John, S. N. and Albert, Ola Ajibade and Okokpujie, Kennedy O. and Noma-Osaghae, Etinosa and Osemwegie, Omoruyi and Okereke, Chinonso (2019) Mitigating Threats in a Corporate Network with a Taintcheck-Enabled Honeypot. Information Science and Applications, 621. pp. 73-83.
![[img]](http://eprints.covenantuniversity.edu.ng/style/images/fileicons/other.png) |
PDF
Download (126Kb) |
Abstract
Conventional network security tools such as Intrusion Detection Systems (IDS), Intrusion Prevention Systems (IPS), anti-virus, antispyware and anti-malware integrated with firewalls generate a lot of false positives that make computer network system administration cumbersome. This paper proposes a novel mechanism comprising of taintcheck for dynamic analysis of buffer overflow attack using synthetic exploit and hybrid honeypot for scanning, detecting, identifying attackers and signature generation. In this framework, Noah’s attack detection is used as a template. Upon testing, the practicality of the proposed framework was found to be more effective than other conventional network security tools as it effectively and comprehensively mitigates against threats and reported zero-day attacks with fewer false positives.
| Item Type: | Article |
|---|---|
| Uncontrolled Keywords: | Corporate networks Honeypot Security Threat Taintcheck Vulnerability Zero-day |
| Subjects: | T Technology > T Technology (General) T Technology > TK Electrical engineering. Electronics Nuclear engineering |
| Divisions: | Faculty of Engineering, Science and Mathematics > School of Electronics and Computer Science Faculty of Engineering, Science and Mathematics > School of Engineering Sciences |
| Depositing User: | Mrs Patricia Nwokealisi |
| Date Deposited: | 03 Feb 2020 12:31 |
| Last Modified: | 03 Feb 2020 12:31 |
| URI: | http://eprints.covenantuniversity.edu.ng/id/eprint/13093 |
Actions (login required)
 |
View Item |
