A4 Vertaisarvioitu artikkeli konferenssijulkaisussa

An Interface Diversified Honeypot for Malware Analysis




TekijätSamuel Lauren, Sampsa Rauti, Ville Leppänen

ToimittajaRami Bahsoon, Rainer Weinreich

Konferenssin vakiintunut nimiWorkshop on Monitoring and Measurability of Software and Network Security

KustannuspaikkaNew York

Julkaisuvuosi2016

Kokoomateoksen nimiECSAW '16 Proceedings of the 10th European Conference on Software Architecture Workshops

Sarjan nimiICPS: ACM International Conference Proceeding Series

Numero sarjassa1239

Aloitussivu1

Lopetussivu6

Sivujen määrä6

ISBN978-1-4503-4781-5

DOIhttps://doi.org/10.1145/2993412.2993417

Verkko-osoitehttp://dl.acm.org/citation.cfm?id=2993417


Tiivistelmä

Defending information systems against advanced attacks is a challenging
task; even if all the systems have been properly updated and all the
known vulnerabilities have been patched, there is still the possibility
of previously unknown zero day attack compromising the system. Honeypots
offer a more proactive tool for detecting possible attacks. What is
more, they can act as a tool for understanding attackers intentions. In
this paper, we propose a design for a diversified honeypot. By
increasing variability present in software, diversification decreases
the number of assumptions an attacker can make about the target system.



Last updated on 2024-26-11 at 23:22