Back to Search
Start Over
A forensically robust data acquisition from a 10G line-rate network
- Source :
- ICTC
- Publication Year :
- 2016
- Publisher :
- IEEE, 2016.
-
Abstract
- De-duplication, which is a technology that can store data by removing redundant data, continues to receive a lot of attention. Because it reduces the storage required for writing tremendous data, as well as relatively lessens the transmission time and network utilization when data is transmitted. It is also required for the cyber blackbox which records network traffic and analyzes the causes of cyber incident over the network because the cyber blackbox should urgently address the storage issue to provide forensically robust acquisition of traffic. As an approach to the problem, we propose the EvidenceLock and our de-duplication method for continuously securing the storage to record the traffic. Next, the efficiency of the de-duplication module will be evaluated, and then the performance of the cyber blackbox when integrated with the de-duplication module will be measured. Finally, we'll discuss the results and present further works.
- Subjects :
- Line rate
Computer science
business.industry
Robustness (computer science)
0202 electrical engineering, electronic engineering, information engineering
Robust statistics
020206 networking & telecommunications
020201 artificial intelligence & image processing
02 engineering and technology
business
Computer network
Subjects
Details
- Database :
- OpenAIRE
- Journal :
- 2016 International Conference on Information and Communication Technology Convergence (ICTC)
- Accession number :
- edsair.doi...........a581f12f706cac0f1d86f7ab8af76a28