Cooperation of Intelligent Honeypots to Detect Unknown Malicious Codes

Jungsuk Song; Hiroki Takakura; Yasuo Okabe

doi:10.1109/WISTDCS.2008.10

W
WISTDCS
2008
2008 WOMBAT Workshop on Information Security Threats Data Collection and Sharing
Abstract - Cooperation of Intelligent Honeypots to Detect Unknown Malicious Codes

	This Article
	Subscribers, please Login Purchase article: $19 PDF IEEE Xplore Subscribers RSS feed
	Share
	Email this Article to a friend
	Bibliographic References
	ASCII Text BibTex RefWorks Procite/RefMan/EndNote
	Add to:
	Digg Furl Spurl Blink Simpy Google Del.icio.us Y!MyWeb
	Search
	Similar Articles Articles by Jungsuk Song Articles by Hiroki Takakura Articles by Yasuo Okabe

2008 WOMBAT Workshop on Information Security Threats Data Collection and Sharing

Cooperation of Intelligent Honeypots to Detect Unknown Malicious Codes

April 21-April 22

ISBN: 978-0-7695-3347-6

	ASCII Text	x
	Jungsuk Song, Hiroki Takakura, Yasuo Okabe, "Cooperation of Intelligent Honeypots to Detect Unknown Malicious Codes," Information Security Threats Data Collection and Sharing, WOMBAT Workshop on, pp. 31-39, 2008 WOMBAT Workshop on Information Security Threats Data Collection and Sharing, 2008.

	BibTex	x
	@article{ 10.1109/WISTDCS.2008.10, author = {Jungsuk Song and Hiroki Takakura and Yasuo Okabe}, title = {Cooperation of Intelligent Honeypots to Detect Unknown Malicious Codes}, journal ={Information Security Threats Data Collection and Sharing, WOMBAT Workshop on}, volume = {0}, year = {2008}, isbn = {978-0-7695-3347-6}, pages = {31-39}, doi = {http://doi.ieeecomputersociety.org/10.1109/WISTDCS.2008.10}, publisher = {IEEE Computer Society}, address = {Los Alamitos, CA, USA}, }

	RefWorks Procite/RefMan/Endnote	x
	TY - CONF JO - Information Security Threats Data Collection and Sharing, WOMBAT Workshop on TI - Cooperation of Intelligent Honeypots to Detect Unknown Malicious Codes SN - 978-0-7695-3347-6 SP31 EP39 A1 - Jungsuk Song, A1 - Hiroki Takakura, A1 - Yasuo Okabe, PY - 2008 KW - null VL - 0 JA - Information Security Threats Data Collection and Sharing, WOMBAT Workshop on ER -

Jungsuk Song

Hiroki Takakura

Yasuo Okabe

DOI Bookmark: http://doi.ieeecomputersociety.org/10.1109/WISTDCS.2008.10

Honeypot is one of the most popular tools to decoy attackers into our network, and to capture lots of information about the activity of malicious attackers. By tracing and analyzing collected traffic data, we can find out unknown malicious codes under an experimental stage before some codes become hazardous to an application. Although many honeypots have been proposed, there is a common problem that they can be detected easily by malicious attackers. This is very important in success or failure of honeypots because if once an attacker notices that he/she is working on a honeypot, we can no longer observe his/her malicious activities. In this paper, we propose two types of honeypot to collect unforeseen exploit codes automatically while maintaining their concealment against malicious attackers; cooperation based active honeypot and self-protection type honeypot. We have evaluated the proposed honeypots which are deployed in Kyoto University, and showed that they have capability to collect some unknown malicious codes.

Citation:

Jungsuk Song, Hiroki Takakura, Yasuo Okabe, "Cooperation of Intelligent Honeypots to Detect Unknown Malicious Codes," wistdcs, pp.31-39, 2008 WOMBAT Workshop on Information Security Threats Data Collection and Sharing, 2008

Peer Review Notice | Give Us Feedback

Usage of this product signifies your acceptance of the Terms of Use.