Suggestions in Courses

See all course results

Suggestions in News

  • No suggestions found.

Suggestions in Events

See all events results
London Met Website

Real-time forensic analysis in internet of things environments: bridging readiness and investigation for cyber resilience

Tools
Lists

Kuku, Oyeyemi, Chrysikos, Alexandros and Salekzamankhani, Shahram (2025) Real-time forensic analysis in internet of things environments: bridging readiness and investigation for cyber resilience. BOHR International Journal of Internet of things, Artificial Intelligence and Machine Learning, 4 (1). pp. 29-38. ISSN 2583-5521

Abstract

With the exponential expansion of the Internet of Things (IoT) networks, the threat of cyberattacks has become particularly high across vulnerable sectors such as healthcare, smart infrastructure, and industrial control systems. Conventional centralized forensics has disadvantages in scalability, data privacy, and the ability to identify synchronized attacks quickly. This paper addresses the above shortcomings by proposing a new Federated Graph Convolutional Network (Fed-GCN) architecture for real-time forensic examination in distributed IoT settings. Its principal goal is to build a privacy-preserving graph-based solution that supports readiness in the forensic environment and defense against the transmission of raw data. The innovations in the work are the conjoint use of graph neural networks to detect contextual attacks, federated learning to ensure data confidentiality, and integration with blockchain-based logging to bind the evidence chain and produce immutable evidence. Among other outcomes, the proposed Fed-GCN architecture was coded in Python and tested on a multi-class intrusion dataset including 18,428 data samples and 79 features. The experimental performance is better than that of traditional methods, with 97.3% accuracy, a 94.2% F1-score, and a low false-positive rate of 6.7%. 100% forensic integrity check and evidence verification were achieved, with 96.4% evidence completeness in the logs and low communication overhead, demonstrating that it can be deployed in edge-based environments. Therefore, the proposed Fed-GCN can play a significant role in implementing forensic intelligence in IoT ecosystems by providing scalable, secure, and regulation-compliant solutions.

Documents
11392:56983
[thumbnail of bijiam-2025-30_compressed.pdf]
Preview
bijiam-2025-30_compressed.pdf - Published Version
Available under License Creative Commons Attribution 4.0.

Download (604kB) | Preview
Details
Title:
Real-time forensic analysis in internet of things environments: bridging readiness and investigation for cyber resilience
Creators:
Kuku, Oyeyemi, Chrysikos, Alexandros and Salekzamankhani, Shahram
Identification Number:
10.54646/bijiam.2025.30
Official URL:
https://doi.org/10.54646/bijiam.2025.30
Date:
23 November 2025
Subjects:
000 Computer science, information & general works
Department:
School of Computing and Digital Media
Publisher:
BOHR Publishers
Uncontrolled Keywords:
IoT forensics; real-time analysis; forensic readiness; cyber resilience; digital investigation; securityframework; edge computing; machine learning
Record
URI:
https://repository.londonmet.ac.uk/id/eprint/11392
Item Type:
Article
Depositing User:
Pub Router
SWORD Depositor:
Pub Router
Date Deposited:
01 Apr 2026 08:24
Revision:
10
Last Modified:
01 Apr 2026 08:24
View Item View Item
Altmetric

View Altmetric information about this item.

CORE (COnnecting REpositories)