Article: Honeybrid method for network security in a software defined network system Journal: International Journal of Electronic Security and Digital Forensics (IJESDF) 2024 Vol.16 No.6 pp.690 - 702 Abstract: This research introduces a hybrid honeypot architecture to bolster security within software-defined networks (SDNs). By combining low-interaction and high-interaction honeypots, the proposed solution effectively identifies and mitigates cyber threats, including port scanning and man-in-the-middle attacks. The architecture is structured into multiple modules that focus on detecting open ports using Vilhala honeypots and simulating targeted and random attack scenarios. This hybrid approach enables comprehensive monitoring and detailed packet-level analysis, providing enhanced protection against advanced online threats. The study also conducts a comparative analysis of different attack detection methods using tools like KFSensor and networking shell commands. The results highlight the hybrid honeypot system's efficacy in filtering malicious traffic and detecting security breaches, making it a robust solution for safeguarding SDNs. Inderscience Publishers - linking academia, business and industry through research

Title: Honeybrid method for network security in a software defined network system

Authors: Sulakshana B. Mane; Kiran Shrimant Kakade; Arun H. Ukarande; B.P. Saoji; Kiran Joshi

Addresses: Bharati Vidyapeeth College of Engineering, Navi Mumbai, India ' Faculty of Management, Symbiosis Institute of Management Studies (SIMS), Symbiosis International Deemed University (SIU), Pune, Maharashtra, India ' Department of Instrumentation Engineering, Bharati Vidyapeeth College of Engineering, Navi Mumbai, India ' Department of Instrumentation Engineering, Bharati Vidyapeeth College of Engineering, Navi Mumbai, India ' Department of Computer Engineering and Information Technology, VJTI Engineering College, Mumbai-400019, India

Abstract: This research introduces a hybrid honeypot architecture to bolster security within software-defined networks (SDNs). By combining low-interaction and high-interaction honeypots, the proposed solution effectively identifies and mitigates cyber threats, including port scanning and man-in-the-middle attacks. The architecture is structured into multiple modules that focus on detecting open ports using Vilhala honeypots and simulating targeted and random attack scenarios. This hybrid approach enables comprehensive monitoring and detailed packet-level analysis, providing enhanced protection against advanced online threats. The study also conducts a comparative analysis of different attack detection methods using tools like KFSensor and networking shell commands. The results highlight the hybrid honeypot system's efficacy in filtering malicious traffic and detecting security breaches, making it a robust solution for safeguarding SDNs.

Keywords: security; software defined networking; honey pot; network security; intrusion detection system; IDS.

DOI: 10.1504/IJESDF.2024.142015

International Journal of Electronic Security and Digital Forensics, 2024 Vol.16 No.6, pp.690 - 702

Received: 26 Mar 2023
Accepted: 06 Jun 2023
Published online: 07 Oct 2024 *

Full-text access for editors Full-text access for subscribers Purchase this article Comment on this article

Title: Honeybrid method for network security in a software defined network system

Keep up-to-date