Forensic Analysis of Residual Artifacts on Bitnami Hadoop
The growth of Hadoop usages is estimated to become increasingly larger over the coming years. This also makes it to become a target of criminals. Forensic researchers are moving towards the investigation researches of locating and documenting the residual artifacts to trace the criminal activities on Hadoop Platform. Bitnami is one of the popular Hadoop Platforms, providing the Big Data solution to run own Hadoop server in the cloud. The retrieval of digital evidence to embody the crime scenes on Bitnami is a challenge in forensic investigation, due to its complex infrastructure and, lack of knowledge on location of digital evidence. This paper proposes a forensic investigation framework for locating and discovering the residual artifacts that remain on the Bitnami Hadoop Stack. The remained artifacts can provide the potential evidences for forensic examiners to extract the evidences, and reconstruct the crime scene.
Bitnami Hadoop Stack,crimes, forensics investigation, residual artifacts