Abstract
Honeypots are a type of security tools aimed to capture malicious activity. Related to their data capture function, two main factors are important: scalability and fidelity. A hybrid honeypot is a special honeypot system consisting of frontends and backends that can achieve a good balance between scalability and fidelity, as the frontends can monitor large-scale IP address spaces and the backends can provide fully functional systems to guarantee fidelity. The traffic redirection function is used to bridge the frontends and the backends, allowing to redirect the interesting traffic from the frontends to the backends. In this paper, a dynamic hybrid honeypot system based transparent traffic redirection mechanism is proposed in order to address the identical-fingerprint problem. The experimental results show that this mechanism can keep the traffic redirection stealthy and effective.
Author supplied keywords
Cite
CITATION STYLE
Fan, W., Du, Z., Fernández, D., & Hui, X. (2016). Dynamic hybrid honeypot system based transparent traffic redirection mechanism. In Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics) (Vol. 9543, pp. 311–319). Springer Verlag. https://doi.org/10.1007/978-3-319-29814-6_26
Register to see more suggestions
Mendeley helps you to discover research relevant for your work.
