Network forensics with neurofuzzy techniques

Eleazar Aguirre Anaya; Mariko Nakano-Miyatake; Héctor Manuel Pérez Meana

doi:10.1109/MWSCAS.2009.5235900

Network forensics with neurofuzzy techniques

Eleazar Aguirre Anaya, Mariko Nakano-Miyatake, Héctor Manuel Pérez Meana

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › peer-review

7 Scopus citations

Abstract

Forensics science is based on a methodology composed by a group of stages, being the analysis one of them. Analysis is responsible to determine when a data constitutes evidence; and as a consequence it can be presented to a court. When the amount of data in a Network is small, its analysis is relatively simple, but when it is huge the data analysis becomes a challenge for the forensics expert. In this paper a forensics network model is proposed, which allows to obtain the existing evidence in an involved TCP/IP network. This Model uses the Fuzzy Logic and the Artificial Neural Networks to detect the Network flows that realize suspicious activities in the network or hosts, minimizing also the cost and the time to process the information in order to discriminate which are normal network flows and which has been subjected to attacks and intrusions.

Original language	English
Title of host publication	2009 52nd IEEE International Midwest Symposium on Circuits and Systems, MWSCAS '09
Pages	848-852
Number of pages	5
DOIs	https://doi.org/10.1109/MWSCAS.2009.5235900
State	Published - 2009
Event	2009 52nd IEEE International Midwest Symposium on Circuits and Systems, MWSCAS '09 - Cancun, Mexico Duration: 2 Aug 2009 → 5 Aug 2009

Publication series

Name	Midwest Symposium on Circuits and Systems
ISSN (Print)	1548-3746

Conference

Conference	2009 52nd IEEE International Midwest Symposium on Circuits and Systems, MWSCAS '09
Country/Territory	Mexico
City	Cancun
Period	2/08/09 → 5/08/09

Access to Document

10.1109/MWSCAS.2009.5235900

Cite this

@inproceedings{6d7adc1749044f58a7fcee24ece4496b,

title = "Network forensics with neurofuzzy techniques",

abstract = "Forensics science is based on a methodology composed by a group of stages, being the analysis one of them. Analysis is responsible to determine when a data constitutes evidence; and as a consequence it can be presented to a court. When the amount of data in a Network is small, its analysis is relatively simple, but when it is huge the data analysis becomes a challenge for the forensics expert. In this paper a forensics network model is proposed, which allows to obtain the existing evidence in an involved TCP/IP network. This Model uses the Fuzzy Logic and the Artificial Neural Networks to detect the Network flows that realize suspicious activities in the network or hosts, minimizing also the cost and the time to process the information in order to discriminate which are normal network flows and which has been subjected to attacks and intrusions.",

author = "Anaya, {Eleazar Aguirre} and Mariko Nakano-Miyatake and Meana, {H{\'e}ctor Manuel P{\'e}rez}",

year = "2009",

doi = "10.1109/MWSCAS.2009.5235900",

language = "Ingl{\'e}s",

isbn = "9781424444793",

series = "Midwest Symposium on Circuits and Systems",

pages = "848--852",

booktitle = "2009 52nd IEEE International Midwest Symposium on Circuits and Systems, MWSCAS '09",

note = "2009 52nd IEEE International Midwest Symposium on Circuits and Systems, MWSCAS '09 ; Conference date: 02-08-2009 Through 05-08-2009",

}

Anaya, EA , Nakano-Miyatake, M & Meana, HMP 2009, Network forensics with neurofuzzy techniques. in 2009 52nd IEEE International Midwest Symposium on Circuits and Systems, MWSCAS '09., 5235900, Midwest Symposium on Circuits and Systems, pp. 848-852, 2009 52nd IEEE International Midwest Symposium on Circuits and Systems, MWSCAS '09, Cancun, Mexico, 2/08/09. https://doi.org/10.1109/MWSCAS.2009.5235900

Network forensics with neurofuzzy techniques. / Anaya, Eleazar Aguirre ; Nakano-Miyatake, Mariko ; Meana, Héctor Manuel Pérez.
2009 52nd IEEE International Midwest Symposium on Circuits and Systems, MWSCAS '09. 2009. p. 848-852 5235900 (Midwest Symposium on Circuits and Systems).

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › peer-review

TY - GEN

T1 - Network forensics with neurofuzzy techniques

AU - Anaya, Eleazar Aguirre

AU - Nakano-Miyatake, Mariko

AU - Meana, Héctor Manuel Pérez

PY - 2009

Y1 - 2009

N2 - Forensics science is based on a methodology composed by a group of stages, being the analysis one of them. Analysis is responsible to determine when a data constitutes evidence; and as a consequence it can be presented to a court. When the amount of data in a Network is small, its analysis is relatively simple, but when it is huge the data analysis becomes a challenge for the forensics expert. In this paper a forensics network model is proposed, which allows to obtain the existing evidence in an involved TCP/IP network. This Model uses the Fuzzy Logic and the Artificial Neural Networks to detect the Network flows that realize suspicious activities in the network or hosts, minimizing also the cost and the time to process the information in order to discriminate which are normal network flows and which has been subjected to attacks and intrusions.

AB - Forensics science is based on a methodology composed by a group of stages, being the analysis one of them. Analysis is responsible to determine when a data constitutes evidence; and as a consequence it can be presented to a court. When the amount of data in a Network is small, its analysis is relatively simple, but when it is huge the data analysis becomes a challenge for the forensics expert. In this paper a forensics network model is proposed, which allows to obtain the existing evidence in an involved TCP/IP network. This Model uses the Fuzzy Logic and the Artificial Neural Networks to detect the Network flows that realize suspicious activities in the network or hosts, minimizing also the cost and the time to process the information in order to discriminate which are normal network flows and which has been subjected to attacks and intrusions.

UR - http://www.scopus.com/inward/record.url?scp=77950681948&partnerID=8YFLogxK

U2 - 10.1109/MWSCAS.2009.5235900

DO - 10.1109/MWSCAS.2009.5235900

M3 - Contribución a la conferencia

AN - SCOPUS:77950681948

SN - 9781424444793

T3 - Midwest Symposium on Circuits and Systems

SP - 848

EP - 852

BT - 2009 52nd IEEE International Midwest Symposium on Circuits and Systems, MWSCAS '09

T2 - 2009 52nd IEEE International Midwest Symposium on Circuits and Systems, MWSCAS '09

Y2 - 2 August 2009 through 5 August 2009

ER -

Network forensics with neurofuzzy techniques

Abstract

Publication series

Conference

Access to Document

Other files and links

Fingerprint

Cite this