Date Published: February 8, 2023
Comments Due: March 31, 2023 (public comment period is CLOSED)
Email Questions to:
sp800-201@nist.gov
This document addresses the need to support a cloud system’s forensic readiness, which is the ability to quickly and effectively collect digital evidence with minimal investigation costs.
The document presents a reference architecture to help users understand the forensic challenges that might exist for an organization’s cloud system based on its architectural capabilities, as well as the mitigation strategies that might be required. The reference architecture is both a methodology and an initial implementation that can be used by cloud system architects, cloud engineers, forensic practitioners, and cloud consumers to analyze and review their cloud computing architectures for forensic readiness.
The public comment period for this initial public draft is open through March 31, 2023. We encourage you to use this comment template when preparing your comments on the draft. The draft also links to this Forensic Reference Architecture Data Set.
NOTE: A call for patent claims is included on page ii of this document. For additional information, see the Information Technology Laboratory (ITL) Patent Policy--Inclusion of Patents in ITL Publications.
None selected
Publication:
https://doi.org/10.6028/NIST.SP.800-201.ipd
Download URL
Supplemental Material:
Comment template (xlsx)
Forensic Reference Architecture Data Set (xlsx)
Document History:
02/08/23: SP 800-201 (Draft)
07/30/24: SP 800-201 (Final)