TAILIEUCHUNG - Monitoring and analyzing system activities using high interaction honeypot

This is what distinguishes it from traditional intrusion detection systems. Still Denial of Service (DoS) attacks pose a major challenge in the online world to this day. DoS attacks characterized by many features such as easy to launch, and a large-scale, used by novices to the presence of tools based attacks .Therefore, most of the research’s concerned with disclosure of denial of service attacks. In this work a high interaction honeypot is designed to detect Denial of Service attacks by analyzing packets and extracting their features, by applying one of decision tree algorithm () to detect attacks. | International Journal of Computer Networks and Communications Security C , , JANUARY 2014, 39–45 Available online at: ISSN 2308-9830 N C S Monitoring and Analyzing System Activities Using High Interaction Honeypot B. Al-Dabagh1 and Mohammed A. Fakhri2 1, 2 Computer Science Dept. College of Computer Science and Mathematics, Mosul University, Mosul, Iraq E-mail: 1najladabagh@, 2Mohammed_a_f@ ABSTRACT Honeypot is one of protection techniques that have been used recently in the field of networks security, characterized by their effectiveness in detecting new attacks and interaction with the attackers and providing a suitable environment for them to do their attacks. After that studying the attacks, analyzing and be an impression of the attacks and the attackers. This is what distinguishes it from traditional intrusion detection systems. Still Denial of Service (DoS) attacks pose a major challenge in the online world to this day. DoS attacks characterized by many features such as easy to launch, and a large-scale, used by novices to the presence of tools based attacks .Therefore, most of the research’s concerned with disclosure of denial of service attacks. In this work a high interaction honeypot is designed to detect Denial of Service attacks by analyzing packets and extracting their features, by applying one of decision tree algorithm () to detect attacks. The proposed Honeypot monitors the system and analyzes events to detect unknown attacks by Open Source Security (OSSec). Keywords: Honeypot, DoS, Decision tree, OSSEC. 1 INTRODUCTION Today's world increasingly relies on computer networks. The use of network resources is growing and network infrastructures are gaining in size and complexity. This increase’s followed by a rising volume of security problems. New threats and vulnerabilities are found every day, and computers are far from being secure. In the first half of 2013, 4,100 vulnerabilities were

• An ninh - Bảo mật
• International Journal of Computer Networks and Communications Security
• Monitoring and analyzing system activities
• High interaction honeypot
• Still Denial of Service
• Detect Denial of Service attacks
• Securing the sip communications with XML security mechanisms
• VoIP application awareness
• Question of confidentiality and integrity
• Client authentication and data confidentiality
• Proposing minimum performance of proposed topology
• Plateau State University
• Computer networks and Communications Security
• Performance evaluation of manet protocols in communications
• Management of robots in simulation modelling
• Manet protocols in communications
• End To End Delay
• Show network optimization rate including PDR
• Deployment of voip communications in B&A spy agency
• Design and implementation
• Voip communications in B&A spy agency
• VoIP simulated in OPNET
• Proposed architecture and protocol stack for improving QoS
• Wide vehicular communications
• Vehicle to Vehicle
• An enhanced data security with compression for manets
• Enhanced data security
• Self organizing networks
• Wireless local area network security enhancement through penetration testing
• WLANs to achieve
• The frame security
• The standard network security
• Increasing the lifetime of wireless sensor networks
• Selforganizing map algorithm
• Wireless sensor networks
• Self organizing map neural networks
• Cloud computing architecture
• Wireless sensor networks for agricultural applications
• Wireless sensor actor networks
• Adaptive scheme for outliers detection in wireless sensor networks
• The Quality of Service
• Given sensor networks
• Infrared sensor and FBUS technology
• House security system based on mobile phone
• House security system
• Secure the place
• Potential applications of linear wireless sensor networks
• Linear wireless sensor networks
• LWSN in various applications
• LWSN in network topology
• Time dependent finite state machine
• Method for intrusion detection in mobile ad hoc networks
• Mobile ad hoc networks
• Malicious behavior in AODV
• Performance analysis of multimedia traffic
• MPLS communication networks with traffic engineering
• MPLS communication networks
• Conventional IP network
• Inter cluster communication in wireless sensor networks
• Inter cluster communication
• Carrying out efficient diffusion
• Cluster merging and cluster diffusion
• An optimized model for transition from Ipv4 to Ipv6 networks
• Cloud computing environment
• Ipv4 to Ipv6 networks
• Identical traffic and network loads
• The optical communications
• Simulating an optical high debit transmission chain
• Optisystem with comparison of optical windows
• Comparison of optical windows
• New unicast routing algorithm for load balancing
• Multigateway wireless mesh networks
• Negative percent algorithms
• Wireless mesh networks
• Detection of service attack
• Defense against distributed denial of service attack
• Packet filtration in wireless sensor networks
• An advance security technique challenges to government
• Wireless sensor network for health
• Emphasize ongoing treatment challenges
• Wireless sensor network
• Medical information systems
• The security of information in financial transactions via mobile
• Financial transactions via mobile
• Implement a particular algorithm
• A comprehensive approach to security requirements engineering
• Incorporating the strengths
• Best practices found
• Evaluation of security function of flipora plug in on browsers
• Flipora plug in on browsers
• Plug in in upon
• Flipora plug in
• Multi perspective analysis framework
• Multi level analysis framework
• Network security situational awareness
• Multi data analyzing researc
• Improving security and performance in the tor network
• The tor network
• IP hidden in the server