Honeypot Technology in a Business Perspective

摘要

According to ISO/IEC 13335:"Information technology -Guidelines for management of IT Security", security involves all aspects related to defining, achieving and maintaining confidentiality, integrity, availability, non-repudiation, accountability, authenticity and reliability. In the modern computerized systems we need to provide methods, techniques and tools in order to this. A honeypot is an information system resource whose value lies in unauthorized or illicit use. Currently, honeypots are mainly used for research purposes. In this paper we extend this view by looking into how honeypot technology can be utilized as part of the security strategy in an organization. The risk picture for an organization is subject to constant change and honeypots might be used to provide information of potential vulnerabilities in the system. Furthermore, it can also be used as a security mechanism, issuing alarms and preventing potential attacks. There are, however, risks related to this.