Title :
Sharing network logs for computer forensics: a new tool for the anonymization of netflow records
Author :
Slagell, Adam J. ; Li, Yifan ; Luo, Katherine
Abstract :
The authors have begun to address the problem of anonymized data with the development of a new prototype tool CANINE: Converter and ANonymizer for Investigating Netflow Events. Originally, just a NetFlow converter, CANINE has been adapted to anonymize 8 of the most common fields found in all NetFlow formats. Most of these fields can be anonymized in multiple ways providing trade-offs between security and utility. This is the first tool the authors are aware of that supports many levels of anonymization and is the only NetFlow anonymizer of which we are aware ?? besides a previous, less advanced tool they developed. This article is organized as follows. part 2 discusses related work in log anonymization. Part 3 discusses CANINE??s anonymization algorithms and design decisions in depth. Finally, part 4 concludes and presents future work on CANINE and the anonymization of other log types.
Keywords :
broadband networks; protocols; security of data; broadband networking applications; security protocols; trust management; wireless networking; Application software; Computer networks; Computer science education; Data security; Digital forensics; Government; Industrial training; Internet; Refining; Storage area networks;
Conference_Titel :
Security and Privacy for Emerging Areas in Communication Networks, 2005. Workshop of the 1st International Conference on
Conference_Location :
Athens, Greece
Print_ISBN :
0-7803-9468-2
DOI :
10.1109/SECCMW.2005.1588293
