Details

Autor(en) / Beteiligte

• Agarwal, Prerna
• Arora, Shefali
• Bhatia, M. P. S
• Garg, Puneet
• Gupta, Deepak
• Gupta, Deepak[Herausgeber]
• Gupta, Swati
• Hariharan, K
• Kumar, Ambeshwar
• Kumar, Prashant
• Kumar, Sachil
• Kumari, Meet
• Manikandan, R
• Mittal, Ruchi
• Purohit, Gaurav
• Rajkumar, K
• Raju, Solomon
• Saxena, Geetika
• Selvakumari, R. Shantha
• Sharma, Anand
• Sharma, Kavita
• Sharma, Kavita[Herausgeber]
• Shrivastava, Gulshan[Herausgeber]
• Shrivastava, Pranav

Titel

Cyber Crime and Forensic Computing : Modern Principles, Practices, and Algorithms

Ort / Verlag

Berlin ; Boston : De Gruyter

Erscheinungsjahr

[2021]

Link zum Volltext

• De Gruyter E-Books EBA bis 31.12.2026 (ZDB-23-DGG-eba)
• De Gruyter E-Books EBA bis 31.12.2026 (ZDB-23-DGG-eba)

Link zu anderen Inhalten

• Cover

Beschreibungen/Notizen

• This book presents a comprehensive study of different tools and techniques available to perform network forensics. Also, various aspects of network forensics are reviewed as well as related technologies and their limitations. This helps security practitioners and researchers in better understanding of the problem, current solution space, and future research scope to detect and investigate various network intrusions against such attacks efficiently. Forensic computing is rapidly gaining importance since the amount of crime involving digital systems is steadily increasing. Furthermore, the area is still underdeveloped and poses many technical and legal challenges. The rapid development of the Internet over the past decade appeared to have facilitated an increase in the incidents of online attacks. There are many reasons which are motivating the attackers to be fearless in carrying out the attacks.-
• For example, the speed with which an attack can be carried out, the anonymity provided by the medium, nature of medium where digital information is stolen without actually removing it, increased availability of potential victims and the global impact of the attacks are some of the aspects. Forensic analysis is performed at two different levels: Computer Forensics and Network Forensics. Computer forensics deals with the collection and analysis of data from computer systems, networks, communication streams and storage media in a manner admissible in a court of law. Network forensics deals with the capture, recording or analysis of network events in order to discover evidential information about the source of security attacks in a court of law. Network forensics is not another term for network security. It is an extended phase of network security as the data for forensic analysis are collected from security products like firewalls and intrusion detection systems.-
• The results of this data analysis are utilized for investigating the attacks. Network forensics generally refers to the collection and analysis of network data such as network traffic, firewall logs, IDS logs, etc. Technically, it is a member of the already-existing and expanding the field of digital forensics. Analogously, network forensics is defined as "The use of scientifically proved techniques to collect, fuses, identifies, examine, correlate, analyze, and document digital evidence from multiple, actively processing and transmitting digital sources for the purpose of uncovering facts related to the planned intent, or measured success of unauthorized activities meant to disrupt, corrupt, and or compromise system components as well as providing information to assist in response to or recovery from these activities." Network forensics plays a significant role in the security of today’s organizations.-