Honeypots have demonstrated immense value in Internet security, but physical honeypot deployment can be complex, time-consuming, and expensive. A solution to this problem are virtual honeypots: they share many attributes of traditional honeypots, but you can run thousands of them on a single system-making them easier and cheaper to build, deploy, and maintain. In this talk, we will introduce some recent developments in this area and focus on lessons learned with honeypots.
Thorsten Holz is a Ph.D. student at the Laboratory for Dependable Distributed Systems at the University of Mannheim, Germany. His research interests include the practical aspects of secure systems, but he is also interested in more theoretical considerations of dependable systems. Currently, his work concentrates on bots/botnets, client honeypots, and malware in general.