Detail publikace

Network Forensics in GSE Overlay Networks

PLUSKAL, J. VONDRÁČEK, M. RYŠAVÝ, O.

Originální název

Network Forensics in GSE Overlay Networks

Typ

článek ve sborníku ve WoS nebo Scopus

Jazyk

angličtina

Originální abstrakt

Captured network traffic increased on its importance as a data-source for law enforcement crime investigation because everything is becoming internet connected and a suspect's phone or computer communication might yield crucial evidence. There are many points in the Internet Service Provider's infrastructure where the network traffic might be captured. One of them is satellite connection, DVB-S2, which use Generic Stream Encapsulation (GSE) to carry IP traffic. Current tools for network traffic forensic analysis do not support GSE. In this paper, we describe GSE and how we implemented support for GSE into Netfox Detective.

Klíčová slova

network traffic forensics, generic streaming encapsulation, network forensic and analysis tool

Autoři

PLUSKAL, J.; VONDRÁČEK, M.; RYŠAVÝ, O.

Vydáno

27. 4. 2019

Nakladatel

Association for Computing Machinery

Místo

Bukurešť

ISBN

978-1-4503-7636-5

Kniha

ECBS '19: Proceedings of the 6th Conference on the Engineering of Computer Based Systems

Strany od

1

Strany do

10

Strany počet

10

URL

http://doi.acm.org/10.1145/3352700.3352712

BibTex

@inproceedings{BUT161449,
  author="Jan {Pluskal} and Martin {Vondráček} and Ondřej {Ryšavý}",
  title="Network Forensics in GSE Overlay Networks",
  booktitle="ECBS '19: Proceedings of the 6th Conference on the Engineering of Computer Based Systems",
  year="2019",
  pages="1--10",
  publisher="Association for Computing Machinery",
  address="Bukurešť",
  doi="10.1145/3352700.3352712",
  isbn="978-1-4503-7636-5",
  url="http://doi.acm.org/10.1145/3352700.3352712"
}