Honeynets: an educational resource for IT security

  • Authors:

  • Jeremiah K. Jones;Gordon W. Romney

  • Affiliations:

  • Brigham Young University, Provo, UT;Brigham Young University, Provo, UT

  • Venue:
  • CITC5 '04 Proceedings of the 5th conference on Information technology education
  • Year:
  • 2004

Quantified Score

Hi-index 0.00

Visualization

Abstract

Similar to the "Tar Baby" from Uncle Remus [1], a Honeynet is a system designed to attract troublemakers lurking about on the Internet. Honeynets are a creation of the IT security world intended to draw the attention of hackers, identify the tools in their toolkit, and learn their modus operandi. Our thesis is that Honeynets can be deployed safely in an educational environment to provide students with real-time security education. Honeynets provide vital information on current security threats, attacker tools, and attacker mentality. When implemented properly, Honeynets can also provide IT students with experience in a wide range of skills, helping to focus those skills on network and information security. Furthermore, the research that comes from Honeynets can be shared with IT security professionals to help raise awareness and increase security throughout the world. In a society where technology changes rapidly, the inability to provide IT students with the most current tools and information can quickly become a major detriment to IT education. Due to communication delays and the difficulty in keeping educators current in technology, IT students often receive outdated information. A Honeynet experiment is underway in the IT Security Lab of a higher education institution focused on educating IT engineers. The conclusion of current research is that Honeynets can indeed be an effective educational resource and tool to help solve the dynamically changing challenges in security education.