Invention Grant
US07694339B2 Method and system for morphing honeypot with computer security incident correlation
有权
计算机安全事件相关性变形蜜罐的方法和系统
- Patent Title: Method and system for morphing honeypot with computer security incident correlation
- Patent Title (中): 计算机安全事件相关性变形蜜罐的方法和系统
-
Application No.: US12164020Application Date: 2008-06-28
-
Publication No.: US07694339B2Publication Date: 2010-04-06
- Inventor: Kenneth W. Blake , Vikki Kim Converse , Ronald O'Neal Edmark , John Michael Garrison
- Applicant: Kenneth W. Blake , Vikki Kim Converse , Ronald O'Neal Edmark , John Michael Garrison
- Applicant Address: US NY Armonk
- Assignee: International Business Machines Corporation
- Current Assignee: International Business Machines Corporation
- Current Assignee Address: US NY Armonk
- Agent Jeffrey S. LaBaw; David H. Judson
- Main IPC: G06F11/00
- IPC: G06F11/00 ; G06F12/14 ; G06F15/177
Abstract:
A method, system, apparatus, or computer program product is presented for morphing a honeypot system on a dynamic and configurable basis. The morphing honeypot emulates a variety of services while falsely presenting information about potential vulnerabilities within the system that supports the honeypot. The morphing honeypot has the ability to dynamically change its personality or displayed characteristics using a variety of algorithms and a database of known operating system and service vulnerabilities. The morphing honeypot's personality can be changed on a timed or scheduled basis, on the basis of activity that is generated by the presented honeypot personality, or on some other basis. The morphing honeypot can also be integrated with intrusion detection systems and other types of computer security incident recognition systems to correlate its personality with detected nefarious activities.
Public/Granted literature
- US20080271151A1 Method and system for morphing honeypot with computer security incident correlation Public/Granted day:2008-10-30
Information query
