Design of network security projects using honeypots

Authors:
Karthik Sadasivam;Banuprasad Samudrala;T. Andrew Yang
Affiliations:
University of Houston, Houston, TX;University of Houston, Houston, TX;University of Houston, Houston, TX
Venue:
Journal of Computing Sciences in Colleges
Year:
2005

Citing 6
Cited 6

Honeypots: Tracking Hackers

Honeypots: Tracking Hackers
Secrets & Lies: Digital Security in a Networked World

Secrets & Lies: Digital Security in a Networked World
Honeypots for Distributed Denial of Service Attacks

WETICE '02 Proceedings of the 11th IEEE International Workshops on Enabling Technologies: nfrastructure for Collaborative Enterprises
Defeating Internet Attacks Using Risk Awareness and Active Honeypots

IWIA '04 Proceedings of the Second IEEE International Information Assurance Workshop (IWIA'04)
Design of a distributed computer security lab

Journal of Computing Sciences in Colleges
A virtual honeypot framework

SSYM'04 Proceedings of the 13th conference on USENIX Security Symposium - Volume 13

Developing certificate-based projects for web security classes

Journal of Computing Sciences in Colleges
Honeypots: concepts, approaches, and challenges

ACM-SE 45 Proceedings of the 45th annual southeast regional conference
Laboratory experiments for network security instruction

Journal on Educational Resources in Computing (JERIC)
Security Through Deception

Information Systems Security
Puppetnets and botnets: information technology vulnerability exploits that threaten basic internet use

Proceedings of the 4th annual conference on Information security curriculum development
InfoSec technology management of user space and services through security threat gateways

Proceedings of the 4th annual conference on Information security curriculum development

Quantified Score

Hi-index	0.01

Visualization

Abstract

Honeypots are closely monitored decoys that are employed in a network to study the trail of hackers and to alert network administrators of a possible intrusion. Using honeypots provides a cost-effective solution to increase the security posture of an organization. Even though it is not a panacea for security breaches, it is useful as a tool for network forensics and intrusion detection. Nowadays, they are also being extensively used by the research community to study issues in network security, such as Internet worms, spam control, DoS attacks, etc. In this paper, we advocate the use of honeypots as an effective educational tool to study issues in network security. We support this claim by demonstrating a set of projects that we have carried out in a network, which we have deployed specifically for running distributed computer security projects. The design of our projects tackles the challenges in installing a honeypot in academic institution, by not intruding on the campus network while providing secure access to the Internet. In addition to a classification of honeypots, we present a framework for designing assignments/projects for network security courses. The three sample honeypot projects discussed in this paper are presented as examples of the framework.