|Paper title: NETWORK FORENSIC INVESTIGATIONS OF TUNNELED TRAFFIC: A CASE STUDY
Author(s): JAN PLUSKAL, MICHAL KOUTENSKÝ, MARTIN VONDRÁČEK, ONDŘE RYŠAVÝ,
The increasing importance of network forensics in the investigations conducted by Law Enforcement Agencies is indisputable.
Today's Internet does not carry ordinary TCP/IP traffic but utilizes many other encapsulations and tunneling protocols. In this
paper, we overview the most used tunneling protocols and their features concerning digital forensic analysis. A case study of
generic stream encapsulation describes how the investigator can obtain encapsulated application data from within.
Keywords: Network traffic forensics, Generic stream encapsulation, Network forensic and analysis toolYear: 2019 | Tome: 64 | Issue: 4 | Pp.: 429-434
Full text : PDF (413 KB)