Abstract:
The unique identities of remote sensing, monitoring, self-actuating, self–adapting and self-configuring “things” in Internet
of Things (IoT) has come out as fundamental building blocks for the development of “smart environments”. This experience has
begun to be felt across different IoT-based domains like healthcare, surveillance, energy systems, home appliances, industrial
machines, smart grids and smart cities. These developments have, however, brought about a more complex and heterogeneous
environment which is slowly becoming a home to cyber attackers. Digital Forensic Readiness (DFR) though can be employed as a
mechanism for maximizing the potential use of digital evidence while minimizing the cost of conducting a digital forensic investigation
process in IoT environments in case of an incidence. The problem addressed in this paper, therefore, is that at the time of writing this
paper, there still exist no IoT architectures that have a DFR capability that is able to attain incident preparedness across IoT
environments as a mechanism of preparing for post-event response process. It is on this premise, that the authors are proposing an
architecture for incorporating DFR to IoT domain for proper planning and preparing in the case of security incidents. It is
paramount to note that the DFR mechanism in IoT discussed in this paper complies with ISO/IEC 27043: 2015, 27030:2012 and
27017: 2015 international standards. It is the authors’ opinion that the architecture is holistic and very significant in IoT forensics.
