مرکز منطقه ای اطلاع رساني علوم و فناوري - Next-Generation Honeynet Technology with Real-Time Forensics for U.S. Defense

DocumentCode :

3042021

Title :

Next-Generation Honeynet Technology with Real-Time Forensics for U.S. Defense

Author :

Capalik, Alen

Author_Institution :

NeuralIQ, Inc., Santa Monica, CA

fYear :

2007

fDate :

29-31 Oct. 2007

Firstpage :

Lastpage :

Abstract :

High-interaction honeynets are extraordinary intrusion intelligence tools. Unfortunately, their power has come at a significant cost. Forensic analysis can be cumbersome and labor intensive, management burdens are often onerous, and compromised honeynets present a risk of being used to stage further attacks. In short, these high-interaction intelligence tools have lacked operational agility. We present a novel approach to honeypot architecture that combines advances in virtualization, low-level introspection, signature generation, and forensic analysis to construct a real-time, high-interaction intrusion intelligence and prevention tool.

Keywords :

Computer networks; Costs; Forensics; Information security; Information systems; Intelligent systems; Military computing; National security; Risk analysis; Risk management;

fLanguage :

English

Publisher :

ieee

Conference_Titel :

Military Communications Conference, 2007. MILCOM 2007. IEEE

Conference_Location :

Orlando, FL, USA

Print_ISBN :

978-1-4244-1513-7

Electronic_ISBN :

978-1-4244-1513-7

Type :

conf

DOI :

10.1109/MILCOM.2007.4455171

Filename :

4455171

Link To Document :

https://search.ricest.ac.ir/dl/search/defaultta.aspx?DTC=49&DC=3042021