Integrating digital forensics in network infrastructures

Kulesh Shanmugasundaram, Hervé Brönnimann, Nasir Memon

Research output: Chapter in Book/Report/Conference proceedingChapter


This paper explores the idea of integrating digital forensic capabilities into network infrastructures. Building a forensic system for wide area networks has generally been considered infeasible due to the large volume of data that potentially has to be processed and stored. However, it is opportune to revisit this problem in the light of recent advances in data streaming algorithms, the abundance of cheap storage and compute power and, more importantly, increased threats faced by networked infrastructures. This paper discusses the challenges involved in building reliable forensic systems for wide area networks, including the Internet itself. Also, it describes a prototype network forensic system that is currently under development.

Original languageEnglish (US)
Title of host publicationAdvances in Digital Forensics
Subtitle of host publicationIFIP International Conference on Digital Forensics, National Center for Forensic Science, Orlando, Florida, February 13-16, 2005
EditorsMark Pollitt, Sujeet Shenoi
Number of pages14
StatePublished - 2006

Publication series

NameIFIP International Federation for Information Processing
ISSN (Print)1571-5736


  • Network forensics
  • Wide area networks

ASJC Scopus subject areas

  • Information Systems and Management


Dive into the research topics of 'Integrating digital forensics in network infrastructures'. Together they form a unique fingerprint.

Cite this