Downloaded 75 times
More Related Content
Honeypot Basics
- 1.
- 2. HONEYPOTS • What ishoneypot ? A honeypot is a computer security mechanism set to detect, deflect or counteract attempts at unauthorized use of information system. It’s simply a TRAP to attacker.
- 3. HONEYPOTS • How itworks ? A honeypot consists of data that appears to be a legitimate part of the site but is actually isolated and monitored, and that seems to contain information or a resource of value to attackers, which are then blocked.
- 4.
- 5. HONEYPOTS Architecture: •As a bait •Justsome regular system •More attractive
- 6.
- 7. HONEYPOTS • HONEYPOT CLASSIFICATION: ByImplementation • Virtual • Physical By purpose • Production • Research By level of interaction • High • Low • Middle?
- 8. HONEYPOTS • IMPLEMENTATION OFHONEYPOT: Physical • Real machines • Own IP Addresses • Often high-interactive Virtual • Simulated by other machines that: –Respond to the traffic sent to the honeypots –May simulate a lot of virtual honeypots at the same time
- 9. HONEYPOTS • PROPOSE OFHONEYPOT: Research Complex to deploy and maintain. Captures extensive information. Run by a volunteer(non-profit). Used to research the threats organization face. Production Easy to use Capture only limited information Used by companies or corporations Mitigates risks in organization
- 10. HONEYPOTS • INTERACTION LEVEL: •Low Interaction • High Interaction
- 11. HONEYPOTS • LOW INTERACTIONVS. HIGH INTERACTION:
- 12. HONEYPOTS • Placement ofhoneypot In front of the firewall (Internet) DMZ (De-Militarized Zone) Behind the firewall (intranet)
- 13.
- 14.
- 15. HONEYPOTS Prevention: •Keeping the burglarout of your house. •Honeypots, in general are not effective prevention mechanisms.
- 16. HONEYPOTS Detection: •Detecting the burglarwhen he breaks in.
- 17. HONEYPOTS Response: •Honeypots can beused to help respond to an incident.
- 18.