liu.seSearch for publications in DiVA
Change search
CiteExportLink to record
Permanent link

Direct link
Cite
Citation style
  • apa
  • ieee
  • modern-language-association-8th-edition
  • vancouver
  • oxford
  • Other style
More styles
Language
  • de-DE
  • en-GB
  • en-US
  • fi-FI
  • nn-NO
  • nn-NB
  • sv-SE
  • Other locale
More languages
Output format
  • html
  • text
  • asciidoc
  • rtf
Client-side threats and a honeyclient-based defense mechanism, Honeyscout
Linköping University, Department of Electrical Engineering.
2009 (English)Independent thesis Advanced level (professional degree), 20 credits / 30 HE creditsStudent thesis
Abstract [en]

Client-side computers connected to the Internet today are exposed to a lot malicious activity. Browsing the web can easily result in malware infection even if the user only visits well known and trusted sites. Attackers use website vulnerabilities and ad-networks to expose their malicious code to a large user base. The continuing trend of the attackers seems to be botnet construction that collects large amounts of data which could be a serious threat to company secrets and personal integrity. Meanwhile security researches are using a technology known as honeypots/honeyclients to find and analyze new malware. This thesis takes the concept of honeyclients and combines it with a proxy and database software to construct a new kind of real time defense mechanism usable in live environments. The concept is given the name Honeyscout and it analyzes any content before it reaches the user by using visited sites as a starting point for further crawling, blacklisting any malicious content found. A proof-of-concept honeyscout has been developed using the honeyclient Monkey-Spider by Ali Ikinci as a base. Results from the evaluation shows that the concept has potential as an effective and user-friendly defense technology. There are however large needs to further optimize and speed up the crawling process.

Place, publisher, year, edition, pages
2009. , p. 58
Keywords [en]
Client security, network security, malware, virus, honeypot, honeyclient, capture-hpc, monkey-spider, honeyscout
National Category
Computer Sciences
Identifiers
URN: urn:nbn:se:liu:diva-20104ISRN: LiTH-ISY-EX--09/4262- - SEOAI: oai:DiVA.org:liu-20104DiVA, id: diva2:233195
Presentation
2009-06-13, 10:00 (English)
Uppsok
Technology
Examiners
Available from: 2009-09-14 Created: 2009-08-30 Last updated: 2018-01-13Bibliographically approved

Open Access in DiVA

fulltext(1489 kB)4752 downloads
File information
File name FULLTEXT01.pdfFile size 1489 kBChecksum SHA-512
a03de654de1e80a278cae2ac9455cb08602691a413308696c23aec7deaf7f13da75d494c4949f3b7e4d645ae2f511f870cbe47545eaf45fc9d502aacde28021d
Type fulltextMimetype application/pdf

Search in DiVA

By author/editor
Clementson, Christian
By organisation
Department of Electrical Engineering
Computer Sciences

Search outside of DiVA

GoogleGoogle Scholar
Total: 4752 downloads
The number of downloads is the sum of all downloads of full texts. It may include eg previous versions that are now no longer available

urn-nbn

Altmetric score

urn-nbn
Total: 4004 hits
CiteExportLink to record
Permanent link

Direct link
Cite
Citation style
  • apa
  • ieee
  • modern-language-association-8th-edition
  • vancouver
  • oxford
  • Other style
More styles
Language
  • de-DE
  • en-GB
  • en-US
  • fi-FI
  • nn-NO
  • nn-NB
  • sv-SE
  • Other locale
More languages
Output format
  • html
  • text
  • asciidoc
  • rtf