Skip to main content
Conference ProceedingsOPEN ACCESS

DigForNet: Digital forensic in networking

IFIP International Federation for Information Processing (2008) 278 637-651
DOI: 10.1007/978-0-387-09699-5_41
3Citations
Citations of this article
13Readers
Mendeley users who have this article in their library.

This article is free to access.

Abstract

Security incidents targeting information systems become more complex and sophisticated, and intruders might evade responsibility due to the lack of supporting evidences to convict them. In this paper, we develop a system for Digital Forensic in Networking (DigForNet) which is useful to analyze security incidents and explain the steps taken by the attackers. DigForNet uses intrusion response team knowledge and formal tools to reconstruct potential attack scenarios and show how the system behaved for every step in the scenario. The attack scenarios identification is automated and the hypothetical concept is introduced within DigForNet to alleviate lack of data related to missing evidences or investigator knowledge. © 2008 Springer Science+Business Media, LLC.

Cite

CITATION STYLE

APA

Rekhis, S., Krichene, J., & Boudriga, N. (2008). DigForNet: Digital forensic in networking. In IFIP International Federation for Information Processing (Vol. 278, pp. 637–651). Springer New York. https://doi.org/10.1007/978-0-387-09699-5_41

Register to see more suggestions

Mendeley helps you to discover research relevant for your work.

Already have an account?

Save time finding and organizing research with Mendeley

Sign up for free