• DocumentCode
    3659738
  • Title

    Implementing high interaction honeypot to study SSH attacks

  • Author

    M. Solomon Zemene;P.S. Avadhani

  • Author_Institution
    Department of Computer Science and Systems Engineering, Andhra University, Visakhapatnam, India
  • fYear
    2015
  • Firstpage
    1898
  • Lastpage
    1903
  • Abstract
    Honeypot is a recent technology in the area of computer network security. Production systems that are connected to the Internet are the main target for various cyber attacks. This paper presents a deployment of honeypot system in campus network. The system implements high-interaction honeypot with Secure Shell installed to study common SSH attacks in Linux environment. This system records usernames and passwords that are attempted by intruder from the Internet. It also captures detail activities of the attackers while they are interacting inside the target honeypot. Intruders attack SSH servers through dictionary and brute-force mechanism followed by intrusion. This paper covers both dictionary attack and intrusion.
  • Keywords
    "Servers","IP networks","Dictionaries","Security","Internet","Kernel","Linux"
  • Publisher
    ieee
  • Conference_Titel
    Advances in Computing, Communications and Informatics (ICACCI), 2015 International Conference on
  • Print_ISBN
    978-1-4799-8790-0
  • Type

    conf

  • DOI
    10.1109/ICACCI.2015.7275895
  • Filename
    7275895
    • Link To Document
    https://search.isc.ac/dl/search/defaultta.aspx?DTC=49&DC=3659738