI":"10.1109\/TST.2013.6574680"},{"key":"ref63","doi-asserted-by":"publisher","DOI":"10.1007\/s10723-014-9323-6"},{"key":"ref28","doi-asserted-by":"publisher","DOI":"10.11591\/closer.v1i3.803"},{"key":"ref64","doi-asserted-by":"publisher","DOI":"10.1109\/HPCC.2008.172"},{"key":"ref27","doi-asserted-by":"publisher","DOI":"10.1016\/j.cose.2013.05.001"},{"key":"ref65","doi-asserted-by":"publisher","DOI":"10.1007\/s10723-013-9255-6"},{"key":"ref66","doi-asserted-by":"publisher","DOI":"10.1145\/1721654.1721672"},{"key":"ref29","first-page":"27","article-title":"A road map for digital forensic research","author":"palmer","year":"2001","journal-title":"Proc Digital Forensic Res Workshop"},{"key":"ref67","doi-asserted-by":"publisher","DOI":"10.1007\/s11227-012-0846-y"},{"key":"ref68","doi-asserted-by":"publisher","DOI":"10.1016\/j.future.2008.12.001"},{"key":"ref69","doi-asserted-by":"publisher","DOI":"10.1007\/s11227-014-1187-9"},{"key":"ref2","doi-asserted-by":"publisher","DOI":"10.1007\/978-1-4471-4189-1_8"},{"key":"ref1","first-page":"203","article-title":"Cloud computing, virtualization, and wireless networks","author":"moeller","year":"2014","journal-title":"Executive&#x2019;s Guide to COSO Internal Controls Understanding and Implementing the New Framework"},{"key":"ref20","doi-asserted-by":"publisher","DOI":"10.1016\/j.diin.2010.02.003"},{"key":"ref22","doi-asserted-by":"publisher","DOI":"10.1016\/j.jnca.2016.08.016"},{"key":"ref21","doi-asserted-by":"publisher","DOI":"10.1016\/S1353-4858(14)70112-6"},{"key":"ref24","doi-asserted-by":"publisher","DOI":"10.1017\/CBO9780511807046"},{"key":"ref23","doi-asserted-by":"publisher","DOI":"10.1109\/SADFE.2011.17"},{"key":"ref26","first-page":"78","article-title":"Detecting the source of TCP SYN flood attack using IP trace back","volume":"71","author":"katiravan","year":"2012","journal-title":"Eur J Sci Res ISSN"},{"journal-title":"Secrets and Lies Digital Security in a Networked World","year":"2011","author":"schneier","key":"ref25"},{"key":"ref50","doi-asserted-by":"publisher","DOI":"10.1109\/NetCoM.2009.45"},{"key":"ref51","article-title":"WDARS: A weighted data aggregation routing strategy with minimum link cost in event-driven WSNs","volume":"2016","author":"mahdi","year":"2016","journal-title":"J Sensors"},{"key":"ref93","doi-asserted-by":"publisher","DOI":"10.1007\/978-1-4471-6308-4_5"},{"key":"ref92","doi-asserted-by":"publisher","DOI":"10.1017\/CBO9781139174084"},{"key":"ref91","doi-asserted-by":"publisher","DOI":"10.1016\/j.forsciint.2015.08.011"},{"key":"ref90","doi-asserted-by":"publisher","DOI":"10.1007\/s10723-012-9238-z"},{"journal-title":"A Novel Anti-Phishing Framework Based on Honey-pots","year":"2009","author":"li","key":"ref59"},{"key":"ref58","first-page":"158","article-title":"Exploring attack graph for cost-benefit security hardening: A probabilistic approach","volume":"32","author":"zhang","year":"2012","journal-title":"Comput Secur"},{"key":"ref57","article-title":"Acquisition of evidence from network intrusion detection systems","author":"cusack","year":"2013","journal-title":"Proc 11th Austral Digit Forensics Conf"},{"key":"ref56","doi-asserted-by":"publisher","DOI":"10.1109\/CSAC.2003.1254306"},{"key":"ref55","doi-asserted-by":"publisher","DOI":"10.1109\/AINA.2005.164"},{"key":"ref54","doi-asserted-by":"publisher","DOI":"10.1016\/j.proeng.2012.01.239"},{"key":"ref53","doi-asserted-by":"publisher","DOI":"10.1109\/MNET.2013.6678929"},{"key":"ref52","doi-asserted-by":"publisher","DOI":"10.1109\/SNPD.2013.75"},{"key":"ref10","doi-asserted-by":"publisher","DOI":"10.1109\/SKG.2012.28"},{"key":"ref11","doi-asserted-by":"publisher","DOI":"10.1155\/2014\/547062"},{"key":"ref40","doi-asserted-by":"crossref","first-page":"759","DOI":"10.1007\/978-1-4419-5906-5_324","article-title":"Man-in-the-middle attack","author":"desmedt","year":"2011","journal-title":"Encyclopaedia of Cryptography and Security"},{"key":"ref12","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-642-29920-9_44"},{"key":"ref13","doi-asserted-by":"publisher","DOI":"10.1109\/ISSPIT.2009.5407485"},{"key":"ref14","doi-asserted-by":"publisher","DOI":"10.1109\/FSKD.2014.6980912"},{"key":"ref15","doi-asserted-by":"publisher","DOI":"10.1016\/j.jnca.2016.03.005"},{"key":"ref82","doi-asserted-by":"publisher","DOI":"10.1109\/ISI.2007.379535"},{"key":"ref16","doi-asserted-by":"publisher","DOI":"10.1016\/B978-1-59749-969-9.00011-0"},{"key":"ref81","doi-asserted-by":"publisher","DOI":"10.1109\/CyberSec.2012.6246116"},{"key":"ref17","doi-asserted-by":"publisher","DOI":"10.1016\/j.comcom.2013.05.005"},{"key":"ref84","first-page":"689","article-title":"Design and implementation of network forensic system based on intrusion detection analysis","author":"liu","year":"2012","journal-title":"Proc Int Conf Control Eng Commun Technol (ICCECT)"},{"key":"ref18","doi-asserted-by":"publisher","DOI":"10.1016\/j.diin.2008.05.016"},{"key":"ref83","doi-asserted-by":"publisher","DOI":"10.1016\/j.inffus.2009.01.001"},{"key":"ref19","doi-asserted-by":"publisher","DOI":"10.1016\/j.future.2013.10.023"},{"key":"ref80","doi-asserted-by":"publisher","DOI":"10.1109\/ARES.2012.58"},{"key":"ref89","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-642-23822-2_23"},{"key":"ref4","doi-asserted-by":"publisher","DOI":"10.1109\/NetGames.2012.6404024"},{"journal-title":"Cloud Computing Concepts Technology & Architecture","year":"2013","author":"erl","key":"ref3"},{"key":"ref6","first-page":"19","article-title":"A model for managing uncertainty on the cloud","volume":"14","author":"farah","year":"2013","journal-title":"Journal of Management Policy and Practice"},{"key":"ref5","first-page":"800","article-title":"The NIST definition of cloud computing","author":"mell","year":"2011"},{"key":"ref85","first-page":"242","article-title":"Worm origin identification using random moonwalks","author":"xie","year":"2005","journal-title":"Proc IEEE Symp Secur Privacy"},{"key":"ref8","doi-asserted-by":"publisher","DOI":"10.1016\/j.ins.2013.04.009"},{"key":"ref86","first-page":"1","article-title":"On a reference model of distributed cooperative network foren- sics system","author":"ren","year":"2004","journal-title":"proc iiWAS"},{"key":"ref7","doi-asserted-by":"publisher","DOI":"10.1109\/ICPPW.2010.45"},{"key":"ref49","doi-asserted-by":"publisher","DOI":"10.1016\/S1005-8885(09)60456-8"},{"key":"ref87","doi-asserted-by":"publisher","DOI":"10.1109\/ICNC.2007.345"},{"key":"ref88","doi-asserted-by":"publisher","DOI":"10.1109\/FUTURETECH.2010.5482741"},{"key":"ref9","doi-asserted-by":"publisher","DOI":"10.1109\/I4CT.2014.6914202"},{"key":"ref46","doi-asserted-by":"publisher","DOI":"10.1109\/CIT.2009.108"},{"key":"ref45","doi-asserted-by":"publisher","DOI":"10.1109\/ISPAW.2011.27"},{"key":"ref48","doi-asserted-by":"publisher","DOI":"10.1109\/ICETC.2010.5529413"},{"key":"ref47","doi-asserted-by":"publisher","DOI":"10.1016\/j.phpro.2012.02.260"},{"key":"ref42","doi-asserted-by":"publisher","DOI":"10.1109\/ICCE-TW.2015.7216975"},{"key":"ref41","doi-asserted-by":"publisher","DOI":"10.1145\/1326257.1326258"},{"key":"ref44","doi-asserted-by":"publisher","DOI":"10.1145\/2906149"},{"key":"ref43","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-540-45215-7_1"}],"container-title":["IEEE Access"],"original-title":[],"link":[{"URL":"http:\/\/xplorestaging.ieee.org\/ielx7\/6287639\/7419931\/07802631.pdf?arnumber=7802631","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2022,1,12]],"date-time":"2022-01-12T16:26:42Z","timestamp":1642004802000},"score":1,"resource":{"primary":{"URL":"http:\/\/ieeexplore.ieee.org\/document\/7802631\/"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2016]]},"references-count":93,"URL":"https:\/\/doi.org\/10.1109\/access.2016.2631543","relation":{},"ISSN":["2169-3536"],"issn-type":[{"type":"electronic","value":"2169-3536"}],"subject":[],"published":{"date-parts":[[2016]]}}}