Presentation
Exposing Cyberthreats: How Attack Patterns Are Shaped by Network Topologies and Honeypot Techniques
SessionCYB3: Cyber Defense
DescriptionAs cyberattacks become increasingly sophisticated, we require more intelligent means of safeguarding digital infrastructure. One strategy gaining support is the deployment of honeypots—simulated systems that lure hackers into divulging their methods. But how effective such honeypots are can rely heavily on the configuration of a network. That is where our research contributes: We used a simulation tool, HackIT, to examine how various network configurations—namely star and ring topologies—respond to two honeypot configurations: one in which half the systems were decoys, and one in which 75% were. We had 88 computer science students act as attackers and recorded what they attacked. What we discovered was unexpected: More honeypots resulted in more overall attacks, but not necessarily in the correct direction. In star-type centralized networks, an increased number of honeypots actually amplified attacks on genuine systems. However, in ring-type decentralized networks, a smaller ratio of honeypots was better. This study indicates that cybersecurity is not one-size-fits-all. Simply throwing more honeypots at the problem isn't always the solution—it varies depending on how your network is constructed. More intelligent, more adaptive defences can have a huge impact on keeping ahead of cyber threats.
Contributors
Alternate Presenter
Event Type
Industry/Practitioner Content
Lecture
TimeThursday, October 16th2:10pm - 2:30pm CDT
LocationGrand E/F
Cybersecurity