While the results will be interesting, I don't think it can
be
properly classified as a honeypot. Correct me if I'm wrong,
but isn't
this a HIPS/HIDS with event correlation and analysis? The
users of
the product aren't exactly trying to have a
juicy/interesting target
and lure in an attack for early detection and event
analysis. This
solution may however share some of the same benefits of a
honeypot.
LL
On Oct 19, 2006, at 5:58 AM, Mark Ryan del Moral Talabis
wrote:
> Enterprise security vendor eEye is preparing to unveil
a free version
> of its Blink security software for consumers.
>
> Blink offers a single application that protects against
buffer
> overflow and phishing attacks. It also offers intrusion
prevention,
> application white-listing and location-specific
security settings.
>
> Consumers will be asked to share data on attacks that
target their
> computers. The software will then act as the world's
largest honeypot,
> allowing the firm to collect samples of live exploits
and malware as
> soon as they become available.
>
> More on:
> http://www.vnunet.com/vnunet/news/2166552/eeye-s
eeks-build-mega-
> honeypot
>
> --
> Mark Ryan del Moral Talabis
> MS GSEC MCP PTRP
>
> The Philippine Honeynet Project
> http://www.philippi
nehoneynet.org
>
|