Unlock instant, AI-driven research and patent intelligence for your innovation.

Method for realizing dynamic volume expansion and shrinkage of honey net

An implementation method and dynamic expansion technology, applied to electrical components, transmission systems, etc., can solve problems such as delaying attackers and attacker alert, and achieve the effects of delaying attackers, increasing time and energy, and strong practicability

Active Publication Date: 2020-12-29
广州锦行网络科技有限公司
View PDF11 Cites 1 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

[0013] a. The reward and punishment mechanism for the honeypot set will make the deployment of new honeypots and the redirection of traffic more and more inclined to the attacker's target content. This kind of reinforcement learning method makes it easier for the attacker to move laterally , on the contrary, it is easy to arouse the alert of the attacker. After the alert of the attacker, the purpose of delaying the attacker for a long time will not be achieved, and the attacker may turn to look for the real business network

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Method for realizing dynamic volume expansion and shrinkage of honey net
  • Method for realizing dynamic volume expansion and shrinkage of honey net
  • Method for realizing dynamic volume expansion and shrinkage of honey net

Examples

Experimental program
Comparison scheme
Effect test

Embodiment 1

[0056] Such as figure 1 As shown, specifically, this embodiment provides a method for implementing dynamic expansion and contraction of a honeynet, including:

[0057] Specify the network architecture that the honeynet needs to simulate;

[0058] Specifically, the network architecture to be simulated is divided into three main network areas: DMZ area, office area, and core area, and multiple sub-network areas are simulated in each main network area. The office area simulates sub-network areas such as the R&D department and the personnel department;

[0059] Divide the forum honeypot and FTP honeypot into the DMZ area, divide the OA honeypot and email honeypot into the HR department subnetwork area under the office area, and divide the Linux honeypot and Zen Tao honeypot into the R&D department under the office area Network area; divide the database honeypot and GIT honeypot into the core area. At the same time, the honeypots under each network area have differences in the d...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

PUM

No PUM Login to View More

Abstract

The invention relates to the technical field of honeypots, and provides a honeynet dynamic capacity expansion and shrinkage implementation method. The method comprises the following steps: combining honeynet dynamic capacity expansion and shrinkage management service with honeypot system data processing service, and determining whether capacity expansion needs to be performed or not and the quantity of the capacity expansion according to comparison of time consumed by an attacker for breaking through a previous area and conventional consumed time; triggering the expansion of the honeynet whenthe conditions are met, matching the number of expanded honeypots with the technical ability of an attacker, and reasonably scheduling system resources; when the attacker is judged to leave the honeynet, reducing the volume of the honeypot, and recovering and releasing resources.

Description

technical field [0001] The invention relates to the field of honeypot technology, in particular to a method for realizing dynamic expansion and contraction of a honeynet. Background technique [0002] Honeypot technology generally pretends to be a vulnerable network service and responds to the attack connection. It can be used to deceive the attacker, delay the attack progress, increase the attack cost, and monitor it. In practical applications, multiple honeypots are usually built in the same network to form a honeynet, which provides a real and rich business environment for attackers and increases the difficulty of identifying attackers. [0003] The enterprise intranet network architecture is generally divided into different functional areas such as DMZ area, office area, and core area, and each functional area will be divided into different subnets according to departments. [0004] The network architecture of the honeynet will be combined with the network architecture ...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

Application Information

Patent Timeline
no application Login to View More
IPC IPC(8): H04L29/06
CPCH04L63/1491H04L63/20
Inventor 吴建亮胡鹏刘顺明
Owner 广州锦行网络科技有限公司