Visible to the public An API Honeypot for DDoS and XSS Analysis

TitleAn API Honeypot for DDoS and XSS Analysis
Publication TypeConference Paper
Year of Publication2017
AuthorsLeaden, G., Zimmermann, M., DeCusatis, C., Labouseur, A. G.
Conference Name2017 IEEE MIT Undergraduate Research Technology Conference (URTC)
ISBN Number978-1-5386-2534-7
KeywordsAPI honeypot, APIs, application program interfaces, attack profiles, compositionality, Computer crime, computer network security, Concurrent computing, cross-site scripting, cross-site scripting malware insertion, DDoS, distributed denial of service attack, invasive software, Malware, pubcrawl, REpresentational State Transfer Application Programming Interface, resilience, Resiliency, Servers, Testing, XSS

Honeypots are servers or systems built to mimic critical parts of a network, distracting attackers while logging their information to develop attack profiles. This paper discusses the design and implementation of a honeypot disguised as a REpresentational State Transfer (REST) Application Programming Interface (API). We discuss the motivation for this work, design features of the honeypot, and experimental performance results under various traffic conditions. We also present analyses of both a distributed denial of service (DDoS) attack and a cross-site scripting (XSS) malware insertion attempt against this honeypot.

Citation Keyleaden_api_2017