Experience with Engineering a Network Forensics System

  title={Experience with Engineering a Network Forensics System},
  author={Ahmad Almulhem and Issa Traor{\'e}},
Network Forensics is an important extension to the model of network security where emphasis is traditionally put on prevention and to a lesser extent on detection. It focuses on the capture, recording, and analysis of network packets and events for investigative purposes. It is a young field for which very limited resources are available. In this paper, we briefly survey the state of the art in network forensics and report our experience with building and testing a network forensics system. 

From This Paper

Figures, tables, and topics from this paper.
10 Citations
9 References
Similar Papers


Publications referenced by this paper.
Showing 1-9 of 9 references

Know Your Enemy: Sebek

  • E. Balas
  • Honeynet Project.
  • 2003
2 Excerpts

csi/fbi computer crime and security survey

  • R. Richardson
  • 2003
1 Excerpt

Analyze this

  • N. King, E. Weiss
  • Information Security Magazine
  • 2002
1 Excerpt

Analysis: The forensics of internet security

  • C. Fennelly
  • SunWorld
  • 2000
1 Excerpt

Network forensics: Network traffic monitoring

  • M. Ranum
  • NFR Inc.
  • 1997
2 Excerpts

Similar Papers

Loading similar papers…