A Study of Intrusion Signature Based on Honeypot

	This Article
	Subscribers, please Login Purchase article: $19 PDF IEEE Xplore Subscribers RSS feed
	Share
	Email this Article to a friend
	Bibliographic References
	ASCII Text BibTex RefWorks Procite/RefMan
	Add to:
	Digg Furl Spurl Blink Simpy Google Del.icio.us Y!MyWeb
	Search
	Similar Articles Articles by Jun-feng TIAN Articles by Jian-ling WANG Articles by Xiao-hui YANG Articles by Ren-ling LI

Sixth International Conference on Parallel and Distributed Computing Applications and Technologies (PDCAT'05)

Dalian, China

December 05-December 08

ISBN: 0-7695-2405-2

	ASCII Text	x
	Jun-feng TIAN, Jian-ling WANG, Xiao-hui YANG, Ren-ling LI, "A Study of Intrusion Signature Based on Honeypot," Parallel and Distributed Computing Applications and Technologies, International Conference on, pp. 125-129, Sixth International Conference on Parallel and Distributed Computing Applications and Technologies (PDCAT'05), 2005.

	BibTex	x
	@article{ 10.1109/PDCAT.2005.51, author = {Jun-feng TIAN and Jian-ling WANG and Xiao-hui YANG and Ren-ling LI}, title = {A Study of Intrusion Signature Based on Honeypot}, journal ={Parallel and Distributed Computing Applications and Technologies, International Conference on}, volume = {0}, year = {2005}, isbn = {0-7695-2405-2}, pages = {125-129}, doi = {http://doi.ieeecomputersociety.org/10.1109/PDCAT.2005.51}, publisher = {IEEE Computer Society}, address = {Los Alamitos, CA, USA}, }

	RefWorks Procite/RefMan/Endnote	x
	TY - CONF JO - Parallel and Distributed Computing Applications and Technologies, International Conference on TI - A Study of Intrusion Signature Based on Honeypot SN - 0-7695-2405-2 SP125 EP129 A1 - Jun-feng TIAN, A1 - Jian-ling WANG, A1 - Xiao-hui YANG, A1 - Ren-ling LI, PY - 2005 KW - null VL - 0 JA - Parallel and Distributed Computing Applications and Technologies, International Conference on ER -

Jun-feng TIAN, Hebei University, Baoding, China

Jian-ling WANG, Hebei University, Baoding, China

Xiao-hui YANG, Hebei University, Baoding, China

Ren-ling LI, The Library of Hebei medical university, Shijiazhuang, China

DOI Bookmark: http://doi.ieeecomputersociety.org/10.1109/PDCAT.2005.51

To meet network security requirement, the model of SISH (Study of Intrusion Signature based on Honeypot) takes advantage of honeypot technology to collect the activities of attackers on the honeypot. According to information replied from the honeypot, and data captured on the network, one can reproduce the attack with attack tree. Having classified the attack information of the attacked objects, one can create the signature of the intrusion data in the same class by LCS(Longest Common Sub-string) algorithm. new signatures are used to enrich the signature database of the IDS to make up for the deficiency of the IDSs and perfect defense system.

Citation:

Jun-feng TIAN, Jian-ling WANG, Xiao-hui YANG, Ren-ling LI, "A Study of Intrusion Signature Based on Honeypot," pdcat, pp.125-129, Sixth International Conference on Parallel and Distributed Computing Applications and Technologies (PDCAT'05), 2005

Peer Review Notice | Give Us Feedback

Usage of this product signifies your acceptance of the Terms of Use.