Design and Implementation of Distributed Self-Election Dynamic Array Honeypot System
Traditional honeypot is in fact a pas-sive proactive defense mechanism because it may lose the value entirely once the adversary has de-tected the existence of the static trap and by-passed it. Our work focuses on a Self-Election dy-namic honeypot framework which aims to bewilder attackers by coordinating and switching roles peri-odically to form a huge dynamic pu2zle. In this pa-per, we discuss the UDP Spokesman synchroniza-tion scheme and the Self-Election coordination method, perform the framework simulation of the dynamic array honeypot with NS2, carry out the prototype implementation by Java, and then vali-date the effectiveness and feasibility on the simulation and prototype system. The promising results of applying this framework to mitigate the effects of attacks are shown and analyzed. Our work dem-onstrates that the SelfElection dynamic array hon-eypot system is feasible and effective for proactive network confrontation.
honeypot network confrontation self-election battle diagram network simulation
Shi Leyi Li Jie Han Xu Jia Chunfu
College of Computer & Communication Engineering, China University of Petroleum, Qingdao 266555,Shand College of Information Technical Science,Nankai University, Tianjin 300071, P. R. China
国际会议
2011年中国计算机学会服务计算学术会议(CCF NCSC2011)
济南
英文
109-115
2011-08-18(万方平台首次上网日期,不代表论文的发表时间)