Dynamic Hybrid Honeypot System Based Transparent Traffic Redirection Mechanism

Fan, Wenjun and Du, Zhihui and Fernández, David and Hui, Xinning (2016). Dynamic Hybrid Honeypot System Based Transparent Traffic Redirection Mechanism. In: "17th International Conference, ICICS 2015", 2015/12/10, Beijing, China. pp. 311-319. https://doi.org/10.1007/978-3-319-29814-6_26.

Description

Title: Dynamic Hybrid Honeypot System Based Transparent Traffic Redirection Mechanism
Author/s:
  • Fan, Wenjun
  • Du, Zhihui
  • Fernández, David
  • Hui, Xinning
Item Type: Presentation at Congress or Conference (Article)
Event Title: 17th International Conference, ICICS 2015
Event Dates: 2015/12/10
Event Location: Beijing, China
Title of Book: Information and Communications Security
Date: 2016
Subjects:
Faculty: E.T.S.I. Telecomunicación (UPM)
Department: Ingeniería de Sistemas Telemáticos [hasta 2014]
Creative Commons Licenses: Recognition

Full text

[img] PDF - Users in campus UPM only - Requires a PDF viewer, such as GSview, Xpdf or Adobe Acrobat Reader
Download (930kB)

Abstract

Honeypots are a type of security tools aimed to capture malicious activity. Related to their data capture function, two main factors are important: scalability and fidelity. A hybrid honeypot is a special honeypot system consisting of frontends and backends that can achieve a good balance between scalability and fidelity, as the frontends can monitor large-scale IP address spaces and the backends can provide fully functional systems to guarantee fidelity. The traffic redirection function is used to bridge the frontends and the backends, allowing to redirect the interesting traffic from the frontends to the backends. In this paper, a dynamic hybrid honeypot system based transparent traffic redirection mechanism is proposed in order to address the identical-fingerprint problem. The experimental results show that this mechanism can keep the traffic redirection stealthy and effective.

More information

Item ID: 41668
DC Identifier: http://oa.upm.es/41668/
OAI Identifier: oai:oa.upm.es:41668
DOI: 10.1007/978-3-319-29814-6_26
Deposited by: Wenjun Fan
Deposited on: 06 Jul 2016 07:18
Last Modified: 06 Jul 2016 11:41
  • Logo InvestigaM (UPM)
  • Logo GEOUP4
  • Logo Open Access
  • Open Access
  • Logo Sherpa/Romeo
    Check whether the anglo-saxon journal in which you have published an article allows you to also publish it under open access.
  • Logo Dulcinea
    Check whether the spanish journal in which you have published an article allows you to also publish it under open access.
  • Logo de Recolecta
  • Logo del Observatorio I+D+i UPM
  • Logo de OpenCourseWare UPM