DocumentCode :
3308163
Title :
NoSEBrEaK - attacking honeynets
Author :
Dornseif, Maximillian ; Holz, Thorsten ; Klein, C.N.
Author_Institution :
Lab. for Dependable Distributed Syst., Rheinisch-Westfalische Tech. Hochschule, Aachen, Germany
fYear :
2004
fDate :
10-11 June 2004
Firstpage :
123
Lastpage :
129
Abstract :
It is usually assumed that honeynets are hard to detect and that attempts to detect or disable them can be unconditionally monitored. We scrutinize this assumption and demonstrate a method how a host in a honeynet can be completely controlled by an attacker without any substantial logging taking place.
Keywords :
security of data; system monitoring; data security; honeynets; system monitoring; Communication channels; Condition monitoring; Cryptography; Information security; Kernel; Laboratories; Linux; Protection; Telecommunication traffic; Turning;
fLanguage :
English
Publisher :
ieee
Conference_Titel :
Information Assurance Workshop, 2004. Proceedings from the Fifth Annual IEEE SMC
Print_ISBN :
0-7803-8572-1
Type :
conf
DOI :
10.1109/IAW.2004.1437807
Filename :
1437807
Link To Document :
https://search.ricest.ac.ir/dl/search/defaultta.aspx?DTC=49&DC=3308163
بازگشت