Building a cognizant honeypot for detecting active fingerprinting attacks using dynamic fuzzy rule interpolation
MetadataDangos cofnod eitem llawn
Dynamic fuzzy rule interpolation (D‐FRI) technique delivers a dynamic rule base through the utilisation of fuzzy rule interpolation to infer more accurate results for a given application problem. D‐FRI offered dynamic rule base is very useful in security areas where network conditions are always volatile and require the most updated rule base. A honeypot is a vital part of any security infrastructure for directly investigating attacks and attackers in real‐time to strengthen the overall security of the network. However, a honeypot as a concealed system can only function successfully while its identity is not revealed to any attackers. Attackers always attempt to uncover such honeypots for avoiding any trap and strengthening their attacks. Active fingerprinting attack is used to detect these honeypots by injecting purposefully designed traffic to a network. Such an attack can be prevented by controlling the traffic but this will make honeypot unusable system if its interaction with the outside world is limited. Alternatively, it is practically more useful if this fingerprinting attack is detected in real‐time to manage its immediate consequences and preventing the honeypot. This article offers an approach to building a cognizant honeypot for detecting active fingerprinting attacks through the utilisation of the established D‐FRI technique. It is based on the use of just a sparse rule base while remaining capable of detecting active fingerprinting attacks when the system does not find any matching rules. Also, it learns from current network conditions and offers a dynamic rule base to facilitate more accurate and efficient detection.
Naik, N., Shang, C., Jenkins, P. and Shen, Q. (2020) 'Building a cognizant honeypot for detecting active fingerprinting attacks using dynamic fuzzy rule interpolation', Expert Systems, p.e12557. https://doi.org/10.1111/exsy.12557
Dynodwr Gwrthrych Digidol (DOI)https://doi.org/10.1111/exsy.12557
Article published in Expert Systems available at https://doi.org/10.1111/exsy.12557
Yn dangos eitemau sy’n perthyn drwy deitl, awdur, pwnc a chrynodeb.
Embedded YARA rules: strengthening YARA rules utilising fuzzy hashing and fuzzy rules for malware analysis Naik, Nitin; Jenkins, Paul; Savage, Nick; Yang, Longzhi; Boongoen, Tossapon; Iam-On, Natthakan; Naik, Kshirasagar; Song, Jingping (Springer International Publishing, 2020-11-23)The YARA rules technique is used in cybersecurity to scan for malware, often in its default form, where rules are created either manually or automatically. Creating YARA rules that enable analysts to label files as suspected ...
Sabra, Adham; Fung, Wai Keung (MDPI, 2020-09-25)This article proposes a holistic localisation framework for underwater robotic swarms to dynamically fuse multiple position estimates of an autonomous underwater vehicle while using fuzzy decision support system. A number ...
An investigation into motility characteristics in THP-1 cells - relevance for type 2 diabetes mellitus Wheat, Richard (Cardiff Metropolitan University, 2011)In recent times, it has become established that common obesity linked Type 2 Diabetes Mellitus (T2DM) is a disease with an underlying chronic systemic inflammatory component, a central feature of which is the infiltration ...