Abstract | ||
---|---|---|
Honeynet is a collection of honeypots that are set up to attract as many attackers as possible to learn about their patterns, tactics, and behaviors. However, existing honeypots suffer from a variety of fingerprinting techniques, and the current honeynet architecture does not fully utilize features of residing honeypots due to its coarse-grained data control mechanisms. To address these challenges, we propose an SDN-based intelligent honeynet called HoneyMix. HoneyMix leverages the rich programmability of SDN to circumvent attackers' detection mechanisms and enables fine-grained data control for honeynet. To do this, HoneyMix simultaneously establishes multiple connections with a set of honeypots and selects the most desirable connection to inspire attackers to remain connected. In this paper, we present the HoneyMix architecture and a description of its core components. |
Year | DOI | Venue |
---|---|---|
2016 | 10.1145/2876019.2876022 | SDN-NFV@CODASPY |
Keywords | Field | DocType |
Software-defined Networking,Network Function Virtualization,Honeynet,Honeypot | Honeypot,Architecture,Computer science,Network Functions Virtualization,Computer security,Computer network,Data control,Software-defined networking | Conference |
Citations | PageRank | References |
7 | 0.56 | 9 |
Authors | ||
4 |
Name | Order | Citations | PageRank |
---|---|---|---|
Wonkyu Han | 1 | 56 | 3.97 |
Ziming Zhao | 2 | 322 | 30.52 |
Adam Doupé | 3 | 357 | 33.14 |
Gail-Joon Ahn | 4 | 3012 | 203.39 |