Publication detail

Fast RTP Detection and Codecs Classification in Internet Traffic

MATOUŠEK, P. RYŠAVÝ, O. KMEŤ, M.

Original Title

Fast RTP Detection and Codecs Classification in Internet Traffic

Type

journal article - other

Language

English

Original Abstract

This paper presents a fast multi-stage method for on-line detection of RTP streams and codec identification of transmitted voice or video traffic. The method includes an RTP detector that filters packets based on specific values from UDP and RTP headers. When an RTP stream is successfully detected, codec identification is applied using codec feature sets. The paper shows advantages and limitations of the method and its comparison with other approaches. The method was implemented as a part of network forensics framework NetFox developed in project SEC6NET. Results show that the method can  be  successfully used for Lawful Interception as well as for network monitoring. 

Keywords

network forensics, RTP detection, codec identification, VoIP

Authors

MATOUŠEK, P.; RYŠAVÝ, O.; KMEŤ, M.

RIV year

2014

Released

18. 9. 2014

ISBN

1558-7215

Periodical

The Journal of Digital Forensics, Security and Law

Year of study

2014

Number

2

State

United States of America

Pages from

99

Pages to

110

Pages count

11

URL

BibTex

@article{BUT111596,
  author="Petr {Matoušek} and Ondřej {Ryšavý} and Martin {Kmeť}",
  title="Fast RTP Detection and Codecs Classification in Internet Traffic",
  journal="The Journal of Digital Forensics, Security and Law",
  year="2014",
  volume="2014",
  number="2",
  pages="99--110",
  doi="10.15394/jdfsl.2014.1174",
  issn="1558-7215",
  url="https://commons.erau.edu/jdfsl/vol9/iss2/9/"
}

Documents