Abstract

Honeynet is a collection of honeypots that are set up to at- tract as many attackers as possible to learn about their pat- terns, tactics, and behaviors. However, existing honeypots suffer from a variety of fingerprinting techniques, and the current honeynet architecture does not fully utilize features of residing honeypots due to its coarse-grained data control mechanisms. To address these challenges, we propose an SDN-based intelligent honeynet called HoneyMix. HoneyMix leverages the rich programmability of SDN to cir- cumvent attackers' detection mechanisms and enables fine- grained data control for honeynet. To do this, HoneyMix simultaneously establishes multiple connections with a set of honeypots and selects the most desirable connection to inspire attackers to remain connected. In this paper, we present the HoneyMix architecture and a description of its core components.

Original languageEnglish (US)
Title of host publicationSDN-NFV Security 2016 - Proceedings of the 2016 ACM International Workshop on Security in Software Defined Networks and Network Function Virtualization, co-located with CODASPY 2016
PublisherAssociation for Computing Machinery, Inc
Pages1-6
Number of pages6
ISBN (Electronic)9781450340786
DOIs
StatePublished - Mar 11 2016
Event2016 ACM International Workshop on Security in Software Defined Networks and Network Function Virtualization, SDN-NFV Security 2016 - New Orleans, United States
Duration: Mar 11 2016 → …

Publication series

NameSDN-NFV Security 2016 - Proceedings of the 2016 ACM International Workshop on Security in Software Defined Networks and Network Function Virtualization, co-located with CODASPY 2016

Conference

Conference2016 ACM International Workshop on Security in Software Defined Networks and Network Function Virtualization, SDN-NFV Security 2016
CountryUnited States
CityNew Orleans
Period3/11/16 → …

Keywords

  • Honeynet
  • Honeypot
  • Network function virtualiza-tion
  • Software-defined networking

ASJC Scopus subject areas

  • Computer Science Applications
  • Software
  • Information Systems

Fingerprint Dive into the research topics of 'HoneyMix: Toward SDN-based intelligent honeynet'. Together they form a unique fingerprint.

  • Cite this

    Han, W., Zhao, Z., Doupe, A., & Ahn, G-J. (2016). HoneyMix: Toward SDN-based intelligent honeynet. In SDN-NFV Security 2016 - Proceedings of the 2016 ACM International Workshop on Security in Software Defined Networks and Network Function Virtualization, co-located with CODASPY 2016 (pp. 1-6). (SDN-NFV Security 2016 - Proceedings of the 2016 ACM International Workshop on Security in Software Defined Networks and Network Function Virtualization, co-located with CODASPY 2016). Association for Computing Machinery, Inc. https://doi.org/10.1145/2876019.2876022