Visible to the public An intelligent honeynet architecture based on software defined security

TitleAn intelligent honeynet architecture based on software defined security
Publication TypeConference Paper
Year of Publication2017
AuthorsMeng, X., Zhao, Z., Li, R., Zhang, H.
Conference Name2017 9th International Conference on Wireless Communications and Signal Processing (WCSP)
Keywordscomposability, Computer architecture, energy consumption, Hardware, honeynet, honeypot, Metrics, network function virtualization, Packet loss, privacy, pubcrawl, Resiliency, security, signal processing security, Software, Software Defined Security
AbstractHoneynet is deployed to trap attackers and learn their behavior patterns and motivations. Conventional honeynet is implemented by dedicated hardware and software. It suffers from inflexibility, high CAPEX and OPEX. There have been several virtualized honeynet architectures to solve those problems. But they lack a standard operating environment and common architecture for dynamic scheduling and adaptive resource allocation. Software Defined Security (SDS) framework has a centralized control mechanism and intelligent decision making ability for different security functions. In this paper, we present a new intelligent honeynet architecture based on SDS framework. It implements security functions over Network Function Virtualization Infrastructure (NFVI). Under uniform and intelligent control, security functional modules can be dynamically deployed and collaborated to complete different tasks. It migrates resources according to the workloads of each honeypot and power off unused modules. Simulation results show that intelligent honeynet has a better performance in conserving resources and reducing energy consumption. The new architecture can fit the needs of future honeynet development and deployment.
Citation Keymeng_intelligent_2017