Title :
Comparison of Empirical Data from Two Honeynets and a Distributed Honeypot Network
Author :
Bloomfield, Robin ; Gashi, Ilir ; Povyakalo, Andrey ; Stankovic, Vladimir
Author_Institution :
Centre for Software Reliability, City Univ. London, London
Abstract :
In this paper we present empirical results and speculative analysis based on observations collected over a two month period from studies with two high interaction honeynets, deployed in a corporate and an SME (small to medium enterprise) environment, and a distributed honeypots deployment. All three networks contain a mixture of Windows and Linux hosts. We detail the architecture of the deployment and results of comparing the observations from the three environments. We analyze in detail the times between attacks on different hosts, operating systems, networks or geographical location. Even though results from honeynet deployments are reported often in the literature, this paper provides novel results analyzing traffic from three different types of networks and some initial exploratory models. This research aims to contribute to endeavours in the wider security research community to build methods, grounded on strong empirical work, for assessment of the robustness of computer-based systems in hostile environments.
Keywords :
Linux; distributed processing; security of data; small-to-medium enterprises; Linux hosts; Windows hosts; computer-based systems; corporate environment; distributed honeypot network; distributed honeypots deployment; interaction honeynets; operating systems; security research community; small to medium enterprise environment; speculative analysis; Cancer; Computer security; Data engineering; Linux; Operating systems; Reliability engineering; Robustness; Software reliability; Telecommunication traffic; Traffic control;
Conference_Titel :
Software Reliability Engineering, 2008. ISSRE 2008. 19th International Symposium on
Conference_Location :
Seattle, WA
Print_ISBN :
978-0-7695-3405-3
Electronic_ISBN :
1071-9458
DOI :
10.1109/ISSRE.2008.62
