A new network forensics system for chinese text content

  • Authors:

  • Cui Yimin;Jin Qi;Zhang Lufeng;Zou Tao

  • Affiliations:

  • National Key Laboratory of Science and Technology on Information System Security, Beijing, China;National Key Laboratory of Science and Technology on Information System Security, Beijing, China;National Key Laboratory of Science and Technology on Information System Security, Beijing, China;National Key Laboratory of Science and Technology on Information System Security, Beijing, China

  • Venue:
  • ACC'11/MMACTEE'11 Proceedings of the 13th IASME/WSEAS international conference on Mathematical Methods and Computational Techniques in Electrical Engineering conference on Applied Computing
  • Year:
  • 2011

Quantified Score

Hi-index 0.00

Visualization

Abstract

This paper presents an implementation technical solution of network forensics system for Chinese text content. The technical solution utilizes Bloom filter algorithm and Chinese word segmentation and meta-aggregation algorithm (CWSMA) to preprocess and effectively store contents of the text aiming at technical challenges caused by characteristics of "unpredictability of the event features" and "unpredictability of forensics operation", information related with the events such as 'where', 'who', 'when' and the like can be provided for investigators through member query, network verification analysis can be carried out under the condition without predefining event characteristics, the forensics analysis time traceability can be prolonged from several days of existing technique to several months, it is particularly suitable for network forensics of network secret disclosure events and illegal content propagation events with sensitive content analysis.