Home // ICNS 2020, The Sixteenth International Conference on Networking and Services // View article

Dynamic Intrusion Deception in a Cloud Environment

Authors:
Chia-Chi Teng
Aaron Cowley
Russel Havens

Keywords: Cloud Computing; Intrusion Detection; Intrusion Deception; Honeypot; Honeynet

Abstract:
As cyber-attacks become more sophisticated, Network Intrusion Detection Systems also need to adapt to counter the evolving advanced persistent threats. Security deception, such as Honeypot, is an emerging defense tactic for security operation in enterprise network or commercial cloud environment. A well designed Honeypot can fool attackers and malicious agents into a made-up system that is monitored by security operators who can safely observe the attacks and promptly develop counter measures. However, the availability of Anti-Honeypot technologies has made the deception defense more challenging. A dynamic deception method is necessary to counter the modern Honeypot detection systems. We propose a dynamic intrusion deception method designed to run in a public cloud environment. A prototype of Honeynet is built using the Microsoft Windows Azure Resource Group virtual machines and network management platform.

Pages: 26 to 30

Copyright: Copyright (c) IARIA, 2020

Publication date: September 27, 2020

Published in: conference

ISSN: 2308-4006

ISBN: 978-1-61208-786-3

Location: Lisbon, Portugal

Dates: from September 27, 2020 to October 1, 2020