Result Details
Fast RTP Detection and Codecs Classification in Internet Traffic
Ryšavý Ondřej, doc. Ing., Ph.D., DIFS (FIT)
Kmeť Martin, Ing., DIFS (FIT), DCGM (FIT)
This paper presents a fast multi-stage method for on-line detection of RTP streams and codec identification of transmitted voice or video traffic. The method includes an RTP detector that filters packets based on specific values from UDP and RTP headers. When an RTP stream is successfully detected, codec identification is applied using codec feature sets. The paper shows advantages and limitations of the method and its comparison with other approaches. The method was implemented as a part of network forensics framework NetFox developed in project SEC6NET. Results show that the method can be successfully used for Lawful Interception as well as for network monitoring.
network forensics, RTP detection, codec identification, VoIP
@article{BUT111596,
author="Petr {Matoušek} and Ondřej {Ryšavý} and Martin {Kmeť}",
title="Fast RTP Detection and Codecs Classification in Internet Traffic",
journal="Journal of Digital Forensics Security and Law",
year="2014",
volume="2014",
number="2",
pages="99--110",
doi="10.15394/jdfsl.2014.1174",
issn="1558-7215",
url="https://commons.erau.edu/jdfsl/vol9/iss2/9/"
}Výzkum pokročilých metod ICT a jejich aplikace, BUT, Vnitřní projekty VUT, FIT-S-14-2299, start: 2014-01-01, end: 2016-12-31, completed