Skip to main content
Journal ArticleOPEN ACCESS

Using peer-to-peer technology for network forensics

IFIP International Federation for Information Processing (2006) 194 141-152
DOI: 10.1007/0-387-31163-7_12
4Citations
Citations of this article
7Readers
Mendeley users who have this article in their library.

This article is free to access.

Abstract

Networked computer systems are under a barrage by combatants attempting to obtain unauthorized access to their resources. Methods must be developed to identify attacks on the systems and provide a forensically accurate description of the chain of events related to the unauthorized activity. This paper proposes a peer-to-peer (P2P) framework for network monitoring and forensics. Host-based security tools can be used to identify malicious events. The events can be communicated to other peers over a P2P network, where analysis, forensic preservation, and reporting of related information can be performed using spare CPU cycles. © 2006 International Federation for Information Processing.

Author supplied keywords

Cite

CITATION STYLE

APA

Redding, S. (2006). Using peer-to-peer technology for network forensics. IFIP International Federation for Information Processing, 194, 141–152. https://doi.org/10.1007/0-387-31163-7_12

Register to see more suggestions

Mendeley helps you to discover research relevant for your work.

Already have an account?

Save time finding and organizing research with Mendeley

Sign up for free