Detail publikačního výsledku

Network Forensics in GSE Overlay Networks

PLUSKAL, J.; VONDRÁČEK, M.; RYŠAVÝ, O.

Originální název

Network Forensics in GSE Overlay Networks

Anglický název

Network Forensics in GSE Overlay Networks

Druh

Stať ve sborníku v databázi WoS či Scopus

Originální abstrakt

Captured network traffic increased on its importance as a data-source for law enforcement crime investigation because everything is becoming internet connected and a suspect's phone or computer communication might yield crucial evidence. There are many points in the Internet Service Provider's infrastructure where the network traffic might be captured. One of them is satellite connection, DVB-S2, which use Generic Stream Encapsulation (GSE) to carry IP traffic. Current tools for network traffic forensic analysis do not support GSE. In this paper, we describe GSE and how we implemented support for GSE into Netfox Detective.

Anglický abstrakt

Captured network traffic increased on its importance as a data-source for law enforcement crime investigation because everything is becoming internet connected and a suspect's phone or computer communication might yield crucial evidence. There are many points in the Internet Service Provider's infrastructure where the network traffic might be captured. One of them is satellite connection, DVB-S2, which use Generic Stream Encapsulation (GSE) to carry IP traffic. Current tools for network traffic forensic analysis do not support GSE. In this paper, we describe GSE and how we implemented support for GSE into Netfox Detective.

Klíčová slova

network traffic forensics, generic streaming encapsulation, network forensic and analysis tool

Klíčová slova v angličtině

network traffic forensics, generic streaming encapsulation, network forensic and analysis tool

Autoři

PLUSKAL, J.; VONDRÁČEK, M.; RYŠAVÝ, O.

Rok RIV

2020

Vydáno

27.04.2019

Nakladatel

Association for Computing Machinery

Místo

Bukurešť

ISBN

978-1-4503-7636-5

Kniha

ECBS '19: Proceedings of the 6th Conference on the Engineering of Computer Based Systems

Strany od

1

Strany do

10

Strany počet

10

URL

http://doi.acm.org/10.1145/3352700.3352712

BibTex

@inproceedings{BUT161449,
  author="Jan {Pluskal} and Martin {Vondráček} and Ondřej {Ryšavý}",
  title="Network Forensics in GSE Overlay Networks",
  booktitle="ECBS '19: Proceedings of the 6th Conference on the Engineering of Computer Based Systems",
  year="2019",
  pages="1--10",
  publisher="Association for Computing Machinery",
  address="Bukurešť",
  doi="10.1145/3352700.3352712",
  isbn="978-1-4503-7636-5",
  url="http://doi.acm.org/10.1145/3352700.3352712"
}

Dokumenty

ECBS
ECBS19___GSE___Network_Forensics_in_GSE_Overlay_Networks