Implementation of low interaction web server honeypot using cubieboard

2016 International Conference on Control, Electronics, Renewable Energy and Communications (ICCEREC) Pub Date : 2016-09-01 DOI:10.1109/ICCEREC.2016.7814970

Dandy Kalma Rahmatullah, S. M. Nasution, Fairuz Azmi

{"title":"Implementation of low interaction web server honeypot using cubieboard","authors":"Dandy Kalma Rahmatullah, S. M. Nasution, Fairuz Azmi","doi":"10.1109/ICCEREC.2016.7814970","DOIUrl":null,"url":null,"abstract":"Internet technology today is not free from many problems or security holes. This security holes could be exploited by an unauthorized person to steal important data. The case of the attacks occurred because the party that was attacked also did not realize the importance of network security to be applied to the system. Honeypot is a system that is designed to resemble the original production system and is made with the intention to be attacked or compromised. In this research, Cubieboard implemented using low interaction honeypot as a decoy to attract attackers. The result of this research is a low interaction honeypot implemented on embedded system with the form of Cubieboard that can emulates security vulnerabilities such as directory buster brute force, LFI, and RFI with 100% success rate, but still could not emulates SQL Injection vulnerability. One of the result of stress test with 773 samples, obtained average time of 5275 ms, deviation 2067 ms, sample throughput 367.012 per minute, and with median 5381 ms. The stress test is conducted with 50 threads and 10 ramp-ups per second.","PeriodicalId":431878,"journal":{"name":"2016 International Conference on Control, Electronics, Renewable Energy and Communications (ICCEREC)","volume":null,"pages":null},"PeriodicalIF":0.0000,"publicationDate":"2016-09-01","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"23","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"2016 International Conference on Control, Electronics, Renewable Energy and Communications (ICCEREC)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/ICCEREC.2016.7814970","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 23

Abstract

Internet technology today is not free from many problems or security holes. This security holes could be exploited by an unauthorized person to steal important data. The case of the attacks occurred because the party that was attacked also did not realize the importance of network security to be applied to the system. Honeypot is a system that is designed to resemble the original production system and is made with the intention to be attacked or compromised. In this research, Cubieboard implemented using low interaction honeypot as a decoy to attract attackers. The result of this research is a low interaction honeypot implemented on embedded system with the form of Cubieboard that can emulates security vulnerabilities such as directory buster brute force, LFI, and RFI with 100% success rate, but still could not emulates SQL Injection vulnerability. One of the result of stress test with 773 samples, obtained average time of 5275 ms, deviation 2067 ms, sample throughput 367.012 per minute, and with median 5381 ms. The stress test is conducted with 50 threads and 10 ramp-ups per second.

查看原文本刊更多论文

利用立方体板实现低交互web服务器蜜罐

当今的互联网技术并非没有许多问题或安全漏洞。未经授权的人可能会利用这些安全漏洞窃取重要数据。该案件的发生是因为被攻击方也没有意识到网络安全应用于系统的重要性。蜜罐是一种类似于原始生产系统的系统，其目的是被攻击或破坏。在本研究中，Cubieboard采用低交互蜜罐作为诱饵来吸引攻击者。本研究的结果是以Cubieboard的形式在嵌入式系统上实现了一个低交互蜜罐，可以模拟目录破坏器暴力破解、LFI、RFI等安全漏洞，成功率为100%，但仍然无法模拟SQL注入漏洞。其中对773个样本进行压力测试，得到平均时间5275 ms，偏差2067 ms，样本吞吐量367.012 /分钟，中位数5381 ms。压力测试使用50个线程和每秒10个上升进行。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文求助全文

来源期刊

2016 International Conference on Control, Electronics, Renewable Energy and Communications (ICCEREC)

自引率

0.00%

发文量