基于动态阵列蜜罐的协同网络防御策略研究

doi:10.3969/j.issn.1000-436x.2012.11.020

通信学报 ›› 2012, Vol. 33 ›› Issue (11): 159-164.doi: 10.3969/j.issn.1000-436x.2012.11.020

基于动态阵列蜜罐的协同网络防御策略研究

石乐义¹,李婕¹,刘昕¹,贾春福²

¹ 中国石油大学（华东）计算机与通信工程学院,山东青岛 266555
² 南开大学信息技术科学学院，天津 300071

出版日期:2012-11-25 发布日期:2017-07-25
基金资助:
国家自然科学基金资助项目;山东省中青年科学家科研奖励基金资助项目;中央高校基本科研业务费专项基金资助项目;中央高校基本科研业务费专项基金资助项目

Research on dynamic array honeypot for collaborative network defense strategy

Le-yi SHI¹,Jie LI¹,Xin LIU¹,Chun-fu JIA²

¹ College of Computer and Communication Engineering,China University of Petroleum,Qingdao 266555,China
² College of Information Technical Science,Nankai Un versity,Tianjin 300071,China

Online:2012-11-25 Published:2017-07-25
Supported by:
The National Natural Science Foundation of China;The Foundation of Excellent Young Scientist of Shandong Province;The Fundamental Research Funds for the Central Universities;The Fundamental Research Funds for the Central Universities

摘要/Abstract

摘要：

从虚实结合动态变化的兵阵对抗得到启发，提出动态阵列蜜罐概念，通过多机协同、功能角色的周期或伪随机切换，形成动态变化的阵列陷阱，从而达到迷惑和防范攻击者的目的。给出了动态阵列蜜罐防御模型，通过NS2网络模拟器对动态阵列蜜罐进行了系统仿真和测试，基于Java平台设计实现了动态阵列蜜罐原型系统并进行了攻击实验。仿真测试和原型实验结果均表明动态阵列蜜罐系统具有良好的网络对抗性能。

关键词: 动态阵列蜜罐, 网络防御, 兵阵, 协同控制

Abstract:

Inspired by the ancient battle diagram for military purpose,a concept of dynamic array honeypot was proposed to bewilder the attackers by coordinating and changing the role pseudo-randomly as a huge dynamic puzzle.The dynamic array honeypot model was presented,system simulation through NS2 was performed,and the prototype implementation with Java was carried out.Detailed empirical studies were launched upon both the simulation model and the prototype.The simulation results demonstrates that the dynamic array honeypot system is feasible and effective for active network confrontation.

Key words: dynamic array honeypot, network confrontation, battle diagram, collaborative contro

石乐义,李婕,刘昕,贾春福. 基于动态阵列蜜罐的协同网络防御策略研究[J]. 通信学报, 2012, 33(11): 159-164.

Le-yi SHI,Jie LI,Xin LIU,Chun-fu JIA. Research on dynamic array honeypot for collaborative network defense strategy[J]. Journal on Communications, 2012, 33(11): 159-164.

图/表 5

参考文献 12

[1]	Dynamic honeypots[EB/OL]. , 2003.
[2]	KUWATLY I , SRAJ M , MASRI Z . A dynamic honeypot design for intrusion detection[A]. IEEE/ACS International Conference on Pervasive Services[C]. Beirut,Lebanon, 2004. 95-104.
[3]	HIEB J , GRAHAM J . Anomaly-Based Intrusion Detection for Network Monitoring Using a Dynamic Honey Pot[R]. 2004.
[4]	HECKER C , NANCE K , HAY B . Dynamic honeypot construction[A]. Proceedings of the 10th Colloquium for Information Systems Securit Education[C]. Maryland,USA, 2006. 95-102.
[5]	陈启璋, 林国恩, 李建彬 . 一种基于动态蜜罐和实时仿真的蜜网设计[J]. 微计算机信息, 2006,22(36): 28-30. CHEN Q Z , LIN G N , LI J B . Honeynet design based on dynamic honeypot ＆ real-time emulation[J]. Control ＆ Automation, 2006,22(36): 28-30.
[6]	BLAKE K , CONVERSE V , EDMARK R ,et al. Method and System for Morphing Honey-Pot[R]. 2008.
[7]	SARDANA A , JOSHI R . An integrated honeypot framework for proactive detection,characterization and redirection of attacks at ISP level[J]. Journal of Information Assurance ＆ Security, 2008,3(1): 1-15.
[8]	KHATTAB S , SANGPACHATANARUK C , MOSSE D ,et al. Roaming honeypots for mitigating service-level denial-of-service attacks[A]. ICDCS2004[C]. Tokyo,Japan, 2004. 328-337.
[9]	MILLS D . Simple Network Time Protocol[S].
[10]	BADISHIY G , HERZBERG A , KEIDAR I ,et al. Keeping denial-ofservice attackers in the dark[J]. IEEE Transactions on Dependable and Secure Computing, 2007,4(3): 191-204.
[11]	石乐义, 贾春福, 吕述望 . 基于端信息跳变的主动网络防护研究[J]. 通信学报, 2008,29(2): 106-110. SHI L Y , JIA C F , LV S W . Research on end hopping for active network confrontation[J]. Journal on Communications, 2008,29(2): 106-110.
[12]	SHI L , LI J . Research on synchronization strategies for network confrontation[A]. WiCOM2010[C]. Chengdu,China, 2010. 1-4.

基于动态阵列蜜罐的协同网络防御策略研究

Research on dynamic array honeypot for collaborative network defense strategy

在线阅读

PDF下载

可视化

被引次数

摘要/Abstract

引用本文

使用本文

图/表 5

参考文献 12

相关文章 4

Metrics

推荐阅读 0

[1]	刘盈泽, 郭渊博, 方晨, 李勇飞, 陈庆礼. 基于有限理性的网络防御策略智能规划方法[J]. 通信学报, 2023, 44(5): 52-63.
[2]	张汝云, 肖戈扬, 单麒赫, 邹涛, 李丹, 滕菲. 多模态网络下多智能体协同控制的通信拓扑重构方法[J]. 通信学报, 2022, 43(4): 50-59.
[3]	石乐义,郭宏彬,温晓,李剑蓝,崔玉文,马猛飞,孙慧. 端信息跳扩混合的主动网络防御技术研究[J]. 通信学报, 2019, 40(5): 125-135.
[4]	王鹏,罗军舟,李伟,郑啸,曲延盛. 可信可控网络中多控制节点间的信息交互模型[J]. 通信学报, 2010, 31(10): 68-78.