Hybrid dynamic honeypot deployment system based on cloud platform

A dynamic deployment, cloud platform technology, applied in the field of network security, can solve problems such as host application security vulnerabilities, achieve the effect of rapid reorganization, improve performance, and reduce costs

Inactive Publication Date: 2018-05-01
BEIJING INST OF COMP TECH & APPL
View PDF3 Cites 41 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

[0006] The purpose of the present invention is to provide a hybrid honeypot dynamic deployment system based on cloud platform, which is used to solve the problem of security loopholes in existing host applications

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Hybrid dynamic honeypot deployment system based on cloud platform
  • Hybrid dynamic honeypot deployment system based on cloud platform

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0020] In order to make the purpose, content, and advantages of the present invention clearer, the specific implementation manners of the present invention will be further described in detail below in conjunction with the accompanying drawings and embodiments.

[0021] figure 1 Shown is the schematic diagram of the hybrid honeypot dynamic deployment system based on the cloud platform of the present invention, as figure 1 As shown, the hybrid honeypot dynamic deployment system based on the cloud platform of the present invention includes: an agent module 1, a firewall 4, an analysis module 5, a flow redirector 6, a control module 7, a honeypot pool 11, a high-interaction honeynet 8, An intrusion detection system 9 and a security module 10 .

[0022] Such as figure 1 As shown, the proxy module 1 is deployed outside the firewall 4 of the organization, and a low-interaction honeypot 2 and a common production server 3 are deployed. The low-interaction honeypot 2 builds a virtual...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

PUM

No PUM Login to view more

Abstract

The invention discloses a hybrid dynamic honeypot deployment system based on a cloud platform. The system is deployed on the cloud platform, and comprises a low-interaction honeypot, a firewall, an analysis module, a traffic redirector, a control module, a high-interaction network, and a safeguard module, wherein the low-interaction honeypot is arranged outside the firewall and used for attractingattack traffics of an attacker; the analysis module can analyze attack behaviors of the attacker, and find out the optimum deceiving mode for a specific suspicious network traffic; the traffic redirector is used for carrying out address redirection on the suspicious traffic obtained through analysis of the analysis module; and the control module is used for guiding the traffic, on which the address redirection is carried out, to a corresponding honeypot in the high-interaction network. The hybrid dynamic honeypot deployment system based on the cloud platform provided by the invention has theadvantages that characteristics of the low-interaction honeypot and a high-interaction honeypot are combined, and the two types of the honeypots are deployed at the same time to fully exert the corresponding characteristics and advantages, so that the fidelity and the performance of a honeypot system are improved.

Description

technical field [0001] The invention belongs to the technical field of network security, in particular to a hybrid honeypot dynamic deployment system based on a cloud platform. Background technique [0002] With the rapid development of computer and network technology, accompanied by increasing security problems, new attack techniques and security threats continue to emerge and continue to evolve. Due to the inherent non-equivalence between attack and defense, defense technology cannot be developed before attack technology, resulting in increasing Internet security risks. Attackers can try to find loopholes at any time, and rarely bear the loss and risk of mistakes , and the defender needs to implement monitoring around the clock, and can implement effective defense only after some unknown attack occurs. [0003] The original network defense technologies such as firewall, intrusion detection, encryption and other technologies can be called passive defense in terms of their ...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

Application Information

Patent Timeline
no application Login to view more
Patent Type & Authority Applications(China)
IPC IPC(8): H04L29/06H04L29/08
CPCH04L63/02H04L63/1408H04L63/1441H04L63/1491H04L67/10
Inventor 温泉刘丰毛俐旻贾琼达小文陈志浩王斌吴明杰王红艳
Owner BEIJING INST OF COMP TECH & APPL
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Try Eureka
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap