利用立方体板实现低交互web服务器蜜罐

Dandy Kalma Rahmatullah, S. M. Nasution, Fairuz Azmi
{"title":"利用立方体板实现低交互web服务器蜜罐","authors":"Dandy Kalma Rahmatullah, S. M. Nasution, Fairuz Azmi","doi":"10.1109/ICCEREC.2016.7814970","DOIUrl":null,"url":null,"abstract":"Internet technology today is not free from many problems or security holes. This security holes could be exploited by an unauthorized person to steal important data. The case of the attacks occurred because the party that was attacked also did not realize the importance of network security to be applied to the system. Honeypot is a system that is designed to resemble the original production system and is made with the intention to be attacked or compromised. In this research, Cubieboard implemented using low interaction honeypot as a decoy to attract attackers. The result of this research is a low interaction honeypot implemented on embedded system with the form of Cubieboard that can emulates security vulnerabilities such as directory buster brute force, LFI, and RFI with 100% success rate, but still could not emulates SQL Injection vulnerability. One of the result of stress test with 773 samples, obtained average time of 5275 ms, deviation 2067 ms, sample throughput 367.012 per minute, and with median 5381 ms. The stress test is conducted with 50 threads and 10 ramp-ups per second.","PeriodicalId":431878,"journal":{"name":"2016 International Conference on Control, Electronics, Renewable Energy and Communications (ICCEREC)","volume":null,"pages":null},"PeriodicalIF":0.0000,"publicationDate":"2016-09-01","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"23","resultStr":"{\"title\":\"Implementation of low interaction web server honeypot using cubieboard\",\"authors\":\"Dandy Kalma Rahmatullah, S. M. Nasution, Fairuz Azmi\",\"doi\":\"10.1109/ICCEREC.2016.7814970\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"Internet technology today is not free from many problems or security holes. This security holes could be exploited by an unauthorized person to steal important data. The case of the attacks occurred because the party that was attacked also did not realize the importance of network security to be applied to the system. Honeypot is a system that is designed to resemble the original production system and is made with the intention to be attacked or compromised. In this research, Cubieboard implemented using low interaction honeypot as a decoy to attract attackers. The result of this research is a low interaction honeypot implemented on embedded system with the form of Cubieboard that can emulates security vulnerabilities such as directory buster brute force, LFI, and RFI with 100% success rate, but still could not emulates SQL Injection vulnerability. One of the result of stress test with 773 samples, obtained average time of 5275 ms, deviation 2067 ms, sample throughput 367.012 per minute, and with median 5381 ms. The stress test is conducted with 50 threads and 10 ramp-ups per second.\",\"PeriodicalId\":431878,\"journal\":{\"name\":\"2016 International Conference on Control, Electronics, Renewable Energy and Communications (ICCEREC)\",\"volume\":null,\"pages\":null},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2016-09-01\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"23\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"2016 International Conference on Control, Electronics, Renewable Energy and Communications (ICCEREC)\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.1109/ICCEREC.2016.7814970\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"2016 International Conference on Control, Electronics, Renewable Energy and Communications (ICCEREC)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/ICCEREC.2016.7814970","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}
引用次数: 23

摘要

当今的互联网技术并非没有许多问题或安全漏洞。未经授权的人可能会利用这些安全漏洞窃取重要数据。该案件的发生是因为被攻击方也没有意识到网络安全应用于系统的重要性。蜜罐是一种类似于原始生产系统的系统,其目的是被攻击或破坏。在本研究中,Cubieboard采用低交互蜜罐作为诱饵来吸引攻击者。本研究的结果是以Cubieboard的形式在嵌入式系统上实现了一个低交互蜜罐,可以模拟目录破坏器暴力破解、LFI、RFI等安全漏洞,成功率为100%,但仍然无法模拟SQL注入漏洞。其中对773个样本进行压力测试,得到平均时间5275 ms,偏差2067 ms,样本吞吐量367.012 /分钟,中位数5381 ms。压力测试使用50个线程和每秒10个上升进行。
本文章由计算机程序翻译,如有差异,请以英文原文为准。
Implementation of low interaction web server honeypot using cubieboard
Internet technology today is not free from many problems or security holes. This security holes could be exploited by an unauthorized person to steal important data. The case of the attacks occurred because the party that was attacked also did not realize the importance of network security to be applied to the system. Honeypot is a system that is designed to resemble the original production system and is made with the intention to be attacked or compromised. In this research, Cubieboard implemented using low interaction honeypot as a decoy to attract attackers. The result of this research is a low interaction honeypot implemented on embedded system with the form of Cubieboard that can emulates security vulnerabilities such as directory buster brute force, LFI, and RFI with 100% success rate, but still could not emulates SQL Injection vulnerability. One of the result of stress test with 773 samples, obtained average time of 5275 ms, deviation 2067 ms, sample throughput 367.012 per minute, and with median 5381 ms. The stress test is conducted with 50 threads and 10 ramp-ups per second.
求助全文
通过发布文献求助,成功后即可免费获取论文全文。 去求助
来源期刊
自引率
0.00%
发文量
0
×
引用
GB/T 7714-2015
复制
MLA
复制
APA
复制
导出至
BibTeX EndNote RefMan NoteFirst NoteExpress
×
提示
您的信息不完整,为了账户安全,请先补充。
现在去补充
×
提示
您因"违规操作"
具体请查看互助需知
我知道了
×
提示
确定
请完成安全验证×
copy
已复制链接
快去分享给好友吧!
我知道了
右上角分享
点击右上角分享
0
联系我们:info@booksci.cn Book学术提供免费学术资源搜索服务,方便国内外学者检索中英文文献。致力于提供最便捷和优质的服务体验。 Copyright © 2023 布克学术 All rights reserved.
京ICP备2023020795号-1
ghs 京公网安备 11010802042870号
Book学术文献互助
Book学术文献互助群
群 号:481959085
Book学术官方微信