A Resilient Dual-Purpose Web Honeypot for Analyzing Attacks on Industrial Control Systems
Files
Date
2025-01-07
Authors
Contributor
Advisor
Department
Instructor
Depositor
Speaker
Researcher
Consultant
Interviewer
Narrator
Transcriber
Annotator
Journal Title
Journal ISSN
Volume Title
Publisher
Volume
Number/Issue
Starting Page
6996
Ending Page
Alternative Title
Abstract
Protection of industrial control systems (ICS) is a critical security task since failure can lead to large-scale damage. Exposing these systems to the Internet makes them more manageable but also more vulnerable to costly attacks. Honeypots are deceptive systems deployed to gather intelligence on cyberattacks and can help defend Internet-connected ICSs. We developed a resilient server that functions both as a Web honeypot and as the front end for an ICS honeypot simulating a residential electrical microgrid. Our server underwent third-party penetration testing and ran without any identified compromise on a commercial cloud machine. We observed significant scanning, and some HTTP-based attack attempts, including the Mirai botnet malware. Our results showed that the dual-purpose Web honeypot improved data collection and protection of the Internet-exposed user interface of the ICS honeypot.
Description
Keywords
Applied Security Through Cyber Innovation and Implementation, cybersecurity, honeypots, industrial control systems, microgrids, world wide web
Citation
Extent
10
Format
Geographic Location
Time Period
Related To
Proceedings of the 58th Hawaii International Conference on System Sciences
Related To (URI)
Table of Contents
Rights
Attribution-NonCommercial-NoDerivatives 4.0 International
Rights Holder
Local Contexts
Email libraryada-l@lists.hawaii.edu if you need this content in ADA-compliant format.