Skip to Main content Skip to Navigation
Conference papers

Digital Forensics in VoIP networks

Abstract : With VoIP being deployed on large scale, forensic analysis of captured VoIP traffic is of major practical interest. In this paper, we present a new fingerprinting approach that identifies the types of devices (name, version, brand, series) in captured VoIP traffic. We focus only on the signaling plane and discard voice related data. Although we consider only one signaling protocol for the illustration, our tool relies on structural information trees and can easily be adapted to any protocol of that has a known syntax. We have integrated our tool within the well known tshark application in order to provide an easy to use support for forensic analysts.
Document type :
Conference papers
Complete list of metadatas

Cited literature [22 references]  Display  Hide  Download

https://hal.inria.fr/inria-00548768
Contributor : Jérôme François <>
Submitted on : Monday, December 20, 2010 - 1:54:32 PM
Last modification on : Thursday, February 7, 2019 - 2:24:03 PM
Long-term archiving on: : Thursday, June 30, 2011 - 1:12:10 PM

File

wifs10.pdf
Files produced by the author(s)

Identifiers

  • HAL Id : inria-00548768, version 1

Collections

Citation

Jérôme François, Radu State, Thomas Engel, Olivier Festor. Digital Forensics in VoIP networks. IEEE Workshop on Information Forensics and Security - WIFS'10, Dec 2010, Seattle, United States. pp.6. ⟨inria-00548768⟩

Share

Metrics

Record views

470

Files downloads

656