面向移动网络环境的智能协同蜜网设计与性能分析

doi:10.11959/j.issn.1000-0801.2018278

Abstract

Abstract:

In the mobile network environment,the mobile honeypot resources are limited and the attack injection means are flexible,so it is necessary to dynamically deploy the honeynet to collaboratively detect the attack behavior characteristics.However,existing honey nets are susceptible to feature recognition attacks,malicious traffic within the network,and can’t be migrated across honeypots.Based on software defined networking (SDN) technology,an intelligent collaborative honeynet system (ic-Honeynet) was designed.It consisted of a reverse connection proxy module and a honeynet controller.Finally,an ic-Honeynet experimental environment was built and the effectiveness of the system was verified.The experimental results show that the throughput of the system is nearly linear,up to 8.23 Gbit/s; the additional increase in response delay is small,only in the range of 0.5 to 1.2 ms; the connection processing capability is also very strong,up to 1 473 connections/s.

Key words: Honeypot, Honeynet, mobile network, software defined networking, reverse connection proxy

CLC Number:

TP393

Liyue CHEN,Yangdan NI,Xiaoyun KONG,Sheng ZHOU,Hui HUANG,Xing ZHENG. Design and performance analysis of a SDN-based intelligent and collaborative Honeynet for mobile networks environment[J]. Telecommunications Science, 2018, 34(11): 156-165.

Figures/Tables 9

References 11

[1]	贾召鹏, 方滨兴, 刘潮歌 ,等. 网络欺骗技术综述[J]. 通信学报, 2017,38(12): 128-143.
	JIA Z P , FANG BX , LIU C G ,et al. Survey on cyber deception[J]. Journal on Communications, 2017,38(12): 128-143.
[2]	诸葛建伟, 唐勇, 韩心慧 ,等. 蜜罐技术研究与应用进展[J]. 软件学报, 2013,24(4): 825-842.
	ZHUGE J W , TANG Y , HAN X H ,et al. Honeypot technology research and application[J]. Journal of Software, 2013,24(4): 825-842
[3]	THOMPSON M F . Effects of a honeypot on the cyber grand challenge final event[J]. IEEE Security ＆ Privacy, 2018,16(2): 37-41.
[4]	JIA Z P , CUI X , LIU Q X ,et al. Micro-Honeypot:using browser fingerprinting to track attackers[C]// 2018 IEEE Third International Conference on Data Science in Cyberspace (DSC),June 18-21,2018,Guangzhou,China. Piscataway:IEEE Press, 2018: 197-204.
[5]	KUMAR S , SEHGAL R , BHATIA J S . Hybrid honeypot framework for malware collection and analysis[C]// 2012 IEEE 7th International Conference on Industrial and Information Systems (ICIIS),Aug 6-9,2012,Chennai,India. Piscataway:IEEE Press, 2012: 1-5.
[6]	CHRISTOS K . Improving mobile core network security with Honeynets[J]. IEEE Security ＆ Privacy, 2007,5(4): 40-47.
[7]	ZAKARIA W Z , MAKSOM F M , ABDULLAH K . Observing the presence of mobile malwares using low-interaction honeypot[C]// 2016 IEEE Symposium on Computer Applications ＆Industrial Electronics (ISCAIE),May 30-31,2016,Batu Feringghi,Malaysia. Piscataway:IEEE Press, 2016: 117-121.
[8]	SONG Y B , ZHU X Y , HONG Y L ,et al. A mobile communication honeypot observing system[C]// 4th International Conference on Multimedia Information Networking and Security,Nov 2-4,2012,Nanjing,China. Piscataway:IEEE Press, 2012: 861-865.
[9]	ASIT M , TAPASWI S . A software router based predictive honeypot roaming scheme for network security and attack analysis[C]// 9th International Conference of Innovations in Information Technology(IIT),March 17-19,2013,Paphos,Cyprus.[S.l.:s.n. ], 2013: 221-226.
[10]	ELIOT N , KENDALL D , BROCKWAY M . A flexible laboratory environment supporting honeypot deployment for teaching real-world cybersecurity skills[J]. IEEE Access, 2018(6): 34884-34895.
[11]	邵艾青, 毕喜军, 庞浩 . 蜜罐系统与安管平台联动结合的研究与实践[J]. 电信科学, 2017,33(Z2): 256-261.
	SHAO A Q , BI X J , PANG H . Research and practice of the combination of honeypot system and security management platform[J]. Telecommunications Science, 2017,33(Z2): 256-261.

Metrics

Recommended 0

No Suggested Reading articles found!

[1]	Zhigang YU, Xu FENG, Zhaoxiang HUANG, Zhou LU. Research on the architecture of space-ground integrated information network: integration of communication, networking and computing [J]. Telecommunications Science, 2022, 38(4): 11-29.
[2]	Tianjiao CHEN,Jiang LIU,Tao HUANG. Application of artificial intelligence in network orchestration system [J]. Telecommunications Science, 2019, 35(5): 9-16.
[3]	Li XIAO,Zhilin YUAN,Chengpeng FU,Weidong MA. Intelligent metro optical networks and key optical components [J]. Telecommunications Science, 2019, 35(4): 33-40.
[4]	Dongshan WANG,Yue MA,Yan LI,Jian GAO,Zhibin YIN. Coordinated and unified control technology of IP and optical transport network for power services [J]. Telecommunications Science, 2019, 35(3): 116-121.
[5]	Jiang ZHOU,Hewu LI. A general way to assign IPv6 trusted address under portal authentication [J]. Telecommunications Science, 2019, 35(12): 8-14.
[6]	Yuan ZHANG. Architecture and key technologies of network on demand for small and medium enterprises [J]. Telecommunications Science, 2018, 34(7): 7-14.
[7]	Cui ZHONG,Lei WANG,Xing LUO. SDN solutions for cloud data center [J]. Telecommunications Science, 2018, 34(7): 15-22.
[8]	Bin ZHUGE,Yihang QI,Hanwen FU,Weiming WANG. Network resource pricing strategy based on SDN framework [J]. Telecommunications Science, 2018, 34(7): 49-61.
[9]	Fengchao FU,Peng WANG,Yu MAO,Yongmei HUANG,Xiaobing GAO,Aihua ZHANG,Guoqiang LIN. Realization of vOLT and development trend [J]. Telecommunications Science, 2018, 34(7): 157-161.
[10]	Yanbin SHI,Qi YU,Xiaojun XIE. Operation support system blue print and evolution strategy for SDN/NFV [J]. Telecommunications Science, 2018, 34(6): 171-182.
[11]	Zhifeng LIU,Xia YIN,Zhiliang WANG,Xingang SHI,Yiqiang HUA,Xiaohong HUANG,Liang WEI,Jiangyuan YAO,Han ZHANG,Man ZENG,Zijun SU,Shuai LIU. Design and construction of hierarchical and cross-regional SDN verification and demonstration system [J]. Telecommunications Science, 2018, 34(11): 21-30.
[12]	Fang DONG,Ou LI,Youquan MO. A reconstruction algorithm of service path for mobile Ad Hoc network based on SDN [J]. Telecommunications Science, 2018, 34(10): 1-8.
[13]	Qiao SUN,Buqiao DENG,Zhiqiang WANG,Xubin PEI. A scalable load balancing strategy based on distributed server cluster [J]. Telecommunications Science, 2017, 33(9): 190-196.
[14]	Qing LI,Xuechun YAN,Sizhong CHEN. Hybrid application of location service based on mobile signaling data analysis and base station positioning technology [J]. Telecommunications Science, 2017, 33(8): 155-162.
[15]	Hua QU,Yansong LI,Jun LIU,Jihong ZHAO,Ya GUO. A method of CCN centralized control cache decision based on SDN [J]. Telecommunications Science, 2017, 33(5): 12-20.

Design and performance analysis of a SDN-based intelligent and collaborative Honeynet for mobile networks environment

RichHTML

PDF下载

Knowledge

Abstract

Cite this article

share this article

Figures/Tables 9

References 11

Related Articles 15

Metrics

Recommended 0