Understanding threats: A prerequisite to enhance survivability of computing systems

F. Pouget, M. Dacier, V. H. Pham

Research output: Contribution to journalArticle

1 Citation (Scopus)

Abstract

This paper shows the usefulness of using simple honeypots to obtain data for a better understanding of some internet attack processes. The acquired knowledge can then be used to drive sound security design decisions in order to improve the ability of our systems to resist to attacks. Based on three years of collected data, we provide in this paper a critical review of geographical information provided by NetGeo, a study of the aftermath of the Deloder worm and a refined analysis of the interaction between machines devoted to scan and to attack.

Original languageEnglish
Pages (from-to)153-171
Number of pages19
JournalInternational Journal of Critical Infrastructures
Volume4
Issue number1-2
DOIs
Publication statusPublished - 14 Jan 2008

    Fingerprint

Keywords

  • Data analysis
  • Forensics
  • Honeypots
  • Internet attacks

ASJC Scopus subject areas

  • Safety, Risk, Reliability and Quality
  • Environmental Science(all)
  • Energy(all)

Cite this