Formal Report

 

Operating Agreement

 

SecurityDocs

SecurityWizard

 

PENTATHLETES

Celena Collins

Matt Fischetti

Matt Jenkins

Nikkita Baggan

Veronica Restrepo

 

 

HONEYPOTS

A New Era of Security

 

 

 About Honeypots

“Firewall-based prevention solutions that function with deep packet inspection techniques are key to effective protection from the growing number of cyber threats.” (Gartner) In the past, hackers and several types of system attacks have crippled many businesses, home users, and other entities.  In today’s society with the increase usage of computers and the Internet, the importance of having a strong defense against hackers and system attacks is a great necessity. 

 

Effective system tools, such as Honeypots, Intrusion Detection Systems, and Intrusion Prevention Systems are the next steps in the Evolution in Intrusion Detection as they act as protection for clients, servers, and network infrastructure.  How are these system tools used?  How are they implemented?  What risks are associated with their use as a system tool?   The following are some aspects of emerging technologies with respect to Intrusion Detection.

 What they solve

Honeypots are a very new type of technology. They are used to try and help protect against hackers to keep private information protected. The reason people use honeypots is to set up a network that acts like a trap for the attackers. Depending on what type of honeypot is used, a lot of information on the attacker can be collected including what type of information they were after.

Honeypots are being used by home users, small businesses, and Corporate America to keep information secure. There are a number of honeypots available for different types of goals including honeyd and honeynets. Although honeypots have a lot of advantages, a lot of research still needs to be done because there are just as many disadvantages and loop holes involved.

 Solutions to Honeypots

The concern of securing a network from hackers or system attacks has been with us since the inception of the internet, so a computer system must be continually updated with the latest technology and software. System networks can employ multiple types of honeypots, roving honeypots, and can use them in conjunction with firewalls and other security systems. Since the problem won’t go away, and is continually evolving, in many ways, it parallels that of maintaining a national monetary currency. Just as the U. S. Treasury must remain a step ahead of counterfeiters, so too should the legitimate organization remain at least one step ahead of the hacker, otherwise their system and business or entity could grind to a halt. By reversing the role from defense to offense, the honeypot, essentially changes the dynamic of the conflict. But even as innovative and successful as honeypots are, hackers are quick to change tactics as well, such as diversions or fake attacks. System designers must make sure their system is flexible and can handle multiple types of situations.  Continuously updating the system is imperative.

 

Another solution, already used by some organizations, is to hire a hacker. The FBI has occasionally hired counterfeiters in the past to learn tricks of the trade, and similarly, some companies actually hire computer hackers to work in defending the network.  Not only can the hacker’s tactics and thought processes be revealed, but also a company can generally use some new creativity in thinking up a better mousetrap.  Clearly, many additional safeguards must be taken when employing this tactic