Title :
Honeypot Scheme for Distributed Denial-of-Service
Author_Institution :
Dept. of Comput. Sci. & Eng., Saintgits Coll. of Eng., Kottayam, India
Abstract :
Honeypots are physical or virtual machines successfully used as intrusion detection tools to detect worm-infected hosts. Denial of service (DoS) attack consumes the resources of a remote client or network itself, there by denying or degrading the service to the legitimate users. In a DoS defense mechanism, a honeypot acts as a detective server among the pool of servers in a specific network; where any packet received by the honeypot is most likely a packet from an attacker. This paper points out a number of drawbacks such as Legitimate Attacker and Link Unreachable problem in the existing honeypot schemes. This paper proposes a new efficient honeypot model to solve all the existing problems by opening a virtual communication port for any specific communication between an authorized client and server; and by providing facility to act as an Active Server (AS) for any honeypot.
Keywords :
authorisation; client-server systems; telecommunication security; virtual private networks; active server; distributed denial-of-service; honeypot model; intrusion detection tool; virtual communication port; virtual machines; worm-infected host detection; Computer crime; Electric breakdown; Filtering; Intrusion detection; Network servers; Optical propagation; Routing; Virtual machining; Web and internet services; Web server; Denial-of-Service; Honeypot; Network Security; Spoofing;
Conference_Titel :
Advanced Computer Control, 2009. ICACC '09. International Conference on
Conference_Location :
Singapore
Print_ISBN :
978-1-4244-3330-8
DOI :
10.1109/ICACC.2009.146
