Experiences with a Generation III virtual Honeynet
作者: Fahim H. Abbasi , R. J. Harris
DOI: 10.1109/ATNAC.2009.5464785
关键词: Virtual machine 、 Computer science 、 Honeypot 、 Software 、 Network interface 、 Operating system 、 Host (network) 、 Network security 、 Network interface controller 、 Server
摘要: This paper proposes a methodology for establishing virtual Honeynet on VMware Server running Honeywall CDROM Roo. The implementation is specific to Linux based host having single physical network interface card. Security of Honeynets always concern, special techniques are discussed in the ensure their security and mitigate associated risks posed machines. An effort has been made that all software (both OS tools) used project either free or Open Source. Special were implemented order enhance data capture mechanisms Linux-based Honeypot efficiently generate reports. Risk evaluation suggestions improvements proposed.
sci-hub.se 参考文章(15)
L. Spitzner, Honeypots: Tracking Hackers ,(2002)
Niels Provos, Thorsten Holz, Virtual Honeypots: From Botnet Tracking to Intrusion Detection ,(2007)
J. Oikarinen, D. Reed, Internet Relay Chat Protocol RFC. ,vol. 1459, pp. 1- 65 ,(1993)
Clifford Stoll, The Cuckoo's Egg : Tracking a Spy Through the Maze of Computer Espionage ,(1991)
Bill Cheswick, An Evening with Berferd In Which a Cracker is Lured, Endured, and Studied ,(1991)
Paul Barham, Boris Dragovic, Keir Fraser, Steven Hand, Tim Harris, Alex Ho, Rolf Neugebauer, Ian Pratt, Andrew Warfield, Xen and the art of virtualization symposium on operating systems principles. ,vol. 37, pp. 164- 177 ,(2003) , 10.1145/1165389.945462
E. Balas, C. Viecco, Towards a third generation data capture architecture for honeynets systems man and cybernetics. pp. 21- 28 ,(2005) , 10.1109/IAW.2005.1495929
L. Spitzner, The Honeynet Project: trapping the hackers ieee symposium on security and privacy. ,vol. 1, pp. 15- 23 ,(2003) , 10.1109/MSECP.2003.1193207
J. Levine, R. LaBella, H. Owen, D. Contis, B. Culver, The use of Honeynets to detect exploited systems across large enterprise networks systems man and cybernetics. pp. 92- 99 ,(2003) , 10.1109/SMCSIA.2003.1232406
William Stallings, Cryptography and Network Security: Principles and Practice ,(1998)