Design and Implementation of Modular Honeynet System Based on SDN

Yan Li; Bin Wu

doi:10.5220/0008098102030212

Design and Implementation of Modular Honeynet System Based on SDN

Yan Li, Bin Wu

2019

Abstract

Traditional honeynets cannot dynamically migrate traffic. The flexibility of SDN can solve this problem. At the same time, the traditional honeynets have the disadvantages of complicated alarm logs and inability to carry out targeted analysis, and lacks protection for the honeypot. It is easy to completely destroy the honeypot and make it a jumper for the attacker to launch the next attack on the intranet. This paper proposes a modular honeynet system based on SDN, which can respond to the scanning probe-exploit-worm injected attack chain, reducing the complexity of the alarm log and improving the efficiency of the researchers in analyzing attacks. Also, a honeypot switching strategy based on the detection of the attack tree phase is proposed in the module of vulnerability response, which can delay the attacker's attack progress and reduces the risk of the honeypot. The experiment also verified the feasibility of the modular system.

Download

Paper Citation

in Harvard Style

Li Y. and Wu B. (2019). Design and Implementation of Modular Honeynet System Based on SDN.In Proceedings of the International Conference on Advances in Computer Technology, Information Science and Communications - Volume 1: CTISC, ISBN 978-989-758-357-5, pages 203-212. DOI: 10.5220/0008098102030212

in Bibtex Style

@conference{ctisc19,
author={Yan Li and Bin Wu},
title={Design and Implementation of Modular Honeynet System Based on SDN},
booktitle={Proceedings of the International Conference on Advances in Computer Technology, Information Science and Communications - Volume 1: CTISC,},
year={2019},
pages={203-212},
publisher={SciTePress},
organization={INSTICC},
doi={10.5220/0008098102030212},
isbn={978-989-758-357-5},
}

in EndNote Style

TY - CONF

JO - Proceedings of the International Conference on Advances in Computer Technology, Information Science and Communications - Volume 1: CTISC,
TI - Design and Implementation of Modular Honeynet System Based on SDN
SN - 978-989-758-357-5
AU - Li Y.
AU - Wu B.
PY - 2019
SP - 203
EP - 212
DO - 10.5220/0008098102030212