Client Honeypot
Honeypots are security devices whose value lie in being probed and compromised. Traditional honeypots are servers (or devices that expose server services) that wait passively to be attacked. Client Honeypots are active security devices in search of malicious servers that attack clients. The client honeypot poses as a client and interacts with the server to examine whether an attack has occurred. Often the focus of client honeypots is on web browsers, but any client that interacts with servers can be part of a client honeypot (for example ftp, ssh, email, etc.).
There are several terms that are used to describe client honeypots. Besides client honeypot, which is the generic classification, honeyclient is the other term that is generally used and accepted. However, there is a subtlety here, as "honeyclient" is actually a homograph that could also refer to the first open source client honeypot implementation (see below), although this should be clear from the context.
Read more about Client Honeypot: Architecture, High Interaction, Low Interaction, Hybrid Client Honeypots, Literature, Papers, Presentations, Sites
Famous quotes containing the word client:
“A client is to me a mere unit, a factor in a problem.”
—Sir Arthur Conan Doyle (1859–1930)