Title :
TCP Attack Analysis on Packets Captured Using Symantec Decoy Server
Author :
Nizamani, Ali Bakhtiar ; Belaton, Bahari
Author_Institution :
College of Information Technology Universiti Tenaga Nasional, 43009 Kajang, Selangor, Malaysia, nizamani@uniten.edu.my
Abstract :
This paper discusses results obtained from Symantec Decoy Server (previously known as Mantrap) with an introduction to honeypots. Lance Spitzner of the Honeynet Project introduced the concept of honeypots. A honeypot is in essence a decoy server, which has no real or strategic value and is only setup to attract crackers towards it. The idea is to trap the crackers and learn cracking techniques from them. Rapid increase in unauthorized intrusions over the Internet provides a great motivation to explore honeypots at a greater depth. We will provide analysis on TCP based denial of service attack carried out on Symantec Decoy Server based honeypot. These results highlight the importance of honeypot as a tool of learning and preventing future intrusions.
Keywords :
Honeypots; Symantec Decoy Server; denial of service attack; Computer crime; Computer worms; Educational institutions; Information security; Information technology; Network servers; Radio access networks; Surface cracks; Web and internet services; Web server; Honeypots; Symantec Decoy Server; denial of service attack;
Conference_Titel :
Information and Communication Technologies, 2005. ICICT 2005. First International Conference on
Print_ISBN :
0-7803-9421-6
DOI :
10.1109/ICICT.2005.1598595
