scholarly journals Comparative Analysis of Network Forensic Tools and Network Forensics Processes

2021 ◽  
Author(s):  
Fahad M Ghabban ◽  
Ibrahim M Alfadli ◽  
Omair Ameerbakhsh ◽  
Amer Nizar AbuAli ◽  
Arafat Al-Dhaqm ◽  
...  
Keyword(s):  
Comparative Analysis ◽  
Network Forensics ◽  
Forensic Tools ◽  
Network Forensic

scholarly journals Analysis of Challenges in Modern Network Forensic Framework

2021 ◽  
Vol 2021 ◽  
pp. 1-13
Author(s):  
Sirajuddin Qureshi ◽  
Jianqiang Li ◽  
Faheem Akhtar ◽  
Saima Tunio ◽  
Zahid Hussain Khand ◽  
...  
Keyword(s):  
Network Security ◽  
Data Privacy ◽  
Data Extraction ◽  
False Negative ◽  
Network Forensics ◽  
Negative Results ◽  
False Negative Results ◽  
Forensic Tools ◽  
Space Data ◽  
Network Forensic

Network forensics can be an expansion associated with network security design which typically emphasizes avoidance and detection of community assaults. It covers the necessity for dedicated investigative abilities. When you look at the design, this indeed currently allows investigating harmful behavior in communities. It will help organizations to examine external and community this is undoubtedly around. It is also important for police force investigations. Network forensic techniques can be used to identify the source of the intrusion and the intruder’s location. Forensics can resolve many cybercrime cases using the methods of network forensics. These methods can extract intruder’s information, the nature of the intrusion, and how it can be prevented in the future. These techniques can also be used to avoid attacks in near future. Modern network forensic techniques face several challenges that must be resolved to improve the forensic methods. Some of the key challenges include high storage speed, the requirement of ample storage space, data integrity, data privacy, access to IP address, and location of data extraction. The details concerning these challenges are provided with potential solutions to these challenges. In general, the network forensic tools and techniques cannot be improved without addressing these challenges of the forensic network. This paper proposed a thematic taxonomy of classifications of network forensic techniques based on extensive. The classification has been carried out based on the target datasets and implementation techniques while performing forensic investigations. For this purpose, qualitative methods have been used to develop thematic taxonomy. The distinct objectives of this study include accessibility to the network infrastructure and artifacts and collection of evidence against the intruder using network forensic techniques to communicate the information related to network attacks with minimum false-negative results. It will help organizations to investigate external and internal causes of network security attacks.

scholarly journals A Comprehensive Review on Adaptability of Network Forensics Frameworks for Mobile Cloud Computing

2014 ◽  
Vol 2014 ◽  
pp. 1-27 ◽  
Author(s):  
Suleman Khan ◽  
Muhammad Shiraz ◽  
Ainuddin Wahid Abdul Wahab ◽  
Abdullah Gani ◽  
Qi Han ◽  
...  
Keyword(s):  
Cloud Computing ◽  
Mobile Cloud Computing ◽  
Cost Effective ◽  
Data Access ◽  
Digital Content ◽  
Mobile Cloud ◽  
Network Attacks ◽  
Network Forensics ◽  
Network Forensic ◽  
The Cost

Network forensics enables investigation and identification of network attacks through the retrieved digital content. The proliferation of smartphones and the cost-effective universal data access through cloud has made Mobile Cloud Computing (MCC) a congenital target for network attacks. However, confines in carrying out forensics in MCC is interrelated with the autonomous cloud hosting companies and their policies for restricted access to the digital content in the back-end cloud platforms. It implies that existing Network Forensic Frameworks (NFFs) have limited impact in the MCC paradigm. To this end, we qualitatively analyze the adaptability of existing NFFs when applied to the MCC. Explicitly, the fundamental mechanisms of NFFs are highlighted and then analyzed using the most relevant parameters. A classification is proposed to help understand the anatomy of existing NFFs. Subsequently, a comparison is given that explores the functional similarities and deviations among NFFs. The paper concludes by discussing research challenges for progressive network forensics in MCC.

Network Forensics

2018 ◽  
pp. 1-18
Keyword(s):  
Legal System ◽  
Network Forensics ◽  
Contemporary Perspective ◽  
Investigative Techniques ◽  
Networking Technologies ◽  
Network Forensic ◽  
Networking Technology

Network forensics investigations aim to uncover evidence about criminal or unauthorized activities facilitated by, or targeted to, a given networking technology. Understanding the fundamental investigative principles is equally important as understanding each of the modern networking technologies for every forensics scientist or practitioner. This chapter provides an overview of the network forensic fundamentals from a contemporary perspective, accenting the formalization of network investigation, various investigative techniques, and how the network forensics support the legal system.

On Creating Digital Evidence in IP Networks With NetTrack

2018 ◽  
pp. 225-245
Author(s):  
Diana Berbecaru
Keyword(s):  
Network Traffic ◽  
High Speed ◽  
Digital Signatures ◽  
Digital Evidence ◽  
Open Court ◽  
Forensic Tools ◽  
Network Forensic ◽  
Ip Packet ◽  
Computer Forensic ◽  
Short Time

Computer forensic is the practice of collecting, analyzing, and reporting digital evidence in a way that is legally admissible in open court. Network forensics, an offset of computer forensic, is mainly concerned with the monitoring and analysis of network traffic, both local and WAN/internet, in order to identify security incidents and to investigate fraud or network misuse. In this chapter, the authors discuss challenges in creating high-speed network forensic tools and propose NetTrack, a tamper-proof device aimed to produce evidences with probative value via digital signatures for the network traffic. Since digitally signing each IP packet is not efficient, the authors used a specific technique exploiting the Merkle trees to create digital signatures for flows and multicasts and implemented it by using an optimized algorithm for Merkle tree traversal to save space and time. Through experiments, the authors show NetTrack signing is fast as it can produce digital evidence within a short time.

scholarly journals Forensic Tools Performance Analysis on Android-based Blackberry Messenger using NIST Measurements

2018 ◽  
Vol 8 (5) ◽  
pp. 3991
Author(s):  
Imam Riadi ◽  
Rusydi Umar ◽  
Arizona Firdonsyah
Keyword(s):  
Comparative Analysis ◽  
Performance Analysis ◽  
Instant Messaging ◽  
Digital Evidence ◽  
Standard Technology ◽  
Digital Crime ◽  
Forensic Tools

Blackberry Messenger is one of the popularly used instant messaging applications on Android with user’s amount that increase significantly each year. The increase off Blackberry Messenger users might lead to application misuse, such as for commiting digital crimes. To conduct investigation involving smartphone devices, the investigators need to use forensic tools. Therefore, a research on current forensic tool’s performance in order to handle digital crime cases involving Android smartphones and Blackberry Messenger in particular need to be done. This research focuses on evaluating and comparing three forensic tools to obtain digital evidence from Blackberry Messenger on Android smartphones using parameter from National Institute of Standard Technology and Blackberry Messenger’s acquired digital evidences. The result shows that from comparative analysis conducted, Andriller gives 25% performance value, Oxygen Forensic Suite gives 100% performance value, and Autopsy 4.1.1 gives 0% performance value. Related to National Institute of Standard Technology parameter criterias, Andriller has performance value of 47.61%. Oxygen Forensic Suite has performance value of 61.90%. Autopsy 4.1.1 has performance value of 9.52%.

A Review of Current Research in Network Forensic Analysis

2013 ◽  
Vol 5 (1) ◽  
pp. 1-26 ◽  
Author(s):  
Ikuesan R. Adeyemi ◽  
Shukor Abd Razak ◽  
Nor Amira Nor Azhan
Keyword(s):  
Network Security ◽  
Research Finding ◽  
Forensic Analysis ◽  
Research Community ◽  
Cutting Edge ◽  
Cyber Crime ◽  
Network Forensics ◽  
Research Challenges ◽  
Research Techniques ◽  
Network Forensic

Establishing facts on cyber crime is gradually gaining wider relevance in prosecuting cyber criminals. The branch of cyber policing saddled with this responsibility is the network forensic community (researchers, developer, and investigator). However, the recurring rate of advances in cybercrime poses greater challenge to the available improvements in network forensics analysis tools (NFAT) as well as to investigators, and ultimately, researchers. The need for an efficient cutting-edge research finding in curbing network crimes therefore is undeniably critical. This paper describes the distinction between network security and network forensics. In addition, the authors identify factors that militate against most network forensic techniques as well as the research challenges in network forensics. Furthermore, the paper discusses on the current research works on network forensics analysis. This research is useful to the research community of network forensics, for knowledge on existing research techniques, and direction on further research in network forensics.

scholarly journals Exploring User Requirements of Network Forensic Tools

2021 ◽  
Author(s):  
Kousik Barik ◽  
Saptarshi Das ◽  
Karabi Konar ◽  
Bipasha Chakrabarti Banik ◽  
Archita Banerjee
Keyword(s):  
User Requirements ◽  
Forensic Tools ◽  
Network Forensic
Sign in / Sign up

Export Citation Format

Share Document