Practical Challenges in Building Fake Services with the Record and Play approach



Jani Tammi, Sampsa Rauti, Ville Leppänen

Rajveer Singh Shekhawat et al.

International Conference On Security Of Information And Networks

New York, NY

2017

Proceedings of the 10th International Conference On Security Of Information And Networks

ACM International Conference Proceedings Series

235

239

5

978-1-4503-5303-8

DOIhttps://doi.org/10.1145/3136825.3136896

https://research.utu.fi/converis/portal/detail/Publication/29064300


One way to learn more about how a malicious program functions
and what its objectives are is to deceive it with fake
services that provide responses containing fabricated data.
We can try to achieve this goal with so called record and
play -honeypot that learns what the normal communication
between clients and a server looks like and then tries to
mimic it, but fabricates the contents of the responses so that
they contain fake data. This paper outlines and presents
the challenges faced in practical development of such honeypot.
Some solutions and recommendations that mitigate
the identified problems are also considered.


Last updated on 2024-26-11 at 23:14