|
IT Management >
Systems Operations >
Security >
Network Security >
|
|
|
ALSO CALLED:
Cyberforensics,
Security Forensics,
Digital Forensics,
Forensic Analysis,
Forensics
DEFINITION: Network forensics is the capture, recording, and analysis of network events in order to discover the source of security attacks or other problem incidents. (The term, attributed to firewall expert Marcus Ranum, is borrowed from the legal and criminology fields where forensics pertains to the investigation of crimes.) According to Simson Garfinkel, author of several books on security, network forensics
…
Definition continues below.
|
|
Network Forensics Reports
|
|
8 Matches
|
Unveiling the Security Illusion: The Need for Active Network Forensics
sponsored by Solera Networks
WHITE PAPER:
Read this paper to learn the most dangerous threats are those that are already inside the network. Whether they’re compromised systems or renegade users, left unchecked, the damage potential of these threats can quickly escalate, since once inside they can do nearly anything they want.
Posted: 04 Feb 2010 | Published: 04 Feb 2010
|
|
|
SEKE Podcast - Introduction to Solera DeepSee
sponsored by Solera Networks
PODCAST:
In this podcast presented by James Hilliard, host of the "See Everything, Know Everything" podcast, and Matthew Wood, Solera Networks' Chief Scientist, you'll learn about the DeepSee tool, which provides administrators, users and C-level executives at a corporation a way to see what is happening on a network in real-time.
Posted: 04 Feb 2010 | Premiered: 04 Feb 2010
|
|
|
Service Availability Tool
sponsored by Fluke Networks
PRODUCT DEMO:
The Service Availability Tool helps network technicians and administrators verify and troubleshoot network services quickly and easily. With the Service Availability Tool you can quickly verify service port status, measure response time, run TCP trace routes, and more.
Posted: 27 Jan 2010 | Published: 27 Jan 2010
|
|
|
EtherScope Analyzer
sponsored by Fluke Networks
PRODUCT DEMO:
First responders to network emergencies rely on the EtherScope Series II Network Assistant when it's time for action -- a handheld network analyzer combining essential tools that help network professionals quickly solve the wide range of problems they encounter. Take advantage of our free 5-day trial. Click "View Now" to request your free trial.
Posted: 27 Jan 2010 | Published: 27 Jan 2010
|
|
|
Log Management: How to Develop the Right Strategy
sponsored by SecureWorks
WHITE PAPER:
This white paper provides guidance on how to develop a strategic approach to managing and monitoring logs, a key function required for compliance with many regulatory mandates and a critical defense against security threats.
Posted: 02 Dec 2009 | Published: 02 Dec 2009
|
|
|
Information Security Essential Guide to SIMs
sponsored by Information Security Magazine
EGUIDE:
Security information management systems can now be used for proactive risk management and business intelligence. This Essentials Guide explains how this can be achieved. Read on to find articles that cover topics like today's SIM trends, incident response, threat management, and data analysis.
Posted: 17 Nov 2009 | Published: 17 Nov 2009
|
|
|
Anomaly or Signature based intrusion detection: Do you need both?
sponsored by TippingPoint
PODCAST:
In this podcast, our expert explains whether users really need both anomaly and signature based strategies, and if so, how to overcome implementation challenges.
Posted: 10 Nov 2009 | Premiered: 10 Nov 2009
|
|
|
Orion Network Performance Monitor
sponsored by SolarWinds, Inc.
TRIAL SOFTWARE:
Traditional framework solutions are expensive and tough to implement; are difficult to use, maintain and customize; and often impractical for network engineers in mid- to large-sized organizations. Network engineers need affordable, scalable network management solutions that provide immediate visibility into performance of the entire network.
Posted: 14 Jul 2009 | Published: 14 Jul 2009
|
|
| |
NETWORK FORENSICS DEFINITION (continued): … systems can be one of two kinds:"Catch-it-as-you-can" systems, in which all packets passing through a certain traffic point are captured and written to storage with analysis being done subsequently in batch mode. This approach requires large amounts of storage, usually involving a RAID system."Stop, look and listen" systems, in which each packet is analyzed in a rudimentary way in memory and only certain information saved for future analysis. This approach requires less storage but may require a faster processor to keep up with incoming traffic.Both approaches require significant storage and … Network Forensics definition sponsored by SearchSecurity.com, powered by WhatIs.com an online computer dictionary
|
|
|
|
TechTarget provides enterprise IT professionals with the information they need to perform their jobs
- from developing strategy, to making cost-effective IT purchase decisions and managing their
organizations' IT projects - with its network of
|
|
|
Definitions:
|
|
 |
|
All Rights Reserved,
Copyright 2000 - 2010, TechTarget |
|
|
|
|
Free Newsletters
