- Title
- Characterising network traffic for Skype forensics
- Creator
- Azab, Ahmad; Watters, Paul; Layton, Robert
- Date
- 2012
- Type
- Text; Conference proceedings
- Identifier
- http://researchonline.federation.edu.au/vital/access/HandleResolver/1959.17/41247
- Identifier
- vital:4950
- Abstract
- Voice over IP (VoIP) is increasingly replacing fixed line telephone systems globally due to lower cost, call quality improvements over digital lines and ease of availability. At the same time, criminals have also transitioned to using this environment, creating challenges for law enforcement, since interception of VoIP traffic is more difficult than a traditional telephony environment. One key problem for proprietary VoIP algorithms like Skype is being able to reliably identify and characterize network traffic. In this paper, the latest Skype version and its components are analyzed, in terms of network traffic behavior for logins, calls establishment, call answering and the change status phases. Network conditions tested included blocking different port numbers, inbound connections and outbound connections. The results provide a clearer view of the difficulties in characterizing Skype traffic in forensic contexts. We also found different changes from previous investigations into older versions of Skype. © 2012 IEEE.
- Publisher
- Ballarat, VIC IEEE Computer Society Conference Publishing Services
- Rights
- Copyright 2012 IEEE
- Rights
- This metadata is freely available under a CCO license
- Subject
- Component; Forensics; Security; Skype; VoIP
- Hits: 1071
- Visitors: 1083
- Downloads: 1
Thumbnail | File | Description | Size | Format |
---|