Network Forensics: A Practical Introduction

View Sample PDF

Author(s): Michael I. Cohen (Australian Federal Police College, Australia)
Copyright: 2010
Pages: 28
Source title: Handbook of Research on Computational Forensics, Digital Crime, and Investigation: Methods and Solutions
Source Author(s)/Editor(s): Chang-Tsun Li (University of Warwick, UK)
DOI: 10.4018/978-1-60566-836-9.ch012

Keywords: Digital Crime & Forensics / Information Science Reference / IT Security and Ethics / Security & Forensics

Purchase

View Network Forensics: A Practical Introduction on the publisher's website for pricing and purchasing information.

Abstract

Network Forensics is a powerful sub-discipline of digital forensics. This chapter examines innovations in forensic network acquisition, and in particular in attribution of network sources behind network address translated gateways. A novel algorithm for automatically attributing traffic to different sources is presented and then demonstrated. Finally we discuss some innovations in decoding of forensic network captures. We illustrate how web mail can be extracted and rendered and in particular give the example of Gmail as a modern AJAX based webmail provider of forensic significance.

The IRMA Community

Research IRM

Network Forensics: A Practical Introduction

Purchase

Abstract

Related Content

IRMA Sponsors