{"title":"蜜罐中网络服务器应用仿真的基于agent的优化","authors":"Yilu Zhao, J. J. Blum","doi":"10.1109/ISCE.2012.6241709","DOIUrl":null,"url":null,"abstract":"Low-interaction honeypots can provide a cost-effective security mechanism for a wide range of computer systems. A central challenge in the development of low-interaction honeypots is the development of emulation programs that mimic the action of server applications on the target platform. The emulation programs must be of high enough fidelity to fool attackers. However, the manual development of these emulations is extremely time-consuming. This paper describes an agent-based optimization system that can automate the generation of emulation programs for honeypots. The system is evaluated in its ability to emulate a mail server. In this evaluation, the system produced correct responses to more than 99% of test data queries.","PeriodicalId":6297,"journal":{"name":"2012 IEEE 16th International Symposium on Consumer Electronics","volume":"66 1","pages":"1-6"},"PeriodicalIF":0.0000,"publicationDate":"2012-06-04","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"1","resultStr":"{\"title\":\"Agent-based optimization of emulations of network server applications in honeypots\",\"authors\":\"Yilu Zhao, J. J. Blum\",\"doi\":\"10.1109/ISCE.2012.6241709\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"Low-interaction honeypots can provide a cost-effective security mechanism for a wide range of computer systems. A central challenge in the development of low-interaction honeypots is the development of emulation programs that mimic the action of server applications on the target platform. The emulation programs must be of high enough fidelity to fool attackers. However, the manual development of these emulations is extremely time-consuming. This paper describes an agent-based optimization system that can automate the generation of emulation programs for honeypots. The system is evaluated in its ability to emulate a mail server. In this evaluation, the system produced correct responses to more than 99% of test data queries.\",\"PeriodicalId\":6297,\"journal\":{\"name\":\"2012 IEEE 16th International Symposium on Consumer Electronics\",\"volume\":\"66 1\",\"pages\":\"1-6\"},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2012-06-04\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"1\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"2012 IEEE 16th International Symposium on Consumer Electronics\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.1109/ISCE.2012.6241709\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"2012 IEEE 16th International Symposium on Consumer Electronics","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/ISCE.2012.6241709","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}
Agent-based optimization of emulations of network server applications in honeypots
Low-interaction honeypots can provide a cost-effective security mechanism for a wide range of computer systems. A central challenge in the development of low-interaction honeypots is the development of emulation programs that mimic the action of server applications on the target platform. The emulation programs must be of high enough fidelity to fool attackers. However, the manual development of these emulations is extremely time-consuming. This paper describes an agent-based optimization system that can automate the generation of emulation programs for honeypots. The system is evaluated in its ability to emulate a mail server. In this evaluation, the system produced correct responses to more than 99% of test data queries.
京公网安备 11010802042870号
京ICP备2023020795号-1
分享
求助内容:
应助结果提醒方式:
扫码关注我们
