English
Related papers

Related papers: Advancing Honeywords for Real-World Authentication…

200 papers

Honeywords are decoy passwords that can be added to a credential database; if a login attempt uses a honeyword, this indicates that the site's credential database has been leaked. In this paper we explore the basic requirements for…

Cryptography and Security · Computer Science 2024-03-07 Zonghao Huang , Lujo Bauer , Michael K. Reiter

Decoy passwords, or "honeywords," planted in a credential database can alert a site to its breach if ever submitted in a login attempt. To be effective, some honeywords must appear at least as likely to be user-chosen passwords as the real…

Cryptography and Security · Computer Science 2023-11-22 Ke Coby Wang , Michael K. Reiter

Honeywords are fictitious passwords inserted into databases in order to identify password breaches. The major difficulty is how to produce honeywords that are difficult to distinguish from real passwords. Although the generation of…

Artificial Intelligence · Computer Science 2022-08-24 Fangyi Yu , Miguel Vargas Martin

Honeyword is a representative "honey" technique that employs decoy objects to mislead adversaries and protect the real ones. To assess the security of a Honeyword system, two metrics--flatness and success-number--have been proposed and…

Cryptography and Security · Computer Science 2025-04-22 Pengcheng Su , Haibo Cheng , Wenting Li , Ping Wang

The majority of systems rely on user authentication on passwords, but passwords have so many weaknesses and widespread use that easily raise significant security concerns, regardless of their encrypted form. Users hold the same password for…

Cryptography and Security · Computer Science 2021-01-22 Vassilis Papaspirou , Leandros Maglaras , Mohamed Amine Ferrag , Ioanna Kantzavelou , Helge Janicke , Christos Douligeris

Decoy passwords, or ``honeywords,'' alert a site to its breach if entered in a login attempt on that site. However, an attacker can identify a user-chosen password from among the decoys, without alerting the site to its breach, via…

Cryptography and Security · Computer Science 2026-05-14 Mridu Nanda , Michael K. Reiter

"Honeywords" have emerged as a promising defense mechanism for detecting data breaches and foiling offline dictionary attacks (ODA) by deceiving attackers with false passwords. In this paper, we propose PassFilter, a novel deep learning…

Cryptography and Security · Computer Science 2024-07-25 Jimmy Dani , Brandon McCulloh , Nitesh Saxena

Keyloggers remain a serious threat in modern cybersecurity, silently capturing user keystrokes to steal credentials and sensitive information. Traditional defenses focus mainly on detection and removal, which can halt malicious activity but…

Cryptography and Security · Computer Science 2025-08-07 Md Sajidul Islam Sajid , Shihab Ahmed , Ryan Sosnoski

Modern trend sees a lot usage of \textit{honeywords} (or fake password) for protecting the original passwords in the password file. However, the usage of \textit{honeywords} has strongly been criticized under the different security and…

Cryptography and Security · Computer Science 2017-08-07 Nilesh Chakraborty , Shreya Singh , Samrat Mondal

One of the main challenges faced by Biometric-based authentication systems is the need to offer secure authentication while maintaining the privacy of the biometric data. Previous solutions, such as Secure Sketch and Fuzzy Extractors, rely…

Cryptography and Security · Computer Science 2016-11-14 Mor Ohana , Orr Dunkelman , Stuart Gibson , Margarita Osadchy

Using password based authentication technique, a system maintains the login credentials (username, password) of the users in a password file. Once the password file is compromised, an adversary obtains both the login credentials. With the…

Cryptography and Security · Computer Science 2017-05-31 Nilesh Chakraborty , Samrat Mondal

Honey Encryption is an approach to encrypt the messages using low min-entropy keys, such as weak passwords, OTPs, PINs, credit card numbers. The ciphertext is produces, when decrypted with any number of incorrect keys, produces…

Cryptography and Security · Computer Science 2020-11-02 Kunjal Panchal

A honeypot is a type of security facility deliberately created to be probed, attacked and compromised. It is often used for protecting production systems by detecting and deflecting unauthorized accesses. It is also useful for investigating…

Cryptography and Security · Computer Science 2018-12-26 Wenjun Fan , Zhihui Du , David Fernandez , Victor A. Villagra

Honeypots are decoy systems that lure attackers by presenting them with a seemingly vulnerable system. They provide an early detection mechanism as well as a method for learning how adversaries work and think. However, over the last years,…

Cryptography and Security · Computer Science 2021-09-23 Shreyas Srinivasa , Jens Myrup Pedersen , Emmanouil Vasilomanolakis

Honeyfiles are security assets designed to attract and detect intruders on compromised systems. Honeyfiles are a type of honeypot that mimic real, sensitive documents, creating the illusion of the presence of valuable data. Interaction with…

Machine Learning · Computer Science 2024-04-09 David D. Nguyen , David Liebowitz , Surya Nepal , Salil S. Kanhere , Sharif Abuadbba

In this age of digitalization, Internet services face more attacks than ever. An attacker's objective is to exploit systems and use them for malicious purposes. Such efforts are rising as vulnerable systems can be discovered and compromised…

Cryptography and Security · Computer Science 2024-07-18 Stefan Machmeier

With the rapid growth of Internet of Things (IoT) devices, it is imperative to proactively understand the real-world cybersecurity threats posed to them. This paper describes our initial efforts towards building a honeypot ecosystem as a…

Cryptography and Security · Computer Science 2020-03-04 Armin Ziaie Tabari , Xinming Ou

Inverting the hash values by performing brute force computation is one of the latest security threats on password based authentication technique. New technologies are being developed for brute force computation and these increase the…

Cryptography and Security · Computer Science 2015-09-22 Nilesh Chakraborty , Samrat Mondal

The rapid evolution of cyber threats necessitates innovative solutions for detecting and analyzing malicious activity. Honeypots, which are decoy systems designed to lure and interact with attackers, have emerged as a critical component in…

Cryptography and Security · Computer Science 2024-11-05 Hakan T. Otal , M. Abdullah Canbaz

Fooling adversaries with traps such as honeytokens can slow down cyber attacks and create strong indicators of compromise. Unfortunately, cyber deception techniques are often poorly specified. Also, realistically measuring their…

Cryptography and Security · Computer Science 2024-08-21 Mario Kahlhofer , Stefan Achleitner , Stefan Rass , René Mayrhofer
‹ Prev 1 2 3 10 Next ›