Title :
Monitoring of malefactor´s activity in virtualized honeypots on the base of semantic transformation in Qemu hypervisor
Author :
Tymoshyk, Nazar ; Tymoshyk, Roman ; Piskozub, Andrian ; Khromchak, Pavlo ; Pyvovarov, Victor ; Novak, Andrij
Abstract :
In this article there have been given results of researches and realization of honeypot introspection analysis mechanism, which provides the exposure- and blocking-resistant monitoring of malefactor´s activity on Linux operating system. Difficulties of realization, and features of architectural realization, are considered in detail. On the basis of the realized software complete and effective control of events becomes possible in virtualized OS.
Keywords :
Linux; security of data; virtual machines; Linux operating system; Qemu hypervisor; blocking-resistant monitoring; exposure-resistant monitoring; honeypot introspection analysis mechanism; malefactor activity; virtualized honeypots; Control systems; Hardware; Information analysis; Instruments; Kernel; Linux; Monitoring; Operating systems; Virtual machine monitors; Virtual machining; honeypots; hypervisor; introspection; intrusion detection; system calls; virtualization;
Conference_Titel :
Intelligent Data Acquisition and Advanced Computing Systems: Technology and Applications, 2009. IDAACS 2009. IEEE International Workshop on
Conference_Location :
Rende
Print_ISBN :
978-1-4244-4901-9
Electronic_ISBN :
978-1-4244-4882-1
DOI :
10.1109/IDAACS.2009.5342958
