Publication detail

Network Forensic Investigations of Tunneled Traffic: A Case Study

PLUSKAL, J. KOUTENSKÝ, M. VONDRÁČEK, M. RYŠAVÝ, O.

Original Title

Network Forensic Investigations of Tunneled Traffic: A Case Study

Type

journal article in Web of Science

Language

English

Original Abstract

The increasing importance of network forensics in the investigations conducted by Law Enforcement Agencies is indisputable. Today's Internet does not carry ordinary TCP/IP traffic but utilizes many other encapsulations and tunneling protocols. In this paper, we overview the most used tunneling protocols and their features concerning digital forensic analysis. A case study of generic stream encapsulation describes how the investigator can obtain encapsulated application data from within. 

Keywords

Network traffic forensics, Generic stream encapsulation, Network forensic and analysis tool. 

Authors

PLUSKAL, J.; KOUTENSKÝ, M.; VONDRÁČEK, M.; RYŠAVÝ, O.

Released

21. 11. 2019

ISBN

0035-4066

Periodical

Revue Roumaine des Sciences Techniques - Serie Électrotechnique et Énergétique

Year of study

64

Number

4

State

Romania

Pages from

429

Pages to

434

Pages count

6

URL

http://www.revue.elth.pub.ro/upload/31372219_JPluskal_RRST_4_2019_pp_429-434.pdf

BibTex

@article{BUT161867,
  author="Jan {Pluskal} and Michal {Koutenský} and Martin {Vondráček} and Ondřej {Ryšavý}",
  title="Network Forensic Investigations of Tunneled Traffic: A Case Study",
  journal="Revue Roumaine des Sciences Techniques - Serie Électrotechnique et Énergétique",
  year="2019",
  volume="64",
  number="4",
  pages="429--434",
  issn="0035-4066",
  url="http://www.revue.elth.pub.ro/upload/31372219_JPluskal_RRST_4_2019_pp_429-434.pdf"
}