Paper title: NETWORK FORENSIC INVESTIGATIONS OF TUNNELED TRAFFIC: A CASE STUDY
Author(s): JAN PLUSKAL, MICHAL KOUTENSKÝ, MARTIN VONDRÁČEK, ONDŘE RYŠAVÝ,
Abstract: The increasing importance of network forensics in the investigations conducted by Law Enforcement Agencies is indisputable.
Today's Internet does not carry ordinary TCP/IP traffic but utilizes many other encapsulations and tunneling protocols. In this
paper, we overview the most used tunneling protocols and their features concerning digital forensic analysis. A case study of
generic stream encapsulation describes how the investigator can obtain encapsulated application data from within.
Keywords: Network traffic forensics, Generic stream encapsulation, Network forensic and analysis tool Year: 2019 | Tome: 64 | Issue: 4 | Pp.: 429-434
Full text : PDF (413 KB) |