Skip to main content
SpringerLink
Log in

Detecting Malwares in Honeynet Using a Multi-agent System

  • Conference paper
Networked Digital Technologies (NDT 2010)

Part of the book series: Communications in Computer and Information Science ((CCIS,volume 88))

Included in the following conference series:

Abstract

The importance of network security is rapidly increasing as more and more business is conducted via these systems. The proposed honeynet system can be used to detect bots or malware based on the evaluation of events occurring within a computer network. A honeypot is a trap set to detect, deflect or in some manner counteract attempts at unauthorized access to information systems. A honeynet (a network consisting of 2 or more honeypots) is used for surveillance of larger or more diverse networks for which one honeypot may not be sufficient. The detection algorithms of these systems are based on signatures derived from the analysis of various types of malicious software. The proposed honeynet system is a combination of a post intrusion detection system and a files analyzer. It has been implemented using multi-agent technology.

This is a preview of subscription content, log in via an institution to check access.

Access this chapter

Log in via an institution
Chapter
USD 29.95
Price excludes VAT (USA)
  • Available as PDF
  • Read on any device
  • Instant download
  • Own it forever
eBook
USD 84.99
Price excludes VAT (USA)
  • Available as PDF
  • Read on any device
  • Instant download
  • Own it forever
Softcover Book
USD 109.99
Price excludes VAT (USA)
  • Compact, lightweight edition
  • Dispatched in 3 to 5 business days
  • Free shipping worldwide - see info

Tax calculation will be finalised at checkout

Purchases are for personal use only

Institutional subscriptions

Preview

Unable to display preview. Download preview PDF.

Unable to display preview. Download preview PDF.

References

  1. Piotrowski, M.: The protection of computer networks through technology honeypot (2007) (in Polish)

    Google Scholar 

  2. Rush, M., Orebaugh, A., Clark, G., Pinkard, B., Babbin, J.: Intrusion Prevention and Active Response - Deploying Network and Host IPS (2005)

    Google Scholar 

  3. Erickson, J.: Hacking: The Art of Exploitation (2008)

    Google Scholar 

  4. Holz, T., Dornseif, M.: Hands on Honeypot Technology, Black Hat 2005 (2005), http://blackhat.com

  5. Yang, G., Rong, C., Dai, Y.: A Distributed Honeypot System for Grid Security. In: Li, M., Sun, X.-H., Deng, Q.-n., Ni, J. (eds.) GCC 2003. LNCS, vol. 3032, pp. 1083–1086. Springer, Heidelberg (2004)

    Google Scholar 

  6. Barford, P., Chen, Y., Li Goyal, Z.: Employing Honeynets For Network Situational Awareness (2010)

    Google Scholar 

  7. Tang, H., Zhu, B., Ren, K.: A New Approach to Malware Detection. In: Park, J.H., et al. (eds.) ISA 2009. LNCS, vol. 5576, pp. 229–238. Springer, Heidelberg (2009)

    Google Scholar 

Download references

Author information

Authors and Affiliations

  1. Institute of Informatics, Wrocław University of Technology, Poland

    Michał Szczepanik & Ireneusz Jóźwiak

Authors
  1. Michał Szczepanik
    View author publications

    You can also search for this author in PubMed Google Scholar

  2. Ireneusz Jóźwiak
    View author publications

    You can also search for this author in PubMed Google Scholar

Editor information

Editors and Affiliations

  1. Department of Software Engineering, Charles University in Prague, Malostranske namesti 25, 118 00, Prague, Czech Republic

    Filip Zavoral

  2. Charles University, Prague, Czech Republic

    Jakub Yaghob

  3. Al Imam University, Riyadh, Saudi Arabia

    Pit Pichappan

  4. Jordan University of Science and Technology, Irbid, Jordan

    Eyas El-Qawasmeh

Rights and permissions

Reprints and permissions

Copyright information

© 2010 Springer-Verlag Berlin Heidelberg

About this paper

Cite this paper

Szczepanik, M., Jóźwiak, I. (2010). Detecting Malwares in Honeynet Using a Multi-agent System. In: Zavoral, F., Yaghob, J., Pichappan, P., El-Qawasmeh, E. (eds) Networked Digital Technologies. NDT 2010. Communications in Computer and Information Science, vol 88. Springer, Berlin, Heidelberg. https://doi.org/10.1007/978-3-642-14306-9_40

Download citation

  • DOI: https://doi.org/10.1007/978-3-642-14306-9_40

  • Publisher Name: Springer, Berlin, Heidelberg

  • Print ISBN: 978-3-642-14305-2

  • Online ISBN: 978-3-642-14306-9

  • eBook Packages: Computer ScienceComputer Science (R0)

Publish with us

Policies and ethics

Search

Navigation