Analisis Dan Implementasi Honeypot Dalam Mendeteksi Serangan Distributed Denial-Of-Services (DDOS) Pada Jaringan Wireless

IMade Suartana, Tutuk Indriyani, Bagus Mardiyanto

Abstract


The development of network technology, especially networking security system, demands the security system to evolve. Honeyd is honeypot with low interaction type which has smaller risk than high interaction type. It is because the interaction to honeypot does not directly engage with the real system. In this research, honeyd is integrated with iptables implemented to local network by trying several attacks, such as scanning host, DoS, and Ddos. From the result of honeyd log, the gained information data is processed with honeyd-viz and is expected to become an inputand solution to decide the security policy in network and make the system safer. The experiment showed that honeyd was able to detect the attack by Netscan android by doing scanning host in network. In Ddos attack experiment using Loic, average cpu load before the attack was 15.25%, while after the attack cpu load was 45.98%, and after attack deflection the cpu load was 30.83%. 


Full Text:

PDF

References


Sivaprakasam, V, dan Nirmal sam,S. (2014) .Achieving Higher Network Security By Preventing DDOS Attack Using Honeypot. ISSN (Online) 2 (2). 2347-2812.

Firrar, Utdirartatmo. (2005). Trik Menjebak Hacker Dengan Honeypot. Yogyakarta: Penerbit Andi.

Farunuddin, Rakhmat. (2005). Membangun Firewall dengan IPTables di Linux. Jakarta: PT. Elex Media Komputindo.

Purbo, W Onno, Adnan Basalamah, Ismail Fahmi, dan Achmad Husni

Thamrin, (1998). TCP/IP. Jakarta: PT. Elex Media Komputindo.

Setyo, A.N., Raharjo, S. dan Triyono, J (2013). Analisis Dan Implementasi Honeypot Menggunakan Honeyd Sebagai Alat Bantu Pengumpulan Informasi Aktivitas Serangan Pada Jaringan. Jurnal Jarkom 1 (1). 40-48.

Mustofa, M.M. dan Aribowo, E. (2013) . Penerapan Sistem Keamanan Honeypot Dan IDS Pada Jaringan Nirkabel (Hotspot). Jurnal Sarjana Teknik Informatika 1(1). 111-118.

Ariyus, Dony, M.Kom. (2007). Intrusion Detection Sytem : Sistem Pendeteksi Penyusupan Pada Jaringan Komputer. Yogyakarta: Penerbit Andi

Anjik, Sukamaaji, S.Kom. Rianto, S.Kom. (2008). Konsep Dasar Pengembangan Jaringan Dan Keamanan Jaringan. Yogyakarta: Penerbit Andi.


Refbacks

  • There are currently no refbacks.