| Presentation | 2008-11-13 On Host-based Packet Capturing Mechanism for Network Forensics Shunsuke INAI, Youji FUKUTA, Shoji MIZOBUCHI, Masami MOHRI, Yoshiaki SHIRAISHI, Ryoji NOGUCHI, |
|---|---|
| PDF Download Page |  PDF download Page Link |
| Abstract(in Japanese) | (See Japanese page) |
| Abstract(in English) | Digital forensics is application of computer crime investigation and analysis techniques in the interests of determing potential legal evidence. In this paper, we will give some considerations about host-based network forensic system that communication packets are collected and preserved in each monitored host. The system has advantages in terms of comprehending communication state, however its each process requires ensuring reliability, availability and maintaining legal probative force. We show host-based packet capturing mechanism and process flow, which consist of log collection, preservation, for satisfying the above requirement. |
| Keyword(in Japanese) | (See Japanese page) |
| Keyword(in English) | Network forensic / Hysteresis signature / Security device / Filter driver |
| Paper # | ISEC2008-73,OIS2008-49 |
| Date of Issue |
| Conference Information | |
| Committee | ISEC |
|---|---|
| Conference Date | 2008/11/6(1days) |
| Place (in Japanese) | (See Japanese page) |
| Place (in English) | |
| Topics (in Japanese) | (See Japanese page) |
| Topics (in English) | |
| Chair | |
| Vice Chair | |
| Secretary | |
| Assistant | |
| Paper Information | |
| Registration To | Information Security (ISEC) |
|---|---|
| Language | JPN |
| Title (in Japanese) | (See Japanese page) |
| Sub Title (in Japanese) | (See Japanese page) |
| Title (in English) | On Host-based Packet Capturing Mechanism for Network Forensics |
| Sub Title (in English) | |
| Keyword(1) | Network forensic |
| Keyword(2) | Hysteresis signature |
| Keyword(3) | Security device |
| Keyword(4) | Filter driver |
| 1st Author's Name | Shunsuke INAI |
| 1st Author's Affiliation | Nagoya Institute of Technology() |
| 2nd Author's Name | Youji FUKUTA |
| 2nd Author's Affiliation | Aichi University of Education |
| 3rd Author's Name | Shoji MIZOBUCHI |
| 3rd Author's Affiliation | Kinki University |
| 4th Author's Name | Masami MOHRI |
| 4th Author's Affiliation | Gifu University |
| 5th Author's Name | Yoshiaki SHIRAISHI |
| 5th Author's Affiliation | Nagoya Institute of Technology |
| 6th Author's Name | Ryoji NOGUCHI |
| 6th Author's Affiliation | Toyotsu Syscom Corporation |
| Date | 2008-11-13 |
| Paper # | ISEC2008-73,OIS2008-49 |
| Volume (vol) | vol.108 |
| Number (no) | 284 |
| Page | pp.pp.- |
| #Pages | 6 |
| Date of Issue | |