Title :
Securing E-Government Assets through Automating Deployment of Honeynets for IDS Support
Author :
Hecker, Christopher ; Hay, Brian
Author_Institution :
Dept. of Comput. Sci., Univ. of Alaska Fairbanks, Fairbanks, AK, USA
Abstract :
One of the challenges facing system e-government security professionals is the laborious task of sifting through numerous log files in an attempt to identify malicious traffic and conduct a forensics analysis to determine an appropriate course of action. This process is complicated significantly by the volume of traffic that can be associated with a production system environment. A honeynet can provide a mechanism to identify much of the forensically interesting traffic by creating a representative system to collect traffic data. However, it is challenging to maintain an accurate representation of a dynamic system in order to consistently collect the appropriate data of interest. This research effort addresses a current challenge identified by researchers at the Honeynet Project by describing a methodology for automatically creating and dynamically updating a honeynet in order to facilitate IDS support.
Keywords :
government data processing; security of data; Honeynets deployment; IDS support; forensics analysis; malicious traffic; production system environment; securing e-government assets; Computer science; Data security; Electronic government; Humans; Intrusion detection; National security; Power capacitors; Production systems; Telecommunication traffic; US Government;
Conference_Titel :
System Sciences (HICSS), 2010 43rd Hawaii International Conference on
Conference_Location :
Honolulu, HI
Print_ISBN :
978-1-4244-5509-6
Electronic_ISBN :
1530-1605
DOI :
10.1109/HICSS.2010.327
