Improving the Analysis of Lawfully Intercepted Network Packet Data Captured for Forensic Analysis

March 04-March 07

DOI Bookmark:

http://doi.ieeecomputersociety.org/10.1109/ARES.2008.122

2008 Third International Conference o ...

	This Article
	PURCHASE ARTICLE: $19 PDF HTML IEEE Xplore Subscribers
	Share
	Email this Article to a friend
	Bibliographic References
	ASCII Text BibTex RefWorks Procite/RefMan/Endnote
	Add to:
	Digg Furl Spurl Blink Simpy Google Del.icio.us Y!MyWeb
	Search
	Similar Articles Articles by Joshua Broadway Articles by Benjamin Turnbull Articles by Jill Slay

	ASCII Text	x
	Joshua Broadway, Benjamin Turnbull, Jill Slay, "Improving the Analysis of Lawfully Intercepted Network Packet Data Captured for Forensic Analysis," Availability, Reliability and Security, International Conference on, pp. 1361-1368, 2008 Third International Conference on Availability, Reliability and Security, 2008.

	BibTex	x
	@article{ 10.1109/ARES.2008.122, author = {Joshua Broadway and Benjamin Turnbull and Jill Slay}, title = {Improving the Analysis of Lawfully Intercepted Network Packet Data Captured for Forensic Analysis}, journal ={Availability, Reliability and Security, International Conference on}, volume = {0}, year = {2008}, isbn = {978-0-7695-3102-1}, pages = {1361-1368}, doi = {http://doi.ieeecomputersociety.org/10.1109/ARES.2008.122}, publisher = {IEEE Computer Society}, address = {Los Alamitos, CA, USA}, }

	RefWorks Procite/RefMan/Endnote	x
	TY - CONF JO - Availability, Reliability and Security, International Conference on TI - Improving the Analysis of Lawfully Intercepted Network Packet Data Captured for Forensic Analysis SN - 978-0-7695-3102-1 SP1361 EP1368 A1 - Joshua Broadway, A1 - Benjamin Turnbull, A1 - Jill Slay, PY - 2008 KW - lawful interception KW - network KW - forensic computing KW - packet analysis. VL - 0 JA - Availability, Reliability and Security, International Conference on ER -

Joshua Broadway

Benjamin Turnbull

Jill Slay

Lawful interception of a suspects’ personal Internet communications can be a very effective evidence collection mechanism for use in criminal investigations. Once a lawful interception warrant has been obtained, software applications known as packet sniffers are used to capture all network packets being sent to and from a suspect’s personal computer. Existing packet sniffer and protocol analyser applications, both open-source and commercial, have limitations in their usefulness in criminal investigations. This research outlines a process and framework, the Highly Extensible Network Packet Analysis (HENPA) framework, which takes the output of a packet sniffer and processes the data to extract potential forensic evidence.

Index Terms:

lawful interception, network, forensic computing, packet analysis.

Citation:

Joshua Broadway, Benjamin Turnbull, Jill Slay, "Improving the Analysis of Lawfully Intercepted Network Packet Data Captured for Forensic Analysis," ares, pp.1361-1368, 2008 Third International Conference on Availability, Reliability and Security, 2008

Peer Review Notice | Give Us Feedback

Usage of this product signifies your acceptance of the Terms of Use.