Title :
Improving the Analysis of Lawfully Intercepted Network Packet Data Captured for Forensic Analysis
Author :
Broadway, Joshua ; Turnbull, Dr Benjamin ; Slay, Jill
Author_Institution :
South Australlia Univ., Adelaide, SA
Abstract :
Lawful interception of a suspects´ personal Internet communications can be a very effective evidence collection mechanism for use in criminal investigations. Once a lawful interception warrant has been obtained, software applications known as packet sniffers are used to capture all network packets being sent to and from a suspect´s personal computer. Existing packet sniffer and protocol analyser applications, both open- source and commercial, have limitations in their usefulness in criminal investigations. This research outlines a process and framework, the highly extensible network packet analysis (HENPA) framework, which takes the output of a packet sniffer and processes the data to extract potential forensic evidence.
Keywords :
Internet; protocols; telecommunication security; Internet; criminal investigation; evidence collection mechanism; forensic analysis; lawfully intercepted network packet data analysis; packet sniffer; protocol analyser; Application software; Computer crime; Computer networks; Computerized monitoring; Data mining; Forensics; Internet telephony; Law enforcement; Performance analysis; Protocols; forensic computing; lawful interception; network; packet analysis.;
Conference_Titel :
Availability, Reliability and Security, 2008. ARES 08. Third International Conference on
Conference_Location :
Barcelona
Print_ISBN :
978-0-7695-3102-1
DOI :
10.1109/ARES.2008.122
