• DocumentCode
    1695389
  • Title

    Dynamic Network Forensic Based Plug-In Architecture

  • Author

    Wang, Wenqi ; Li, Yong

  • Author_Institution
    Coll. of Comput. Sci., Zhongyuan Univ. of Technol., Zhengzhou, China
  • fYear
    2009
  • Firstpage
    445
  • Lastpage
    448
  • Abstract
    Considering on judicial forensic requirements and the character of network crime diversity, a architecture based on XML and plug-in techniques is proposed in this paper. The framework adopts encrypt and authentication technology which ensures collected evidence can be accepted by court, so the original evidence in framework is stability. Because of the network applicationpsilas diversity, the judgment whether the network packet need collect is implemented by plug-in. Finally, based on the framework, the forensic on specifically information and hacker attack are implemented, in which the analyzing of hacker attack forensic adapts intrusion detection system such as snort, consequently, feasibility of architecture is proved by experiment.
  • Keywords
    XML; computer crime; message authentication; XML; authentication technology; dynamic network judicial forensic requirement; encryption; hacker attack; intrusion detection system; network crime diversity; plug-in architecture; Algorithm design and analysis; Computer architecture; Computer hacking; Computer network management; Conference management; Data analysis; Forensics; Intrusion detection; Stability; Technology management; forensic framework; intrusion forensic; plug-in techniques;
  • fLanguage
    English
  • Publisher
    ieee
  • Conference_Titel
    Management of e-Commerce and e-Government, 2009. ICMECG '09. International Conference on
  • Conference_Location
    Nanchang
  • Print_ISBN
    978-0-7695-3778-8
  • Type

    conf

  • DOI
    10.1109/ICMeCG.2009.122
  • Filename
    5280085
    • Link To Document
    https://search.isc.ac/dl/search/defaultta.aspx?DTC=49&DC=1695389