Title :
Hybrid honeypot framework for malware collection and analysis
Author :
Kumar, Sanjeev ; Sehgal, Rakesh ; Bhatia, J.S.
Author_Institution :
Cyber Security Div., CDAC, Mohali, India
Abstract :
The popularity of the Internet is rising day by day, hence the security is becoming the main focused point with the advent and rising popularity of the Internet. In this paper we are proposing an integrated framework of malware collection and analysis using both of the technologies called server honeypots and client honeypots. As the server honeypots enable us to provide the deep understanding of the server side attacks whereas client honeypots enable us to provide the deep understandings of client side attacks. During our research on honeypot technologies, our main goal was to do the analysis of collected malwares from honeypots and for this we need the malwares samples from both the honeypots known as client and server honeypots. By using this integrated framework we are able to collect both types of attacks vectors. Here we are presenting malware collection and detection using both of the honeypot technologies known as client and server Honeypots. We introduce the design and implement of this system and give the results.
Keywords :
Internet; client-server systems; computer network security; invasive software; Internet; client honeypots; client side attacks; hybrid honeypot framework; malware analysis; malware collection; server honeypots; server side attacks; Databases; Graphical user interfaces; Internet; Malware; Monitoring; Servers; Client Honeypot; Computer Security; Network Security; Server Honeyot;
Conference_Titel :
Industrial and Information Systems (ICIIS), 2012 7th IEEE International Conference on
Conference_Location :
Chennai
Print_ISBN :
978-1-4673-2603-2
DOI :
10.1109/ICIInfS.2012.6304786
