English
Related papers

Related papers: Secure (S)Hell: Introducing an SSH Deception Proxy…

200 papers

Introduced by Juels and Rivest in 2013, Honeywords, which are decoy passwords stored alongside a real password, appear to be a proactive method to help detect password credentials misuse. However, despite over a decade of research, this…

Cryptography and Security · Computer Science 2025-10-28 Sudiksha Das , Ashish Kundu

Honeywords are decoy passwords that can be added to a credential database; if a login attempt uses a honeyword, this indicates that the site's credential database has been leaked. In this paper we explore the basic requirements for…

Cryptography and Security · Computer Science 2024-03-07 Zonghao Huang , Lujo Bauer , Michael K. Reiter

Honeypots are decoy systems mimicking real system components designed to defend against cyber attacks. Recently, LLMs increasingly serve as simulation backbones for honeypots. They enable defenders to construct high-interaction honeypots…

Cryptography and Security · Computer Science 2026-05-29 Mark Vero , Fabian Kaczmarczyck , Ivan Petrov , Ilia Shumailov , Jamie Hayes , Niels Heinen , Tianqi Fan , Luca Invernizzi , Martin Vechev

Honeypots are deception systems that emulate vulnerable services to collect threat intelligence. While deploying many honeypots increases the opportunity to observe attacker behaviour, in practise network and computational resources limit…

Cryptography and Security · Computer Science 2026-03-17 Federico Mirra , Matteo Boffa , Idilio Drago , Danilo Giordano , Marco Mellia

Today, internet and web services have become an inseparable part of our lives. Hence, ensuring continuous availability of service has become imperative to the success of any organization. But these services are often hampered by constant…

Cryptography and Security · Computer Science 2015-08-21 Hrishikesh Arun Deshpande

Attacks by Advanced Persistent Threats (APTs) have been shown to be difficult to detect using traditional signature- and anomaly-based intrusion detection approaches. Deception techniques such as decoy objects, often called honey items, may…

Cryptography and Security · Computer Science 2020-07-28 Joel Chacon , Sean McKeown , Richard Macfarlane

Historically, enterprise network reconnaissance is an active process, often involving port scanning. However, as routers and switches become more complex, they also become more susceptible to compromise. From this vantage point, an attacker…

Cryptography and Security · Computer Science 2020-08-10 Iffat Anjum , Mu Zhu , Isaac Polinsky , William Enck , Michael K. Reiter , Munindar Singh

The rapid evolution of cyber threats necessitates innovative solutions for detecting and analyzing malicious activity. Honeypots, which are decoy systems designed to lure and interact with attackers, have emerged as a critical component in…

Cryptography and Security · Computer Science 2024-11-05 Hakan T. Otal , M. Abdullah Canbaz

Since honeypots first appeared as an advanced network security concept they suffer from poor deployment and maintenance strategies. State-of-the-Art deployment is a manual process in which the honeypot needs to be configured and maintained…

Cryptography and Security · Computer Science 2021-11-09 Daniel Fraunholz , Marc Zimmermann , Hans D. Schotten

Cyber deception allows compensating the late response of defenders countermeasures to the ever evolving tactics, techniques, and procedures (TTPs) of attackers. This proactive defense strategy employs decoys resembling legitimate system…

Cryptography and Security · Computer Science 2024-10-17 Marco Zambianco , Claudio Facchinetti , Domenico Siracusa

Honeypots are a well-known and widely used technology in the cybersecurity community, where it is assumed that placing honeypots in different geographical locations provides better visibility and increases effectiveness. However, how…

Cryptography and Security · Computer Science 2023-05-03 Veronica Valeros , Maria Rigaki , Sebastian Garcia

Reconnaissance activities precedent other attack steps in the cyber kill chain. Zero-day attacks exploit unknown vulnerabilities and give attackers the upper hand against conventional defenses. Honeypots have been used to deceive attackers…

Computer Science and Game Theory · Computer Science 2023-07-27 Md Abu Sayed , Ahmed H. Anwar , Christopher Kiekintveld , Branislav Bosansky , Charles Kamhoua

Decoy passwords, or "honeywords," planted in a credential database can alert a site to its breach if ever submitted in a login attempt. To be effective, some honeywords must appear at least as likely to be user-chosen passwords as the real…

Cryptography and Security · Computer Science 2023-11-22 Ke Coby Wang , Michael K. Reiter

Deception is being increasingly explored as a cyberdefense strategy to protect operational systems. We are studying implementation of deception-in-depth strategies with initially three logical layers: network, host, and data. We draw ideas…

Cryptography and Security · Computer Science 2024-12-24 Jason Landsborough , Neil C. Rowe , Thuy D. Nguyen , Sunny Fugate

Decrypting and inspecting encrypted malicious communications may assist crime detection and prevention. Access to client or server memory enables the discovery of artefacts required for decrypting secure communications. This paper develops…

Cryptography and Security · Computer Science 2019-07-26 Peter McLaren , Gordon Russell , William J. Buchanan , Zhiyuan Tan

Honeypots, as a strategic cyber-deception mechanism designed to emulate authentic interactions and bait unauthorized entities, often struggle with balancing flexibility, interaction depth, and deception. They typically fail to adapt to…

Cryptography and Security · Computer Science 2025-02-18 Ziyang Wang , Jianzhou You , Haining Wang , Tianwei Yuan , Shichao Lv , Yang Wang , Limin Sun

Fooling adversaries with traps such as honeytokens can slow down cyber attacks and create strong indicators of compromise. Unfortunately, cyber deception techniques are often poorly specified. Also, realistically measuring their…

Cryptography and Security · Computer Science 2024-08-21 Mario Kahlhofer , Stefan Achleitner , Stefan Rass , René Mayrhofer

In this paper, we revisit the use of honeypots for detecting reflective amplification attacks. These measurement tools require careful design of both data collection and data analysis including cautious threshold inference. We survey common…

Cryptography and Security · Computer Science 2024-05-07 Marcin Nawrocki , John Kristoff , Raphael Hiesgen , Chris Kanich , Thomas C. Schmidt , Matthias Wählisch

Using the computational resources of an untrusted third party to crack a password hash can pose a high number of privacy and security risks. The act of revealing the hash digest could in itself negatively impact both the data subject who…

Cryptography and Security · Computer Science 2023-06-16 Norbert Tihanyi , Tamas Bisztray , Bertalan Borsos , Sebastien Raveau

Defending against sophisticated cyber threats demands strategic allocation of limited security resources across complex network infrastructures. When the defender has limited defensive resources, the complexity of coordinating honeypot…

Computer Science and Game Theory · Computer Science 2025-05-23 Dongyoung Park , Gaby G. Dagher