Result Details

Network Forensics in GSE Overlay Networks

PLUSKAL, J.; VONDRÁČEK, M.; RYŠAVÝ, O. Network Forensics in GSE Overlay Networks. In ECBS '19: Proceedings of the 6th Conference on the Engineering of Computer Based Systems. Bukurešť: Association for Computing Machinery, 2019. p. 1-10. ISBN: 978-1-4503-7636-5.

Type

conference paper

Language

English

Authors

Pluskal Jan, Ing., Ph.D., DIFS (FIT)
Vondráček Martin, Ing.
Ryšavý Ondřej, doc. Ing., Ph.D., DIFS (FIT)

Abstract

Captured network traffic increased on its importance as a data-source for law enforcement crime investigation because everything is becoming internet connected and a suspect's phone or computer communication might yield crucial evidence. There are many points in the Internet Service Provider's infrastructure where the network traffic might be captured. One of them is satellite connection, DVB-S2, which use Generic Stream Encapsulation (GSE) to carry IP traffic. Current tools for network traffic forensic analysis do not support GSE. In this paper, we describe GSE and how we implemented support for GSE into Netfox Detective.

Keywords

network traffic forensics, generic streaming encapsulation, network forensic and analysis tool

URL

http://doi.acm.org/10.1145/3352700.3352712

Published

2019

Pages

1–10

Proceedings

ECBS '19: Proceedings of the 6th Conference on the Engineering of Computer Based Systems

Conference

6th Conference on the Engineering of Computer Based Systems

ISBN

978-1-4503-7636-5

Publisher

Association for Computing Machinery

Place

Bukurešť

DOI

10.1145/3352700.3352712

UT WoS

000525376600012

EID Scopus

2-s2.0-85075860652

BibTeX

@inproceedings{BUT161449,
  author="Jan {Pluskal} and Martin {Vondráček} and Ondřej {Ryšavý}",
  title="Network Forensics in GSE Overlay Networks",
  booktitle="ECBS '19: Proceedings of the 6th Conference on the Engineering of Computer Based Systems",
  year="2019",
  pages="1--10",
  publisher="Association for Computing Machinery",
  address="Bukurešť",
  doi="10.1145/3352700.3352712",
  isbn="978-1-4503-7636-5",
  url="http://doi.acm.org/10.1145/3352700.3352712"
}

Files

Projects

Nástroje, metody a technologie ICT pro podporu konceptu smart cities, BUT, Vnitřní projekty VUT, FIT-S-17-3964, start: 2017-03-01, end: 2020-02-29, completed

Research groups

NES@FIT - Networks and distributed systems research group (RG NES@FIT)

Departments

Department of Information Systems (DIFS)