Paper Abstract and Keywords |
Presentation |
2008-11-13 13:00
On Host-based Packet Capturing Mechanism for Network Forensics Shunsuke Inai (Nagoya Institute of Technology), Youji Fukuta (Aichi Univ. of Edu.), Shoji Mizobuchi (Kinki Univ.), Masami Mohri (Gifu Univ.), Yoshiaki Shiraishi (Nagoya Institute of Technology), Ryoji Noguchi (Toyotsu Syscom Corp.) ISEC2008-73 OIS2008-49 |
Abstract |
(in Japanese) |
(See Japanese page) |
(in English) |
Digital forensics is application of computer crime investigation and analysis techniques in the interests of determing potential legal evidence.
In this paper, we will give some considerations about host-based network forensic system that communication packets are collected and preserved in each monitored host.
The system has advantages in terms of comprehending communication state, however its each process requires %ensuring reliability, availability and maintaining legal probative force.
We show host-based packet capturing mechanism and process flow, which consist of log collection, preservation , for satisfying the above requirement. |
Keyword |
(in Japanese) |
(See Japanese page) |
(in English) |
Network forensic / Hysteresis signature / Security device / Filter driver / / / / |
Reference Info. |
IEICE Tech. Rep., vol. 108, Nov. 2008. |
Paper # |
|
Date of Issue |
2008-11-06 (ISEC, OIS) |
ISSN |
Print edition: ISSN 0913-5685 Online edition: ISSN 2432-6380 |
Copyright and reproduction |
All rights are reserved and no part of this publication may be reproduced or transmitted in any form or by any means, electronic or mechanical, including photocopy, recording, or any information storage and retrieval system, without permission in writing from the publisher. Notwithstanding, instructors are permitted to photocopy isolated articles for noncommercial classroom use without fee. (License No.: 10GA0019/12GB0052/13GB0056/17GB0034/18GB0034) |
Download PDF |
ISEC2008-73 OIS2008-49 |
|