|تعداد مشاهده مقاله||2,363,648|
|تعداد دریافت فایل اصل مقاله||1,661,795|
An Advanced Hybrid Honeypot for Providing Effective Resistance in Automatic Network Generation
|Journal of Electrical and Computer Engineering Innovations (JECEI)|
|مقاله 1، دوره 7، شماره 2، مهر 2019، صفحه 133-144 اصل مقاله (1.03 M)|
|نوع مقاله: Original Research Paper|
|شناسه دیجیتال (DOI): 10.22061/jecei.2020.5621.241|
|M. Amiri؛ A. Barati*|
|Department of Computer Engineering, Dezful Branch, Islamic Azad University, Dezful, Iran|
|تاریخ دریافت: 15 مرداد 1397، تاریخ بازنگری: 29 دی 1397، تاریخ پذیرش: 30 فروردین 1398|
|Background and Objectives: Increasing usage of Internet and computer networks by individuals and organizations and also attackers’ usage of new methods and tools in an attempt to endanger network security, have led to the emergence of a wide range of threats to networks.|
Methods: A honeypot is one of the basic techniques employed for network security improvement. It is basically designed to be attacked so as to get the attackers’ information and trap them. By using a vulnerable scanner in this paper, we obtained the required network vulnerabilities and normalized them via the proposed method. Then, a dynamic hybrid honeypot has proposed by high and low interaction honeypots. Also, in the proposed method, by footprinting and scanning of an integrated network, a detailed picture of the production network and a honeypot configuration file are generated.
Results: As a result, more devices could be detected via automated production by the proposed method.
Conclusion: This method could accelerate honeypot production and reduce the users’ mistakes during their manual production. Monitoring network traffic, collecting the information of network machines, determining network operating systems, and storing data in a database are the specific features of this system that could be performed by using the selected network scanning tools and modules.
|Honeypot؛ Social engineering؛ Vulnerable scanner؛ Dynamic honeypot|
 M. E. Namin, M. Hosseinzadeh, N. Bagheri, A. Khademzadeh, “RSPAE: RFID search protocol based on authenticated encryption,” Journal of Electrical and Computer Engineering Innovations, 6(2): 179-192, 2018.
 M. Safkhani, “Cryptanalysis of R2AP an ultra lightweight authentication protocol for RFID,” Journal of Electrical and Computer Engineering Innovations, 6(1): 107-114, 2018.
 L. Spitzner, Honeypots: tracking hackers, Addison Wesley Professional, 1: 2002.
 P. Diebold, A. Hess, G. Schäfer, “A honeypot architecture for detecting and analyzing unknown network attacks,” in Proc. 14th Kommunikation in Verteilten Systemen (KiVS05): 245-255, 2005.
 J. P. John, F. Yu, Y. Xie, A. Krishnamurthy, M. Abadi, “Heat-seeking honeypots: design and experience,” in Proc. The 20th International Conference on World Wide Web, ACM: 207-216, 2011.
 A. M. Leonard, H. Cai, K. K. Venkatasubramanian, M. Ali, and T. Eisenbarth, “A honeypot system for wearable networks,” in Proc. IEEE 37th Sarnoff Symposium: 199-201, 2016.
 J. D. Guarnizo, A. Tambe, S. S. Bhunia, M. Ochoa, N. O. Tippenhauer, A. Shabtai, Y. Elovici, “Siphon: Towards scalable high-interaction physical honeypots,” in Proc. The 3rd ACM Workshop on Cyber-Physical System Security: 57-68, 2017.
 D. Fraunholz, D. Krohmer, H. D. Schotten, C. Nogueira, “Introducing FALCOM: A multifunctional high-interaction honeypot framework for industrial and embedded applications,” in Proc. International Conference on Cyber Security and Protection of Digital Services (Cyber Security)): 1-8, 2018.
 J. Daubert, D. Boopalan, M. Mühlhäuser, E. Vasilomanolakis, “HoneyDrone: A medium-interaction unmanned aerial vehicle honeypot,” in Proc. NOMS 2018-2018 IEEE/IFIP Network Operations and Management Symposium: 1-6, 2018.
 M. Baykara, R. DAŞ, “SoftSwitch: A centralized honeypot-based security approach using software-defined switching for secure management of VLAN networks,” Turkish Journal of Electrical Engineering & Computer Sciences, 27(5): 3309-3325, 2019.
 F. Pouget, M. Dacier, V. H. Pham, “Leurreé.com: On the advantages of deploying a large scale distributed honeypot platform,” in Proc. The E-Crime and Computer Evidence Conference, 2005.
 J. Levine, R. LaBella, H. Owen, D. Contis, and B. Culver, “The use of honeynets to detect exploited systems across large enterprise networks,” in Proc. Information Assurance Workshop, IEEE Systems, Man and Cybernetics Society: 92-99, 2003.
 J. G. Levine, J. B. Grizzard, and H. L. Owen, “Using honeynets to protect large enterprise networks,” IEEE Security & Privacy, 2(6): 73-75, 2004.
 S. Azadegan and V. McKenna, “Use of honeynets in computer security education,” in Proc. IEEE Fourth Annual ACIS International Conference on Computer and Information Science: 320-325, 2005.
 ‘VMware”, 01 October 2018.
 N. Provos, T. Holz, Virtual honeypots: from botnet tracking to intrusion detection, Pearson Education, 2007.
 P. Fanfara, M. Dufala, J. Radušovský, “Autonomous hybrid honeypot as the future of distributed computer systems security,” Acta Polytechnica Hungarica, 10(6): 25-42, 2013.
 I. Kuwatly, M. Sraj, Z. Al Masri, and H. Artail, “A dynamic honeypot design for intrusion detection,” in Proc. IEEE/ACS International Conference on Pervasive Services: 95-104, 2004.
 C. Hecker, B. Hay, “Securing E-government assets through automating deployment of honeynets for IDS support,” in Proc. 43rd Hawaii International Conference in System Sciences (HICSS): 1-10, 2010.
تعداد مشاهده مقاله: 517
تعداد دریافت فایل اصل مقاله: 635