We found a match
Your institution may have access to this item. Find your institution then sign in to continue.
- Title
Network Forensic Evidence Generation and Verification Scheme (NFEGVS).
- Authors
Kim, Hyungseok; Kim, Eunjin; Kang, Seungmo; Kim, Huy
- Abstract
One of the critical success factors of the cybercrime investigation is exact tracing back of hacker's origin. However, criminals can easily modify or delete log files on victim machines. In addition, criminals can easily modify the source IP address so that network packet cannot be a strong evidence because it is easily spoofed. This study suggests a scheme for network forensic evidence generation and verification. This proposed scheme can show the attacker's source location and guarantee the integrity of address fields. This scheme also can minimize the performance degradation of routers when generating forensic evidence via flow-based evidence traffic analysis.
- Subjects
COMPUTER crimes; CRIMINAL investigation; COMPUTER hackers; IDENTIFICATION; AD hoc computer networks; WIRELESS mesh networks
- Publication
Telecommunication Systems, 2015, Vol 60, Issue 2, p261
- ISSN
1018-4864
- Publication type
Article
- DOI
10.1007/s11235-015-0028-3