- Organization
- Universidad de Antioquia - Instituto Tecnológico y de Estudios Superiores de Monterrey
- Type
- Academic Sector
- Years
- 2024
- Countries
- Colombia, México
Honeypots are software systems that emulate real services and monitor attacks against a specific network. They are systems that simulate being a target for attackers, and use the intrusion attempts of these cybercriminals to learn how they operate or simply to distract them and thus protect other assets. The deployment of honeypots on several physical machines makes up a honeynet. LACNIC’s Computer Security Incident Response Team (CSIRT) has an initiative called LACNIC Honeynet to obtain first-hand knowledge about the most common security threats in the Latin American and Caribbean region. This Honeynet is a very important asset for the development of cybersecurity strategies in the region.
In this line, the project seeks to create artificial intelligence models for the detection of intruders with the data collected from the already deployed honeynet, focusing on the type of attack that occurs most frequently in the region (e.g. ransomware, DDoS, phishing, etc.). This will allow the development of transferable solutions for the actors in the Internet ecosystem, thereby strengthening cyber intelligence and resilience in public and private institutions in Latin America and the Caribbean.