Abstract
The Voice over Internet Protocol (VoIP) is designed for voice communications over IP networks. To use a VoIP service, an individual only needs a user name for identification. In comparison, the public switched telephone network requires detailed information from a user before creating an account. The limited identity information requirement makes VoIP calls appealing to criminals. In addition, due to VoIP call encryption, conventional eavesdropping and wiretapping methods are ineffective. Forensic investigators thus require alternative methods for recovering evidence related to VoIP calls. This paper describes a digital forensic tool that extracts and analyzes VoIP packets from computers used to make VoIP calls.
Chapter PDF
Similar content being viewed by others
References
CounterPath Corporation, X-Lite, Vancouver, Canada (www.count erpath.com/x-lite.html).
In-Stat, VoIP penetration forecast to reach 79% of U.S. businesses by 2013, Scottsdale, Arizona (www.instat.com/newmk.asp?ID= 2721), February 2, 2010.
R. Koch, Criminal activity through VoIP: Addressing the misuse of your network, Technology Marketing Corporation, Norwalk, Connecticut (www.tmcnet.com/voip/1205/special-focus-criminal- activity-through-voip.htm), 2010.
R. McKemmish, What is forensic computing? Trends and Issues in Crime and Criminal Justice, no. 118, pp. 1–6, 1999.
H. Schulzrinne, S. Casner, R. Frederick and V. Jacobson, RTP: A Transport Protocol for Real-Time Applications, RFC 3550, Internet Engineering Task Force, Fremont, California (tools.ietf.org/html /rfc3550), 2003.
M. Simon and J. Slay, Voice over IP: Forensic computing implications, Proceedings of the Fourth Australian Digital Forensics Conference, pp. 1–6, 2006.
M. Simon and J. Slay, Enhancement of forensic computing investigations through memory forensic techniques, Proceedings of the International Conference on Availability, Reliability and Security, pp. 995–1000, 2009.
Skype, Luxembourg (www.skype.com).
J. Slay and M. Simon, Voice over IP forensics, Proceedings of the First International Conference on Forensic Applications and Techniques in Telecommunications, Information and Multimedia, pp. 10:1–10:6, 2008.
Author information
Authors and Affiliations
Editor information
Editors and Affiliations
Rights and permissions
Copyright information
© 2011 IFIP International Federation for Information Processing
About this paper
Cite this paper
Irwin, D., Slay, J. (2011). Extracting Evidence Related to VoIP Calls. In: Peterson, G., Shenoi, S. (eds) Advances in Digital Forensics VII. DigitalForensics 2011. IFIP Advances in Information and Communication Technology, vol 361. Springer, Berlin, Heidelberg. https://doi.org/10.1007/978-3-642-24212-0_17
Download citation
DOI: https://doi.org/10.1007/978-3-642-24212-0_17
Publisher Name: Springer, Berlin, Heidelberg
Print ISBN: 978-3-642-24211-3
Online ISBN: 978-3-642-24212-0
eBook Packages: Computer ScienceComputer Science (R0)