SDN-Based Cyber Deception Deployment for Proactive Defense Strategy Using Honey of Things and Cyber Threat Intelligence

Software Defined Network (SDN) is a novel paradigm of network architecture that enables programmatic network control. This simplifies management and makes systems and network infrastructure affordable, flexible, and appropriate for emerging development trends such as Internet of Things (IoT), Ubiquitous computing, or Metaverse. However, the security and privacy issues due to data breaches require an effective solution for guaranteeing accurate detection of cyberattacks to take promptly preventive steps. To meet these requirements, a proactive security system using network deception techniques, such as the honey patch and honeypot solutions (honey of things), can help overcome the abovementioned issue. In this paper, to induce attackers to spy and infiltrate to fake resources, the cyber deception system consisting a variety of cyber traps is utilized with honey patch to deceive hackers into exploiting previously patched. Then, the SDN-based security operation center (SOC) also examines the log data gathered from the bait network system and Cyber Threat Intelligence (CTI) sharing to detect threats and update security policy to the operational network system.