Development of Honeypot System Emulating Functions of Database Server

Abstract

Possibilities to develop the honeypot type intrusion detection systems (IDS) for databases are discussed. Two types of concept honeypot systems are suggested. Network level system is based on the emulation of the database connections and is aimed to detect intruders searching for database servers and attempting to read basic database listeners information. Honeypot type database level IDS module is aimed to react to enquiries of database tables not used by real applications but loaded to the database to attract intruders.

Open PDF

Document Details

Document Type
Technical Report
Publication Date
Apr 20, 2004
Accession Number
ADA457668

Entities

People

  • Andrej Bielko
  • Antanas Cenys
  • Darius Rainys
  • Lukas Radvilavicius

Organizations

  • Semiconductor Physics Institute

Tags

DTIC Thesaurus Topics

  • Computer Network Security
  • Computer Networks
  • Computers
  • Cybersecurity
  • Databases
  • Detection
  • Electronic Mail
  • Information Operations
  • Information Security
  • Information Systems
  • Intrusion
  • Intrusion Detection
  • Intrusion Detection Systems
  • Intrusion Detectors
  • Network Protocols
  • Relational Database Management Systems
  • Security

Fields of Study

  • Computer science

Readers

  • Acoustics.
  • Computer Networking
  • Geospatial Intelligence and Artificial Intelligence Analytics