Event Reconstruction in a Digital Forensics Investigation Model for a Smart Home
Abstract
Abstract The use of Internet of Things technology has made life more comfortable for human beings. This is evidenced by the various applications of this technology, such as smart homes. A typical smart home comprises multiple devices that communicate seamlessly with one another. As a result, physical things can share and collect data. The outcome of the communication is that a lot of data is generated and shared, but not stored. This makes it very difficult to conduct a digital forensic investigation when a cybercriminal commits an attack. Moreover, reconstructing events that occurred poses a security challenge. Therefore, this study sought to address this challenge by developing a digital forensic investigation model for a smart home that incorporates event reconstruction. Accordingly, various methodologies, such as systematic literature review, design science, and rapid prototyping, were used to conduct the study within the digital forensics model. The model includes key components such as user and device registration, real-time log management, and an event timeline. The study established that the model successfully captured real-time logs and generated an event timeline, thereby improving the level of certainty during the forensic investigation of a smart home. Despite the model’s success, challenges arose with data synchronization, sensor accuracy, calibration, and hardware and software integration. The study concludes that incorporating event reconstruction in a digital forensic investigation model for a smart home can significantly reduce the time taken to conduct forensic investigations. This study contributes to the field by providing a practical solution for event reconstruction. It is recommended that IoT device manufacturers adopt the model to enhance the digital forensic capabilities of their devices, enforce adapted legal frameworks, expand research with advanced techniques, and build collaborative ecosystems to ensure smart homes produce reliable forensic evidence and strengthen digital investigations.