{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2025,10,12]],"date-time":"2025-10-12T03:14:41Z","timestamp":1760238881203,"version":"build-2065373602"},"reference-count":34,"publisher":"MDPI AG","issue":"9","license":[{"start":{"date-parts":[[2020,9,12]],"date-time":"2020-09-12T00:00:00Z","timestamp":1599868800000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/creativecommons.org\/licenses\/by\/4.0\/"}],"funder":[{"name":"CERNET innovation Project","award":["NGII20180407"],"award-info":[{"award-number":["NGII20180407"]}]}],"content-domain":{"domain":[],"crossmark-restriction":false},"short-container-title":["Information"],"abstract":"<jats:p>IPv6 is a next-generation IP protocol that replaces IPv4. It not only expands the number of network address resources but also solves the problem of multiple access devices connected to the Internet. While IPv6 has brought excellent convenience to the public, related security issues have gradually emerged, and an assessment of the security situation in IPv6 has also become more important. Unlike passive defense, the honeypot is a security device for active defense. The real network application and the fake network application, disguised by the honeypot, are located on a similar subnet, and provide a network application service; but, in both cases, behavior logs from unauthorized users are caught. In this manner, and to protect web-based applications from attacks, this article introduces the design and implementation of a web-based honeypot that includes a weak password module and an SQL inject module, which supports the IPv6 network to capture unauthorized access behavior. We also propose the Security Situation Index (SSI), which can measure the security situation of the network application environment. The value of SSI is established according to the different parameters that are based on honeypots. There is a firewall outside the test system environment, so the obtained data should be used as the real invasion data, and the captured behavior is not a false positive. Threats can be spotted smartly by deploying honeypots; this paper demonstrates that the honeypot is an excellent method of capturing malicious requests and can be measured with the SSI of the whole system. According to the information, the administrator can modify the current security policy, which can improve the security level of a whole IPv6 network system.<\/jats:p>","DOI":"10.3390\/info11090440","type":"journal-article","created":{"date-parts":[[2020,9,13]],"date-time":"2020-09-13T21:11:32Z","timestamp":1600031492000},"page":"440","update-policy":"https:\/\/doi.org\/10.3390\/mdpi_crossmark_policy","source":"Crossref","is-referenced-by-count":5,"title":["A Web-Based Honeypot in IPv6 to Enhance Security"],"prefix":"10.3390","volume":"11","author":[{"given":"Keyong","family":"Wang","sequence":"first","affiliation":[{"name":"School of Continuing Education, Beijing Institute of Technology, Beijing 100081, China"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Mengyao","family":"Tong","sequence":"additional","affiliation":[{"name":"School of Continuing Education, Beijing Institute of Technology, Beijing 100081, China"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Dequan","family":"Yang","sequence":"additional","affiliation":[{"name":"Network Information Technology Center, Beijing Institute of Technology, Beijing 100081, China"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Yuhang","family":"Liu","sequence":"additional","affiliation":[{"name":"School of Computer, Beijing Institute of Technology, Beijing 100081, China"}],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"1968","published-online":{"date-parts":[[2020,9,12]]},"reference":[{"key":"ref_1","doi-asserted-by":"crossref","first-page":"1393","DOI":"10.1016\/j.comcom.2005.08.014","article-title":"IPv6 deployment: Real time applications and QoS aspects","volume":"29","author":"Bouras","year":"2006","journal-title":"Comput. Commun."},{"key":"ref_2","doi-asserted-by":"crossref","first-page":"15","DOI":"10.1016\/j.adhoc.2013.11.001","article-title":"Mobile IPv6 in Internet of Things: Analysis, experimentations and optimizations","volume":"14","author":"Montavont","year":"2014","journal-title":"Ad Hoc Netw."},{"key":"ref_3","doi-asserted-by":"crossref","first-page":"425","DOI":"10.1016\/j.compeleceng.2007.05.008","article-title":"Security aspects in IPv6 networks\u2014Implementation and testing","volume":"33","year":"2007","journal-title":"Comput. Electr. Eng."},{"key":"ref_4","doi-asserted-by":"crossref","first-page":"206","DOI":"10.1109\/MWC.001.1900215","article-title":"IPv6 over LPWANs: Connecting Low Power Wide Area Networks to the Internet (of Things)","volume":"27","author":"Gomez","year":"2020","journal-title":"IEEE Wirel. Commun."},{"key":"ref_5","doi-asserted-by":"crossref","first-page":"1390","DOI":"10.1049\/iet-com.2018.5686","article-title":"Using multi-address generation and duplicate address detection to prevent DoS in IPv6","volume":"13","author":"Guangjia","year":"2019","journal-title":"IET Commun."},{"key":"ref_6","doi-asserted-by":"crossref","first-page":"46","DOI":"10.1109\/TDSC.2015.2399300","article-title":"Securing Vehicular IPv6 Communications","volume":"13","author":"Fernandez","year":"2016","journal-title":"IEEE Trans. Depend. Secure Comput."},{"key":"ref_7","doi-asserted-by":"crossref","first-page":"109646","DOI":"10.1016\/j.chaos.2020.109646","article-title":"Randomness improvement of chaotic maps for image encryption in a wireless communication scheme using PIC-microcontroller via Zigbee channels","volume":"133","year":"2020","journal-title":"Chaos Solitons Fractals"},{"key":"ref_8","doi-asserted-by":"crossref","unstructured":"Sanders, C., Smith, J., Sanders, C., and Smith, J. (2014). Chapter 12\u2014Using Canary Honeypots for Detection, in Applied Network Security Monitoring, Syngress.","DOI":"10.1016\/B978-0-12-417208-1.00012-X"},{"key":"ref_9","doi-asserted-by":"crossref","first-page":"3991","DOI":"10.1109\/JIOT.2019.2956173","article-title":"An IoT Honeynet based on Multi-port Honeypots for Capturing IoT attacks","volume":"7","author":"Zhang","year":"2019","journal-title":"IEEE Internet Things J."},{"key":"ref_10","doi-asserted-by":"crossref","first-page":"34884","DOI":"10.1109\/ACCESS.2018.2850839","article-title":"A Flexible Laboratory Environment Supporting Honeypot Deployment for Teaching Real-World Cyber security Skills","volume":"6","author":"Eliot","year":"2018","journal-title":"IEEE Access"},{"key":"ref_11","doi-asserted-by":"crossref","first-page":"15","DOI":"10.1016\/j.jnca.2019.04.022","article-title":"Network security situation: From awareness to awareness-control","volume":"139","author":"Liu","year":"2019","journal-title":"J. Netw. Comput. Appl."},{"key":"ref_12","doi-asserted-by":"crossref","first-page":"764","DOI":"10.1016\/j.cie.2018.01.006","article-title":"Study on network security situation awareness based on particle swarm optimization algorithm","volume":"125","author":"Zhao","year":"2018","journal-title":"Comput. Ind. Eng."},{"key":"ref_13","doi-asserted-by":"crossref","first-page":"530","DOI":"10.1016\/j.procs.2013.05.068","article-title":"A Multi-Level Analysis Framework in Network Security Situation Awareness","volume":"17","author":"Zhang","year":"2013","journal-title":"Procedia Comput. Sci."},{"key":"ref_14","doi-asserted-by":"crossref","unstructured":"Liang, Y., Wang, H.Q., and Lai, J.B. (2007, January 19\u201322). Quantification of Network Security Situational Awareness Based on Evolutionary Neural Network. Proceedings of the 2007 International Conference on Machine Learning and Cybernetics, Hong Kong, China.","DOI":"10.1109\/ICMLC.2007.4370711"},{"key":"ref_15","doi-asserted-by":"crossref","unstructured":"Wang, H., Liang, Y., and Liu, X. (2008, January 28\u201329). Stochastic Game Theoretic Method of Quantification for Network Situational Awareness. Proceedings of the 2008 International Conference on Internet Computing in Science and Engineering, Harbin, China.","DOI":"10.1109\/ICICSE.2008.55"},{"key":"ref_16","doi-asserted-by":"crossref","first-page":"72234","DOI":"10.1109\/ACCESS.2019.2920239","article-title":"Dynamic Distributed Honeypot Based on Blockchain","volume":"7","author":"Shi","year":"2019","journal-title":"IEEE Access"},{"key":"ref_17","doi-asserted-by":"crossref","first-page":"683","DOI":"10.1109\/JSAC.2019.2894307","article-title":"HoneyDOC: An Efficient Honeypot Architecture Enabling All-Round Design","volume":"37","author":"Fan","year":"2019","journal-title":"IEEE J. Sel. Areas Commun."},{"key":"ref_18","doi-asserted-by":"crossref","first-page":"65","DOI":"10.1109\/TCSS.2017.2719705","article-title":"Creation and Management of Social Network Honeypots for Detecting Targeted Cyber Attacks","volume":"4","author":"Paradise","year":"2017","journal-title":"IEEE Trans. Comput. Soc. Syst."},{"key":"ref_19","doi-asserted-by":"crossref","first-page":"1025","DOI":"10.1109\/JIOT.2016.2547994","article-title":"Deceptive Attack and Defense Game in Honeypot-Enabled Networks for the Internet of Things","volume":"3","author":"La","year":"2016","journal-title":"IEEE Internet Things J."},{"key":"ref_20","doi-asserted-by":"crossref","unstructured":"Kishimoto, K., Ohira, K., Yamaguchi, Y., Yamaki, H., and Takakura, H. (2012, January 14\u201316). An Adaptive Honeypot System to Capture IPv6 Address Scans. Proceedings of the 2012 International Conference on Cyber Security, Washington, DC, USA.","DOI":"10.1109\/CyberSecurity.2012.28"},{"key":"ref_21","unstructured":"Schindler, S., Schnor, B., Kiertscher, S., Scheffler, T., and Zack, E. (2013, January 29\u201331). HoneydV6: A low-interaction IPv6 honeypot. Proceedings of the 2013 International Conference on Security and Cryptography (SECRYPT), Reykjavik, Iceland."},{"key":"ref_22","first-page":"252","article-title":"IPv6 Network Attack Detection with HoneydV6","volume":"456","author":"Schindler","year":"2013","journal-title":"Commun. Comput. Inf."},{"key":"ref_23","unstructured":"(2020, September 02). Honeypot Architectures for IPv6 Networks. Available online: https:\/\/www.cs.uni-potsdam.de\/bs\/research\/docs\/thesis\/2016\/schindler.pdf."},{"key":"ref_24","unstructured":"Zuzcak, M., and Sochor, T. (2015). Application of Honeypots in IPv6 Networks. AIP Conference Proceedings, AIP Publishing LLC."},{"key":"ref_25","doi-asserted-by":"crossref","unstructured":"Zobal, L., Kolar, D., and Fujdiak, R. (2019, January 28\u201330). Current State of Honeypots and Deception Strategies in Cybersecurity. Proceedings of the 2019 11th International Congress on Ultra Modern Telecommunications and Control Systems and Workshops (ICUMT), Dublin, Ireland.","DOI":"10.1109\/ICUMT48472.2019.8970921"},{"key":"ref_26","doi-asserted-by":"crossref","first-page":"144","DOI":"10.1109\/TDSC.2008.41","article-title":"Conformance Testing of Temporal Role-Based Access Control Systems","volume":"7","author":"Masood","year":"2010","journal-title":"IEEE Trans. Depend. Secure Comput."},{"key":"ref_27","doi-asserted-by":"crossref","first-page":"166676","DOI":"10.1109\/ACCESS.2019.2947377","article-title":"A dynamic access control model using authorising workflow and task-role based access control","volume":"7","author":"Uddin","year":"2019","journal-title":"IEEE Access"},{"key":"ref_28","doi-asserted-by":"crossref","first-page":"7001","DOI":"10.1109\/ACCESS.2017.2693380","article-title":"An Access Control Model for Resource Sharing Based on the Role-Based Access Control Intended for Multi-Domain Manufacturing Internet of Things","volume":"5","author":"Liu","year":"2017","journal-title":"IEEE Access"},{"key":"ref_29","doi-asserted-by":"crossref","unstructured":"Xu, C., Wang, Y., Wei, Q., and Wang, Q. (2009, January 11\u201314). A Novel Trust Model Based on Temporal Historical Data for Access Control. Proceedings of the 2009 International Conference on Computational Intelligence and Security, Beijing, China.","DOI":"10.1109\/CIS.2009.82"},{"key":"ref_30","doi-asserted-by":"crossref","first-page":"146","DOI":"10.1109\/MCOM.2017.1600611CM","article-title":"A Community-Driven Access Control Approach in Distributed IoT Environments","volume":"55","author":"Hussein","year":"2017","journal-title":"IEEE Commun. Mag."},{"key":"ref_31","doi-asserted-by":"crossref","unstructured":"Mahalle, P.N., Thakre, P.A., Prasad, N.R., and Prasad, R. (2013, January 24\u201327). A fuzzy approach to trust based access control in internet of things. Proceedings of the Wireless VITAE 2013, Atlantic City, NJ, USA.","DOI":"10.1109\/VITAE.2013.6617083"},{"key":"ref_32","doi-asserted-by":"crossref","unstructured":"Gu, K., Zhang, L., Wang, Z., and Kong, Y. (2017, January 29\u201331). Comparative studies of IPv6 tunnel security. Proceedings of the 2017 13th International Conference on Natural Computation, Fuzzy Systems and Knowledge Discovery (ICNC-FSKD), Guilin, China.","DOI":"10.1109\/FSKD.2017.8393224"},{"key":"ref_33","doi-asserted-by":"crossref","unstructured":"Rochim, A.F., Aziz, M.A., and Fauzi, A. (2019, January 2\u20133). Design Log Management System of Computer Network Devices Infrastructures Based on ELK Stack. Proceedings of the 2019 International Conference on Electrical Engineering and Computer Science (ICECOS), Batam Island, Indonesia.","DOI":"10.1109\/ICECOS47637.2019.8984494"},{"key":"ref_34","unstructured":"(2020, September 02). Shemlse Gebremedhin Kassa, CISA, CEH. 1 May 2017 ISACA JOURNAL. Available online: https:\/\/www.isaca.org\/resources\/isaca-journal\/issues\/2017\/volume-3\/it-asset-valuation-risk-assessment-and-control-implementation-model."}],"container-title":["Information"],"original-title":[],"language":"en","link":[{"URL":"https:\/\/www.mdpi.com\/2078-2489\/11\/9\/440\/pdf","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2025,10,11]],"date-time":"2025-10-11T10:09:31Z","timestamp":1760177371000},"score":1,"resource":{"primary":{"URL":"https:\/\/www.mdpi.com\/2078-2489\/11\/9\/440"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2020,9,12]]},"references-count":34,"journal-issue":{"issue":"9","published-online":{"date-parts":[[2020,9]]}},"alternative-id":["info11090440"],"URL":"https:\/\/doi.org\/10.3390\/info11090440","relation":{},"ISSN":["2078-2489"],"issn-type":[{"type":"electronic","value":"2078-2489"}],"subject":[],"published":{"date-parts":[[2020,9,12]]}}}