Archivio Istituzionale della RicercaThe complexity and scale of Internet attacks call for distributed, cooperative observatories capable of monitoring malicious traffic across diverse networks. Holoscope is an open, lightweight, and cloud-native platform designed to simplify the deployment and management of telescope (passive) and honeypot (active) sensors. Built upon K3s and WireGuard, Holoscope offers secure connectivity, automated sensor onboarding, and resilient operation even in resource-constrained environments. Through modular design and Infrastructure- as-Code principles, it supports dynamic sensor orchestration, automated recovery, and data processing. We build, deploy, and operate Holoscope across multiple institutions and cloud networks in Europe and Brazil, enabling unified visibility into large-scale attack phenomena while maintaining ease of integration and security compliance.
Holoscope: Open and Lightweight Telescope & Honeypot Platform / Sordello, A., Mellia, M., Drago, I., Valentim, R., Musumeci, F., Tornatore, M., Cerutti, F., Trevisan, M., Botta, A., Coelho, W.B.. - In: IEEE COMMUNICATIONS MAGAZINE. - ISSN 0163-6804. - ELETTRONICO. - (2026). [10.1109/mcom.001.2500784]
Holoscope: Open and Lightweight Telescope & Honeypot Platform
Andrea Sordello;Marco Mellia;Idilio Drago;Rodolfo Valentim;Francesco Musumeci;Massimo Tornatore;Federico Cerutti;Martino Trevisan;Alessio Botta;
2026
Abstract
The complexity and scale of Internet attacks call for distributed, cooperative observatories capable of monitoring malicious traffic across diverse networks. Holoscope is an open, lightweight, and cloud-native platform designed to simplify the deployment and management of telescope (passive) and honeypot (active) sensors. Built upon K3s and WireGuard, Holoscope offers secure connectivity, automated sensor onboarding, and resilient operation even in resource-constrained environments. Through modular design and Infrastructure- as-Code principles, it supports dynamic sensor orchestration, automated recovery, and data processing. We build, deploy, and operate Holoscope across multiple institutions and cloud networks in Europe and Brazil, enabling unified visibility into large-scale attack phenomena while maintaining ease of integration and security compliance.
Pubblicazioni consigliate
I documenti in IRIS sono protetti da copyright e tutti i diritti sono riservati, salvo diversa indicazione.
https://hdl.handle.net/11583/3012452
Attenzione
Attenzione! I dati visualizzati non sono stati sottoposti a validazione da parte dell'ateneo