HoneyLab: Large-Scale Honeypot Deployment and Resource Sharing

Chin, Wee-Yung; Markatos, Evangelos P.; Antonatos, Spiros; Ioannidis, Sotiris

doi:10.1109/nss.2009.65

Cited by 15 publications

(10 citation statements)

References 13 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Honeylab [42] provides a platform to share IP address space and computing resources. It is a distributed infrastructure overlay that allows security researchers to create their own desired honeypot systems without setting up distributed sensors in various geographical locations.…”

Section: A Features Of Decoymentioning

confidence: 99%

Enabling an Anatomic View to Investigate Honeypot Systems: A Survey

Fan

Fernández

et al. 2018

IEEE Systems Journal

View full text Add to dashboard Cite

Abstract-A honeypot is a type of security facility deliberately created to be probed, attacked, and compromised. It is often used for protecting production systems by detecting and deflecting unauthorized accesses. It is also useful for investigating the behavior of attackers, and in particular, unknown attacks. For the past 17 years plenty of effort has been invested in the research and development of honeypot techniques, and they have evolved to be an increasingly powerful means of defending against the creations of the blackhat community. In this paper, by studying a wide set of honeypots, the two essential elements of honeypots-the decoy and the captorare captured and presented, together with two abstract organizational forms-independent and cooperative-where these two elements can be integrated. A novel decoy and captor (D-C) based taxonomy is proposed for the purpose of studying and classifying the various honeypot techniques. An extensive set of independent and cooperative honeypot projects and research that cover these techniques is surveyed under the taxonomy framework. Furthermore, two subsets of features from the taxonomy are identified, which can greatly influence the honeypot performances. These two subsets of features are applied to a number of typical independent and cooperative honeypots separately in order to validate the taxonomy and predict the honeypot development trends.

show abstract

Section: A Features Of Decoymentioning

confidence: 99%

Enabling an Anatomic View to Investigate Honeypot Systems: A Survey

Fan

Fernández

et al. 2018

IEEE Systems Journal

View full text Add to dashboard Cite

show abstract

“…[3] outline some requirements for deploying and managing virtual honeynets. Based on their paper, we discuss each requirement.…”

Section: Advantages and Limitations Of Proposed Systemmentioning

confidence: 99%

Framework for distributed virtual honeynets

Pisarčík

Sokol

2014

Proceedings of the 7th International Conference on Security of Information and Networks

View full text Add to dashboard Cite

Honeypots and honeynets play a very important role in network security. In the paper, we evaluate the design of the distributed virtual honeynet, which consists of honeynets based on operating system-level virtualization. Using the advantages of this type of virtualization, we design and implement secure data capture engines -hardware and software sensors and one-way secure data collection. In the implementation, we consider the integration of several sensors (including memory, data storage, network traffic, users' activity, temperature, current consumption, and others) and development of secure distributed system. Since in this type of virtualization all honeypots share one kernel of operating system, it is sufficient to implement the sensors in one place -on host system. We also design and implement a central control unit, which manages all virtual honeynets. In paper, we also describe the implementation of proposed distributed virtual honeynet in a campus network.

show abstract

“…It is an information resource that is designed to be scanned, attacked and compromised 2,5 . By default, a honeypot should have no interaction activities towards it.…”

Section: Honeypot Background Definitionmentioning

confidence: 99%

A review of dynamic and intelligent honeypots

Zakaria¹,

Kiah²

2013

ScienceAsia

View full text Add to dashboard Cite

A honeypot is a computer resource that is deployed in the network to attract attackers. It is designed to be attacked and misused by them. The functionality of a honeypot depends on its technical configuration made by the system administrators. To properly blend in with the environment, a honeypot must be configured to mimic the production hosts within the network environment which is very dynamic. This paper reviews research on dynamic and intelligent honeypots.

show abstract

HoneyLab: Large-Scale Honeypot Deployment and Resource Sharing

Cited by 15 publications

References 13 publications

Enabling an Anatomic View to Investigate Honeypot Systems: A Survey

Enabling an Anatomic View to Investigate Honeypot Systems: A Survey

Framework for distributed virtual honeynets

A review of dynamic and intelligent honeypots

Contact Info

Product

Resources

About