Honeypot based intrusion management system: From a passive architecture to an ips system

TitreHoneypot based intrusion management system: From a passive architecture to an ips system
Publication TypeJournal Article
Year of Publication2013
AuthorsBendriss, E, Regragui, B
JournalJournal of Theoretical and Applied Information Technology

In this paper, we are presenting an Intrusion Prevention System (IPS) based on multiple sensors in the network. These sensors are in fact honeypots built using honeyd. Honeyd is a high level honeypot which is very light and which is offering a lot of possibilities to get the most of information gathered about attackers in general. In fact, we are presenting a solution to go from passive and isolated sensors to a collaborative platform to help prevent intrusions by analyzing all collected data. To be able to do this, honeyd2db module was developed to enable honeyd to log its data into a database instead of a local file to the sensor. This aggregation of data from all sensors give us the possibility to analyze all collected logs as a hole and come out with a decision (deny network traffic on a firewall for example) using any of the known methods of data analysis. © 2005 - 2013 JATIT & LLS.




Location map

Suivez-nous sur




Avenue Mohammed Ben Abdallah Regragui, Madinat Al Irfane, BP 713, Agdal Rabat, Maroc

Résultat de recherche d'images pour "icone fax" Télécopie : (+212) 5 37 77 72 30

    Compteur de visiteurs:312,828
    Education - This is a contributing Drupal Theme
    Design by WeebPal.