This project, led by Charles Lim from the Swiss German University in Indonesia, in collaboration with Indonesia Honeynet Project and Badan Siber dan Sandi Negara.
With the continuous rise of cyber security threats, monitoring security potential threats and attacks become essential to plan for cyber defense. Honeypot, a decoy system designed to lure attackers, has been used to track and learn attacker’s behavior. Collecting attacker’s interactions with honeypot at different location inside different organization’s premises provide useful and more complete picture of the landscape of current cyber security threats. The log of the attacks to the honeypots become an essential cyber security threat information that could be shared to many of the security incident analyst at different organization to provide a relevant and contextual threat intelligence.
The objective of this research was to provide a sharing platform for any organizations in Indonesia (later can be applied to ASEAN and/or Asia Pacific countries) to share security threats information collected using honeypots in the relevant organization in the related countries to other organizations in Asia Pacific. To start with, the research began to develop and share the security threat information collected from different provinces to all related organizations in Indonesia.
The project is open to any researchers (men or women) who is interested to help building better security posture in their respected countries or any Asia Pacific countries. This is the first time we combine research effort between government, education institution and cyber security community to build a security threat information platform. The completed project is expected to bring significant contributions to raise not only the participation of security threat information contribution but also the overall potential security posture of the Internet in Asia Pacific.
The final technical report is available for review here.