Difference between pages "Network forensics" and "Upcoming events"

From ForensicsWiki
(Difference between pages)
Jump to: navigation, search
(added NetBeholder LI)
 
(Conferences)
 
Line 1: Line 1:
'''Network forensics''' is the process of capturing information that moves over a [[network]] and trying to make sense of it in some kind of forensics capacity. A [[network forensics appliance]] is a device that automates this process.
+
<b>PLEASE READ BEFORE YOU EDIT THE LISTS BELOW</b><br>
 +
When events begin the same day, events of a longer length should be listed first.  New postings of events with the same date(s) as other events should be added after events already in the list. Please use three-letter month abbreviations (i.e. Sep, NOT Sept. or September), use two digit dates (i.e. Jan 01 NOT Jan 1), and use date ranges rather than listing every date during an event(i.e. Jan 02-05, NOT Jan 02, 03, 04, 05).<br>
 +
<i>Some events may be <u>limited</u> to <b>Law Enforcement Only</b> or to a specific audience.  Such restrictions should be noted when known.</i>
  
There are both open source and proprietary network forensics systems available.  
+
This is a BY DATE listing of upcoming events relevant to [[digital forensics]].  It is not an all inclusive list, but includes most well-known activities.  Some events may duplicate events on the generic [[conferences]] page, but entries in this list have specific dates and locations for the upcoming event.
  
== Open Source Network Forensics ==
+
This listing is divided into three sections (described as follows):<br>
 +
<ol><li><b><u>[[Upcoming_events#Calls_For_Papers|Calls For Papers]]</u></b> - Calls for papers for either Journals or for Conferences, relevant to Digital Forensics (Name, Closing Date, URL)</li><br>
 +
<li><b><u>[[Upcoming_events#Conferences|Conferences]]</u></b> - Conferences relevant for Digital Forensics (Name, Date, Location, URL)</li><br>
 +
<li><b><u>[[Training Courses and Providers]]</u></b> - Training </li><br></ol>
  
* [[Snort]]
+
== Calls For Papers ==
* [[OSSEC]]
+
Please help us keep this up-to-date with deadlines for upcoming conferences that would be appropriate for forensic research.
* [[Xplico]] is an Internet/IP Traffic Decoder (NFAT). Protocols supported: [http://www.xplico.org/status.html HTTP, SIP, FTP, IMAP, POP, SMTP, TCP, UDP, IPv4, IPv6, ...].
+
  
== Commercial Network Forensics ==
+
{| border="0" cellpadding="2" cellspacing="2" align="top"
===Deep-Analysis Systems===
+
|- style="background:#bfbfbf; font-weight: bold"
* Code Green Networks [http://www.codegreennetworks.com Content Inspection Appliance] - Passive monitoring and mandatory proxy mode. Easy to use Web GUI. Linux platform. Uses Stellent Outside In to access document content and metadata.  
+
! width="30%|Title
* ManTech International Corporation [http://www.netwitness.com/ NetWitness]
+
! width="15%"|Due Date
* Network Instruments [http://www.networkinstruments.com/]
+
! width="15%"|Notification Date
* NIKSUN's [[NetDetector]]
+
! width="40%"|Website
* PacketMotion [http://www.packetmotion.com/]
+
|-
* Sandstorm's [http://www.sandstorm.net/products/netintercept/ NetIntercept] - Passive monitoring appliance. Qt/X11 GUI. FreeBSD platform. Uses forensic parsers written by Sandstorm to access document content and metadata.
+
|7th International Conference on IT Security Incident Management & IT Forensics
* Mera Systems [http://netbeholder.com/ NetBeholder]
+
|Oct 29, 2012
 +
|Jan 03, 2013
 +
|http://www1.gi-ev.de/fachbereiche/sicherheit/fg/sidar/imf/imf2013/cfp.html
 +
|-
 +
|IEEE Symposium on Security & Privacy
 +
|Nov 14, 2012
 +
|Jan 28, 2013
 +
|http://www.ieee-security.org/TC/SP2013/cfp.html
 +
|-
 +
|FIRST Conference
 +
|Dec 2012
 +
|Feb 2013
 +
|http://conference.first.org/2013/
 +
|-
 +
|The 1st ACM Workshop on Information Hiding and Multimedia Security
 +
|Jan 25, 2013
 +
|Apr 02, 2013
 +
|http://ihmmsec.org/index.php/call-for-papers
 +
|-
 +
|International Workshop on Cyber Crime
 +
|Feb 15, 2013
 +
|Mar 01, 2013
 +
|http://stegano.net/IWCC2013/
 +
|-
 +
|28th IFIP TC-11 SEC 2013 International Information Security and Privacy Conference
 +
|TBD
 +
|TBD
 +
|http://www.sec2013.org/Submissions.aspx
 +
|-
 +
|}
  
===Flow-Based Systems===
+
See also [http://www.wikicfp.com/cfp/servlet/tool.search?q=forensics WikiCFP 'Forensics']
* Arbor Networks
+
* GraniteEdge Networks http://www.graniteedgenetworks.com/
+
* Lancope http://www.lancope.com/
+
* Mazu Networks http://www.mazunetworks.com/
+
  
===Hybrid Systems===
+
== Conferences ==
These systems combine flow analysis, deep analysis, and security event monitoring and reporting.
+
{| border="0" cellpadding="2" cellspacing="2" align="top"
* Q1 Labs  http://www.q1labs.com/
+
|- style="background:#bfbfbf; font-weight: bold"
 +
! width="40%"|Title
 +
! width="20%"|Date/Location
 +
! width="40%"|Website
 +
|-
 +
|7th IEEE LCN Workshop on Security In Communication Networks
 +
|Oct 22-25<br>Clearwater, FL
 +
|http://www.sick-workshop.org
 +
|-
 +
|4th International Conference on Digital Forensics & Cyber Crime
 +
|Oct 24-28<br>West Lafayette, IN
 +
|http://d-forensics.org/2012/show/home
 +
|-
 +
|3rd Cybercrime and Trustworthy Computing Workshop
 +
|Oct 29-30<br>Bellarat, Australia
 +
|http://comp.mq.edu.au/conferences/ctc2011/
 +
|-
 +
|Paraben Forensic Innovations Conference
 +
|Nov 03-07<br>Park City, UT
 +
|http://www.pfic-conference.com/
 +
|-
 +
|2012 International Workshop on Computational Forensics
 +
|Nov 11<br>Tsukuba, Japan
 +
|http://iwcf12.arsforensica.org/
 +
|-
 +
|IEEE Conference on Technologies for Homeland Security
 +
|Nov 13-15<br>Waltham, MA
 +
|http://www.ieee-hst.org/
 +
|-
 +
|8th International Conference on Information Assurance and Security (IAS'12)
 +
|Nov 21-23<br>Sao Carlos, Brazil
 +
|http://www.mirlabs.org/ias12
 +
|-
 +
|Forensics@NIST 2012
 +
|Nov 28-30<br>Rockville, MD
 +
|http://www.nist.gov/oles/forensics-2012.cfm
 +
|-
 +
|IEEE International Workshop on Information Forensics and Security
 +
|Dec 02-05<br>Tenerife, Spain
 +
|http://www.wifs12.org/index.html
 +
|-
 +
|28th Annual Computer Security Applications Conference (ACSAC 2012)
 +
|Dec 03-07<br>Orlando, FL
 +
|http://www.acsac.org
 +
|-
 +
|2012 secau Security Congress
 +
|Dec 03-05<br>Perth, Western Australia
 +
|http://conferences.secau.org/
 +
|-
 +
|Ninth Annual IFIP WG 11.9 International Conference on Digital Forensics
 +
|Jan 28-30<br>Orlando, FL
 +
|http://www.ifip119.org/Conferences/
 +
|-
 +
|2013 DoD Cybercrime Conference
 +
|Jan 29-Feb 01<br>Louisville, KY
 +
|http://www.dodcybercrime.com/
 +
|-
 +
|65th Annual AAFS Meeting
 +
|Feb 18-23<br>Washington, DC
 +
|http://www.aafs.org/aafs-2013-annual-meeting
 +
|-
 +
|IMF 2013 - 7th International Conference on IT Security Incident Management & IT Forensics
 +
|Mar 12-14<br>Nuernberg, Germany
 +
|http://www1.gi-ev.de/fachbereiche/sicherheit/fg/sidar/imf/imf2013/about.html
 +
|-
 +
|IEEE Symposium on Security & Privacy
 +
|May 19-23<br>San Francisco, CA
 +
|http://www.ieee-security.org/TC/SP2013/index.html
 +
|-
 +
|International Workshop on Cyber Crime
 +
|May 24<br>San Francisco, CA
 +
|http://stegano.net/IWCC2013/
 +
|-
 +
|Techno Security and Forensics Investigation Conference
 +
|Jun 02-05<br>Myrtle Beach, SC
 +
|http://www.thetrainingco.com/html/Security%20Conference%202013.html
 +
|-
 +
|Mobile Forensics World
 +
|Jun 02-05<br>Myrtle Beach, SC
 +
|http://www.techsec.com/html/MFC-2013-Spring.html
 +
|-
 +
|FIRST Conference
 +
|Jun 16-21<br>Bangkok, Thailand
 +
|http://conference.first.org/2013/
 +
|-
 +
|The 1st ACM Workshop on Information Hiding and Multimedia Security
 +
|Jun 17-19<br>Montpellier, France
 +
|http://ihmmsec.org/
 +
|-
 +
|28th IFIP TC-11 SEC 2013 International Information Security and Privacy Conference
 +
|Jul 08-10<br>Auckland, New Zealand
 +
|http://www.sec2013.org/
 +
|-
 +
|DFRWS 2013
 +
|Aug 04-07<br>Monterey, CA
 +
|http://dfrws.org/2013
 +
|-
 +
|Regional Computer Forensics Group GMU 2013
 +
|Aug 05-09<br>Fairfax, VA
 +
|http://www.rcfg.org
 +
|-
 +
|22nd USENIX Security Symposium - USENIX Security '13
 +
|Aug 14-16<br>Washington, DC
 +
|https://www.usenix.org/conferences?page=1
 +
|-
 +
|}
  
== Tips and Tricks ==
+
==See Also==
 
+
* [[Training Courses and Providers]]
* The time between two events triggered by an intruder (as seen in logfiles, for example) can be helpful. If it is very short, you can be pretty sure that the actions were performed by an automated script and not by a human user.
+
==References==
 +
* [http://faculty.cs.tamu.edu/guofei/sec_conf_stat.htm Computer Security Conference Ranking and Statistic]
 +
* [http://www.kdnuggets.com/meetings/ Meetings and Conferences in Data Mining and Discovery]
 +
* http://www.conferencealerts.com/data.htm Data Mining Conferences World-Wide]

Revision as of 07:53, 23 October 2012

PLEASE READ BEFORE YOU EDIT THE LISTS BELOW
When events begin the same day, events of a longer length should be listed first. New postings of events with the same date(s) as other events should be added after events already in the list. Please use three-letter month abbreviations (i.e. Sep, NOT Sept. or September), use two digit dates (i.e. Jan 01 NOT Jan 1), and use date ranges rather than listing every date during an event(i.e. Jan 02-05, NOT Jan 02, 03, 04, 05).
Some events may be limited to Law Enforcement Only or to a specific audience. Such restrictions should be noted when known.

This is a BY DATE listing of upcoming events relevant to digital forensics. It is not an all inclusive list, but includes most well-known activities. Some events may duplicate events on the generic conferences page, but entries in this list have specific dates and locations for the upcoming event.

This listing is divided into three sections (described as follows):

  1. Calls For Papers - Calls for papers for either Journals or for Conferences, relevant to Digital Forensics (Name, Closing Date, URL)

  2. Conferences - Conferences relevant for Digital Forensics (Name, Date, Location, URL)

  3. Training Courses and Providers - Training

Calls For Papers

Please help us keep this up-to-date with deadlines for upcoming conferences that would be appropriate for forensic research.

Title Due Date Notification Date Website
7th International Conference on IT Security Incident Management & IT Forensics Oct 29, 2012 Jan 03, 2013 http://www1.gi-ev.de/fachbereiche/sicherheit/fg/sidar/imf/imf2013/cfp.html
IEEE Symposium on Security & Privacy Nov 14, 2012 Jan 28, 2013 http://www.ieee-security.org/TC/SP2013/cfp.html
FIRST Conference Dec 2012 Feb 2013 http://conference.first.org/2013/
The 1st ACM Workshop on Information Hiding and Multimedia Security Jan 25, 2013 Apr 02, 2013 http://ihmmsec.org/index.php/call-for-papers
International Workshop on Cyber Crime Feb 15, 2013 Mar 01, 2013 http://stegano.net/IWCC2013/
28th IFIP TC-11 SEC 2013 International Information Security and Privacy Conference TBD TBD http://www.sec2013.org/Submissions.aspx

See also WikiCFP 'Forensics'

Conferences

Title Date/Location Website
7th IEEE LCN Workshop on Security In Communication Networks Oct 22-25
Clearwater, FL
http://www.sick-workshop.org
4th International Conference on Digital Forensics & Cyber Crime Oct 24-28
West Lafayette, IN
http://d-forensics.org/2012/show/home
3rd Cybercrime and Trustworthy Computing Workshop Oct 29-30
Bellarat, Australia
http://comp.mq.edu.au/conferences/ctc2011/
Paraben Forensic Innovations Conference Nov 03-07
Park City, UT
http://www.pfic-conference.com/
2012 International Workshop on Computational Forensics Nov 11
Tsukuba, Japan
http://iwcf12.arsforensica.org/
IEEE Conference on Technologies for Homeland Security Nov 13-15
Waltham, MA
http://www.ieee-hst.org/
8th International Conference on Information Assurance and Security (IAS'12) Nov 21-23
Sao Carlos, Brazil
http://www.mirlabs.org/ias12
Forensics@NIST 2012 Nov 28-30
Rockville, MD
http://www.nist.gov/oles/forensics-2012.cfm
IEEE International Workshop on Information Forensics and Security Dec 02-05
Tenerife, Spain
http://www.wifs12.org/index.html
28th Annual Computer Security Applications Conference (ACSAC 2012) Dec 03-07
Orlando, FL
http://www.acsac.org
2012 secau Security Congress Dec 03-05
Perth, Western Australia
http://conferences.secau.org/
Ninth Annual IFIP WG 11.9 International Conference on Digital Forensics Jan 28-30
Orlando, FL
http://www.ifip119.org/Conferences/
2013 DoD Cybercrime Conference Jan 29-Feb 01
Louisville, KY
http://www.dodcybercrime.com/
65th Annual AAFS Meeting Feb 18-23
Washington, DC
http://www.aafs.org/aafs-2013-annual-meeting
IMF 2013 - 7th International Conference on IT Security Incident Management & IT Forensics Mar 12-14
Nuernberg, Germany
http://www1.gi-ev.de/fachbereiche/sicherheit/fg/sidar/imf/imf2013/about.html
IEEE Symposium on Security & Privacy May 19-23
San Francisco, CA
http://www.ieee-security.org/TC/SP2013/index.html
International Workshop on Cyber Crime May 24
San Francisco, CA
http://stegano.net/IWCC2013/
Techno Security and Forensics Investigation Conference Jun 02-05
Myrtle Beach, SC
http://www.thetrainingco.com/html/Security%20Conference%202013.html
Mobile Forensics World Jun 02-05
Myrtle Beach, SC
http://www.techsec.com/html/MFC-2013-Spring.html
FIRST Conference Jun 16-21
Bangkok, Thailand
http://conference.first.org/2013/
The 1st ACM Workshop on Information Hiding and Multimedia Security Jun 17-19
Montpellier, France
http://ihmmsec.org/
28th IFIP TC-11 SEC 2013 International Information Security and Privacy Conference Jul 08-10
Auckland, New Zealand
http://www.sec2013.org/
DFRWS 2013 Aug 04-07
Monterey, CA
http://dfrws.org/2013
Regional Computer Forensics Group GMU 2013 Aug 05-09
Fairfax, VA
http://www.rcfg.org
22nd USENIX Security Symposium - USENIX Security '13 Aug 14-16
Washington, DC
https://www.usenix.org/conferences?page=1

See Also

References