A security framework for blocking new types of internet worms in ubiquitous computing environments

Authors:
Iksu Kim;Yongyun Cho
Affiliations:
School of Computing, Soongsil University, Seoul, Korea;Information and Communication Engineering, Sunchon National University, Suncheon, Jeonnam, Korea
Venue:
ICCSA'12 Proceedings of the 12th international conference on Computational Science and Its Applications - Volume Part IV
Year:
2012

Citing 3
Cited 0

Honeypots: Tracking Hackers

Honeypots: Tracking Hackers
Using Honeynets to Protect Large Enterprise Networks

IEEE Security and Privacy
An RTSD System against Various Attacks for Low False Positive Rate Based on Patterns of Attacker's Behaviors

IEICE - Transactions on Information and Systems

Quantified Score

Hi-index	0.00

Visualization

Abstract

In ubiquitous computing environments, many of services may communicate valuable data with each other through networking based on Internet. So, a service of ubiquitous computing environments has to be invulnerable to any type of Internet worms or attacks. Internet worms can compromise vulnerable servers in a short period of time. The security systems using signatures cannot protect servers from new types of Internet worms. In this paper, we propose a security framework for blocking new types of Internet worms, using the Snort and Honeytrap. Honeytrap are installed on every client, which detects Internet worm attacks. All interactions with Honeytrap are regarded as attacks because it is installed to lure Internet worms. In the proposed framework, when Honeytraps detect Internet worm attacks, Snort blocks the attacks.