Scalability, Fidelity, and Containment in the Potemkin Virtual Honeyfarm
来源:互联网 发布:军服 书 知乎 编辑:程序博客网 时间:2024/05/02 04:49
Background
Major Attacks: buffer overflow attack, and other attacks such as: SQL injection/Attack (enter SQL statement which could be executed in the name field);
Network HoneyPot(蜜罐):
HoneyPot 是一种诱惑hacker 攻击的服务器,黑客误以为honeypot 里面有自己想要的数据。世界第一个少年黑客曾经攻击,SanDiego Supercomputer center honeyPot, 结果被捕。
HoneyPot 分为两种
low-interaction:只是模拟port, 不运行任何程序,容易扩展到很大规模
high-interaction:运行程序,成本高,每一个IP address ,都需要一个physical host.
HoneyMonkey:
Emulate human-being to enter malicious website
Issue/Motivation:
Increase scale of honeypot, while remain high fidelity
CPU,memory 利用效率低,通常只有1%利用率; most address don't receive traffic most of the time; most traffic that is received causes not interesting behavior; Don't have much modification
Balance high scalability(only emulate simple network) and high performance (full physical machine)
Challenge:
-Honeypot detection: malware can detect it is a honeypot
-Resource exhaustion: under high load, difficult to maintain accurate illusion.
Solution:
-Virtual Machine: easy to manage like: frozen state(snapshot), migrate, stored on demand. Copy-on-Write memory sharing
-aggressive memory sharing
-Containment: Allow no traffic out to contaminate other machine in the network
-late binding of resource
只有有需求的时候才会create new Virtual machine, router 把信息分配到 honeyfarm server,server 再create VM
- Scalability, Fidelity, and Containment in the Potemkin Virtual Honeyfarm
- High-Fidelity Pose and Expression Normalization for Face Recognition in the Wild
- UE4 Scalability and The Developer
- SVC入门(4)- Fidelity Scalability
- 《Java Concurrency in Practice》ch11 Performance and Scalability
- What is the difference between extensibility and scalability?
- Set up the Virtual switch and Virtual adapter in Windows 2012R2
- 论文阅读报告:Improving the Scalability of Data Center Networks with Traffic-aware Virtual Machine Placement
- performance and scalability
- The Definitive Guide to Terracotta: Cluster the JVM for Spring, Hibernate and POJO Scalability
- Advanced Server Virtualization: VMware and Microsoft Platforms in the Virtual Data Center
- Writing and Hosting a Web Service in the SharePoint 2010 Demo Virtual Machine
- the android virtual Device AVD2.3.3 is currently running in an emulator and cannot be deleted.
- Database Performance: How to reduce "library cache: mutex X" waits for scalability in the Oracle dat
- Scalability and Rapid Development @ JDJ
- Mysql high availability and scalability
- NoSQL and Data Scalability 2.0
- Enter the Scalability Zone @ JDJ
- 2012年的计划
- 一个程序员的十年总结
- mac word 插入图片不完全显示
- java的访问权限控制--疑问
- Java中的线程池
- Scalability, Fidelity, and Containment in the Potemkin Virtual Honeyfarm
- Unity:移动游戏新标准?
- SVN用户权限管理
- 慢性肾炎如何饮食更健康?
- 190. Great wits have short memories. 贵人多忘事
- 单击展开关闭导航菜单
- 从今天开始就步入毕业设计的进程了
- 3_13_DOUBLEWEI 768*(2^22),即0xC0000000,即3072M,即3G。
- Jena TDB 环境搭建以及几个工具的使用