Using an Improved Cybersecurity Kill Chain to Develop an Improved Honey Community

Over the last 10 years we have seen a continual growth in the number of break-ins at government sites as well as commercial businesses. We have seen large data breaches at governmental organizations such as the South Carolina Department of Revenue (DoR) and commercial ventures such as Target. In the...

Full description

Saved in:
Bibliographic Details
Main Authors: Rutherford, James R., White, Gregory B.
Format: Conference Proceeding
Language:English
Subjects:
Communities
Computer information security
Computer security
Conferences
Governments
Histograms
Honey
Monitoring
Networks
Organizations
Ports (Computers)
Security
Servers
Online Access:Request full text
Tags: Add Tag
No Tags, Be the first to tag this record!
Description
Summary:Over the last 10 years we have seen a continual growth in the number of break-ins at government sites as well as commercial businesses. We have seen large data breaches at governmental organizations such as the South Carolina Department of Revenue (DoR) and commercial ventures such as Target. In the case of the South Carolina DoR the credentials of an employee were compromised by an external entity. The intruders then further compromised other parts of the network in order to find potentially profitable data and began the exfiltration of information from within the network. In this paper we will present the concept of a Honey Community that provides a means for alerting local and state communities and large organizations when they are under attack. It also provides a means to analyze the changing state of the attacks on their systems in order to determine ways to improve security.
ISSN:1530-1605
2572-6862
1530-1605
DOI:10.1109/HICSS.2016.329