Skip to main content

HoneyDOC: An Efficient Honeypot Architecture Enabling All-Round Design

Fan, Wenjun (2019) HoneyDOC: An Efficient Honeypot Architecture Enabling All-Round Design. IEEE Journal on Selected Areas in Communications, 37 (3). 683 -697. ISSN 0733-8716. (doi:10.1109/JSAC.2019.2894307)

PDF - Author's Accepted Manuscript
Download (1MB) Preview
[img]
Preview
Official URL
https://ieeexplore.ieee.org/abstract/document/8635...

Abstract

Honeypots are designed to trap the attacker with the purpose of investigating its malicious behaviour. Owing to the increasing variety and sophistication of cyber attacks, how to capture high-quality attack data has become a challenge in the context of honeypot area. All-round honeypots, which mean a significant improvement in sensibility, countermeasure, and stealth, are necessary to tackle the problem. In this paper, we propose a novel honeypot architecture termed HoneyDOC to support all-round honeypot design and implementation. Our HoneyDOC architecture clearly identifies three essential independent and collaborative modules, Decoy, Captor, and Orchestrator. Based on the efficient architecture, a software-defined networking-enabled honeypot system is designed, which supplies a high programmability for technically sustaining the features for capturing high-quality data. A proof-of-concept system is implemented to validate its feasibility and effectiveness. The experimental results show the benefits by using the proposed architecture compared with the previous honeypot solutions.

Item Type: Article
DOI/Identification number: 10.1109/JSAC.2019.2894307
Uncontrolled keywords: Honeypot, cyber security, network softwarization, traffic redirection, intrusion response, cyber deception
Subjects: T Technology > TK Electrical engineering. Electronics Nuclear engineering > TK5101 Telecommunications > TK5105 Data transmission systems > TK5105.5 Computer networks
T Technology > TK Electrical engineering. Electronics Nuclear engineering > TK7800 Electronics (see also: telecommunications) > TK7880 Applications of electronics (inc industrial & domestic) > TK7885 Computer engineering
Divisions: Faculties > Sciences > School of Computing
Depositing User: Wenjun Fan
Date Deposited: 19 Feb 2019 15:47 UTC
Last Modified: 03 Jun 2019 09:27 UTC
Resource URI: https://kar.kent.ac.uk/id/eprint/72626 (The current URI for this page, for reference purposes)
Fan, Wenjun: https://orcid.org/0000-0002-7363-9695
  • Depositors only (login required):

Downloads

Downloads per month over past year