Risk Assessment of Production Networks Using Honeynets - Some Practical Experience
نویسندگان
چکیده
Threats for today’s production networks range from fully automated worms and viruses to targeted, highly sophisticated multi-phase attacks carried out manually. In order to properly define and dimension appropriate security architectures and policies for a network, the possible threats have to be identified and assessed both in terms of their impact on the resources to be protected and with respect to the probability and frequency of related attacks. To support this assessment, honeynets, i.e. artificial networks set up specifically to monitor, log and evaluate attack activities, have been proposed. In this paper, experiences and results gained with setting up, deploying and operating such a honeynet are reported together with some comments on the effectiveness of this approach.
منابع مشابه
Vulnerability Assessment using Honeypots
Honeypots are electronic bait, i.e. network resources (computers, routers, switches, etc.) deployed to be probed, attacked and compromised. Honeypots run special software which permanently collects data about the system and greatly aids in post-incident computer and network forensics. Several honeypots can be assembled into networks of honeypots called honeynets. Because of the wealth of data c...
متن کاملHoneynet Clusters as an early Warning System for Production Networks
Due to the prevalence of distributed and coordinated Internet attacks, many researchers and network administrators study the nature and strategies of attackers. To analyze event logs, using intrusion detection systems and active network monitoring, Honeynets are being deployed to attract potential attackers in order to investigate their modus operandi. Our goal is to use Honeynet clusters as re...
متن کاملRisk Assessment and Spatial Modeling of Heavy Metals Contamination in Topsoil around Venarj Manganese Mine by Artificial Neural Networks Method
Background and Objectives: The aim of the present study was to assess the probable heavy metals contamination in topsoil surrounding Venarj mine in Qom province using contamination indices and artificial neural networks method. Material and methods: in order to evaluate the contamination status around Venarj mine in Qom province, 70 soil samples were collected in an area of 22 Km2, and the to...
متن کاملAssessing the risk of crisis in gas distribution networks using the FAHP-PROMETHEE II method (Case study of Qazvin Province Gas Company)
Background and Aims: Natural gas is one of the most important energy sources used today in urban communities as cheap and hazardous energy. In this regard, if the government and organizations do not pay attention to the proper infrastructure for gas installations, it will create irreparable risks for that society. The assessment and management of crisis in the various processes can play a key r...
متن کاملطراحی نرمافزار SQCRA به منظور ارزیابی نیمه کمی ریسک کار با مواد شیمیایی در محیط کار
Background & Objectives : The aim of chemical risk assessment is to identify and evaluate risks originated from chemicals usages. This study aims to design a practical tool for facilitating chemical risk assessment. Methods: The proposed software was derived from chemical risk assessment method which was recommended by Ministry of Human Resources of Malaysia. All of the processes in question...
متن کامل