Abstract
Honeypots derive much of their value from their ability to fool attackers into believing they’re authentic machines. Current cyber-physical system (CPS) honeypots fail to sufficiently capture and simulate behavior that’s necessary to project this authenticity. In response, the HoneyPhy framework was developed for CPS honeypots that takes into account behavior originating in the CPS process and devices that make up the CPS itself. HoneyPhy aims to make it possible to construct honeypots for complex CPSs. Here, the authors discuss their implementation of a proof-of-concept for this framework, and show that it’s possible to simulate these behaviors in real time. |
