By Topic

UML extensions for honeypots in the ISTS Distributed Honeypot Project

Sign In

Cookies must be enabled to login.After enabling cookies , please use refresh or reload or ctrl+f5 on the browser for the login options.

Formats Non-Member Member
$31 $13
Learn how you can qualify for the best price for this item!
Become an IEEE Member or Subscribe to
IEEE Xplore for exclusive pricing!
close button

puzzle piece

IEEE membership options for an individual and IEEE Xplore subscriptions for an organization offer the most affordable access to essential journal articles, conference papers, standards, eBooks, and eLearning courses.

Learn more about:

IEEE membership

IEEE Xplore subscriptions

4 Author(s)
Carella, C. ; Inst. for Security Technol. Studies, Dartmouth Coll., Hanover, NH, USA ; Dike, J. ; Fox, N. ; Ryan, M.

A distributed honeypot system is a collection of honeypots distributed throughout the Internet that send their data to a central analysis point. In such a system, the need for automation, flexibility, and transparency in data control, data capture, and honeypot cleanup is more readily satisfied with virtual machine technology than with native installations. The Distributed Honeypot Project at Dartmouth College's Institute for Security Technology Studies has extended (and proposed further extensions to) User-Mode Linux (UML), a virtual-machine version of the Linux operating system, to satisfy these needs. The extensions make UML a more suitable honeypot platform, and will be useful to any Linux-based honeypot researcher.

Published in:

Information Assurance Workshop, 2004. Proceedings from the Fifth Annual IEEE SMC

Date of Conference:

10-11 June 2004