A Novel SDN based Stealthy TCP Connection Handover Mechanism for Hybrid Honeypot Systems

Honeypots have been largely used to capture and investigate malicious behavior through deliberately sacrificing their own resources in order to be attacked. Hybrid honeypot architectures consisting of frontends and backends are widely used in the research area, specially due to the benefits of their high scalability and fidelity for detailed attacking data collection. A hybrid honeypot system often needs a facility aimed to tightly control the network traffic, for purposes such as redirecting the traffic from the frontends to the backends for in-depth attack analysis. However, the current traffic redirection approaches, particularly the TCP connection handover mechanisms, are not stealthy and they can be easily detected by attackers.This paper proposes an SDN based network data controller for hybrid honeypot systems that uses a transparent TCP connection handover mechanism and provides a traffic filtering approach based on the Snort alert functionality. The controller is implemented as an application based on the open-source Ryu SDN framework. It allows the users to configure their own network data control rules, which based on the Snort alert messages will forward or redirect the traffic to the corresponding honeypots. The experiments validate the proposed mechanism and the testing results show that the controller can efficiently perform the stealthy TCP connection handover as well

Taxonomy of honeynet solutions

Honeynet research has become more important as a way to overcome the limitations imposed by the use of individual honeypots. A honeynet can be defined as a network of honeypots following certain topology. Although there are at present many existing honeynet solutions, no taxonomies have been proposed in order to classify them. In this paper, we propose such taxonomy, identifying the main criteria used for its classification and applying the classification scheme to some of the existing honeynet solutions, in order to quickly get a clear outline of the honeynet architecture and gain insight of the honeynet technology. The analysis of the classification scheme of the taxonomy allows getting an overview of the advantages and disadvantages of each criterion value. We later use this analysis to explore the design space of honeynet solutions for the proposal of a future optimized honeynet solution

Towards a virtualized Internet for computer networking assignments

By combining virtualization technologies, virtual private network techniques and parameterization of network scenarios it is possible to enhance a networking laboratory, typically carried out in university laboratory premises using equipment located there, by interconnecting it to virtual networks running on the students own personal computers. This paper describes some experiences applying this model to create hands-on assignments for a large group of students in computer networking education

NFV and SDN-based differentiated traffic treatment for residential networks

Producción CientíficaResidential networks play a critical role in assuring that services or applications such as tele-work, tele-education, medical care, entertainment, home automation, among others, have the required resources to obtain an optimal performance. Although current residential gateways try to meet the Quality of Service (QoS) demands, the traditional networking paradigm does not have the appropriate mechanisms to address the heterogeneous and dynamic nature of the services running at home. In this context, a feasible solution consists of leveraging the flexibility and adaptability of the Software Defined Networking (SDN) and Network Functions Virtualization (NFV) paradigms to provide a differentiated traffic treatment intended to improve the QoS support of residential networks. The proposal takes advantage of the Service Function Chaining (SFC) concept intrinsic to NFV as well as the capacity of an SDN-based residential gateway to differentiate the traffic of a certain application. Thus, an association between an SFC and the differentiated traffic is stablished to apply a specific treatment. Besides, a comprehensive architecture composed of the software defined residential network (SDRN), the software defined access network (SDOAN) and the NFV-compliant ISP's edge cloud infrastructure is envisioned. This architecture would allow dramatically improving the life cycle management of the residential network from a centralized point which follows a user-centric approach.Ministerio de Ciencia, Innovación y Universidades (grants TEC2015-67834-R, TEC2017-84423-C3-1-P, RED2018-102585-T and 0677_DISRUPTIVE_2_E

RECLAMO: virtual and collaborative honeynets based on trust management and autonomous systems applied to intrusion management

Security intrusions in large systems is a problem due to its lack of scalability with the current IDS-based approaches. This paper describes the RECLAMO project, where an architecture for an Automated Intrusion Response System (AIRS) is being proposed. This system will infer the most appropriate response for a given attack, taking into account the attack type, context information, and the trust and reputation of the reporting IDSs. RECLAMO is proposing a novel approach: diverting the attack to a specific honeynet that has been dynamically built based on the attack information. Among all components forming the RECLAMO's architecture, this paper is mainly focused on defining a trust and reputation management model, essential to recognize if IDSs are exposing an honest behavior in order to accept their alerts as true. Experimental results confirm that our model helps to encourage or discourage the launch of the automatic reaction process

Developing speaking competences in technical English for Spanish civil engineering students

[EN] Traditionally, Spanish schools of civil engineering provide their students a class on “Technical English” in order to develop their language skills. However, this class does not cover all the skills that the student would need in the labor market and mainly focuses in the reading and writing skills, and in a lower degree in the speaking and listening ones. This paper proposes a series of innovative and informal training activities (cine-forum on technical civil engineering topics and role playing on real professional situations) that allow Spanish civil engineering students to develop English skills that can rarely be worked in the classroom (i.e. speaking, negotiating and conversing), encouraging debate, participation, and fostering their self-confidence to speak about technical-English topics in public. Although the students’ level of English is much lower than expected, they all agree on the importance of technical English for their future career. The results also show the students’ lack in skills that are difficult to train in regular classes (speaking and talking). Consequently, this situation would require to provide complementary activities like the ones suggested in this project in order to develop these skills and increase the students’ demand for engineering classes taught in English.Romero De Ávila Serrano, V.; Diaz García, S.; Asensio Sánchez, L.; Lozano Galant, JA.; Moyano Enríquez De Salamanca, A.; Porras Soriano, R.; Poveda Bautista, E.... (2017). Developing speaking competences in technical English for Spanish civil engineering students. En Proceedings of the 3rd International Conference on Higher Education Advances. Editorial Universitat Politècnica de València. 1228-1236. https://doi.org/10.4995/HEAD17.2017.55641228123

A922 Sequential measurement of 1 hour creatinine clearance (1-CRCL) in critically ill patients at risk of acute kidney injury (AKI)

Meeting abstrac

GEODIVULGAR: Geología y Sociedad

Fac. de Ciencias GeológicasFALSEsubmitte

Geodivulgar: Geología y Sociedad

Con el lema “Geología para todos” el proyecto Geodivulgar: Geología y Sociedad apuesta por la divulgación de la Geología a todo tipo de público, incidiendo en la importancia de realizar simultáneamente una acción de integración social entre estudiantes y profesores de centros universitarios, de enseñanza infantil, primaria, de educación especial y un acercamiento con público con diversidad funcional