Monitoring Systems White Papers
"Out-of-the-Box" Monitoring of VM-Based High-Interaction Honeypots
Overview Honeypot has been an invaluable tool for the detection and analysis of network-based attacks by either human intruders or automated malware in the wild. The insights obtained by deploying honeypots, especially high-interaction ones, largely rely on the monitoring capability on the honeypots. In practice, based on the location of sensors, honeypots can be monitored either internally or externally. Being deployed inside the monitored honeypots, internal sensors are able to provide a semantic-rich view on various aspects of system dynamics (e.g., system calls). However, their very internal existence makes them visible, tangible, and even subvertible to attackers after break-ins. From another perspective, existing external honeypot sensors (e.g., network sniffers) could be made invisible to the monitored honeypot.
| Publisher | George Mason University | File Format | |
|---|---|---|---|
| Date Published | December 2007 | ||
| Format | White Papers | ||
| Topics | |||
-
Did you find this white paper useful? 3 out of 5 users found this white paper useful
White Paper RSSProtecting key assets (security)
DownloadKey infrastructure elements must be secured against outages, damage and sabotage. Siemens offers comprehensive solutions from healthcare and power generation to water supply, transportation, and industrial production, to telecommunications.
Synthetic and Real Performance Monitoring: Measuring End-User Availability and Performance
End-user performance is critical to the success of the company. From transactions that employees need to keep the company running at top levels to customer interactions that will potentially impact...
TechNet Webcast: Deploying System Center Configuration Manager 2007 (Level 200)
While Microsoft System Center Configuration Manager 2007 is very similar to Microsoft Systems Management Server in many regards, there are a few new issues user need to take into consideration...
Five Steps to an Economical, Bulletproof Exchange Server Infrastructure
Microsoft Exchange Server has evolved into a critical application for many companies. Legacy storage infrastructures based on traditional direct-attached storage (DAS) are insufficient for meeting service level requirements associated with...
Poster Abstract: Wireless Sensor Network-Based Tunnel Monitoring
This paper describes the development and deployment of a Wireless Sensor Network (WSN) to monitor a train tunnel during adjacent construction activity. The tunnel in question is a part of...
