Enabling an Anatomic View to Investigate Honeypot Systems: A Survey

Fan, Wenjun; Du, Zhihui; Fernández Cambronero, David y Villagra González, Victor Abraham (2017). Enabling an Anatomic View to Investigate Honeypot Systems: A Survey. "IEEE Systems Journal" ;

Descripción

Título: Enabling an Anatomic View to Investigate Honeypot Systems: A Survey
Autor/es:
  • Fan, Wenjun
  • Du, Zhihui
  • Fernández Cambronero, David
  • Villagra González, Victor Abraham
Tipo de Documento: Artículo
Título de Revista/Publicación: IEEE Systems Journal
Fecha: 2017
Materias:
Escuela: E.T.S.I. Telecomunicación (UPM)
Departamento: Ingeniería de Sistemas Telemáticos [hasta 2014]
Licencias Creative Commons: Ninguna

Texto completo

[img]
Vista Previa
PDF (Document Portable Format) - Se necesita un visor de ficheros PDF, como GSview, Xpdf o Adobe Acrobat Reader
Descargar (229kB) | Vista Previa

Resumen

A honeypot is a type of security facility deliberately created to be probed, attacked and compromised. It is often used for protecting production systems by detecting and deflecting unauthorized accesses. It is also useful for investigating the behaviour of attackers, and in particular, unknown attacks. For the past 17 years much effort has been invested in the research and development of honeypot based techniques and tools and they have evolved to become an increasingly powerful means of defending against the creations of the blackhat community. In this paper, by studying multiple honeypot systems, the two essential elements of honeypots - the decoy and the security program - are captured and presented, together with two abstract organizational forms - independent and cooperative - in which these two elements can be integrated. A novel decoy and security program (D-P) based taxonomy is proposed, for the purpose of investigating and classifying the various techniques involved in honeypot systems. An extensive set of honeypot projects and research, which cover the techniques applied in both independent and cooperative honeypots, is surveyed under the taxonomy framework. Finally, the taxonomy is applied to a wide set of tools and systems in order to demonstrate its validity and predict the tendency of honeypot development.

Más información

ID de Registro: 45563
Identificador DC: http://oa.upm.es/45563/
Identificador OAI: oai:oa.upm.es:45563
Depositado por: Wenjun Fan
Depositado el: 24 Abr 2017 07:04
Ultima Modificación: 01 Ene 2018 23:30
  • GEO_UP4
  • Open Access
  • Open Access
  • Sherpa-Romeo
    Compruebe si la revista anglosajona en la que ha publicado un artículo permite también su publicación en abierto.
  • Dulcinea
    Compruebe si la revista española en la que ha publicado un artículo permite también su publicación en abierto.
  • Recolecta
  • InvestigaM
  • Observatorio I+D+i UPM
  • OpenCourseWare UPM