A bodyguard of lies

Juels, Ari

doi:10.1145/2613087.2613088

Cited by 15 publications

(8 citation statements)

References 8 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…User Login, When the user attempts login to his account, the login server checks the honeypot (Fake and legitimate accounts, the fake is set up by the administrator to detect the breaches) [33][34][35]. If his/her account is fakes then an alarm is sent to the administrative as a possible breach, else the account is legitimate then hashed the password of the user and compared to its database of sweetwords and sent (Check: i, j) to the honeychecker [36,37].…”

Section: Honeywordsmentioning

confidence: 99%

A Scrutiny of Honeyword Generation Methods: Remarks on Strengths and Weaknesses Points

Yasser

Sadiq

Al-Hamdani

2022

Cybernetics and Information Technologies

View full text Add to dashboard Cite

Honeyword system is a successful password cracking detection system. Simply the honeywords are (False passwords) that are accompanied to the sugarword (Real password). Honeyword system aims to improve the security of hashed passwords by facilitating the detection of password cracking. The password database will have many honeywords for every user in the system. If the adversary uses a honeyword for login, a silent alert will indicate that the password database might be compromised. All previous studies present a few remarks on honeyword generation methods for max two preceding methods only. So, the need for one that lists all preceding researches with their weaknesses is shown. This work presents all generation methods then lists the strengths and weaknesses of 26 ones. In addition, it puts 32 remarks that highlight their strengths and weaknesses points. This research has proved that every honeyword generation method has many weaknesses points.

show abstract

Section: Honeywordsmentioning

confidence: 99%

A Scrutiny of Honeyword Generation Methods: Remarks on Strengths and Weaknesses Points

Yasser

Sadiq

Al-Hamdani

2022

Cybernetics and Information Technologies

View full text Add to dashboard Cite

show abstract

“…User login, the honeypot is examined by the login server when a user wants to connect to his account (the administrator makes fake accounts to detect the attack) [28]. If the account is fake, the administrator will get a warning as a possible attack; if the account is legitimate, hash the user's password and compare it to the file of sweetwords before submitting checking to the honeychecker [29].…”

Section: Honeywordsmentioning

confidence: 99%

A Proposed Harmony Search Algorithm for Honeyword Generation

Yasser

Sadiq

Al-Hamdani

2022

Advances in Human-Computer Interaction

View full text Add to dashboard Cite

The honeyword system is a password cracking detection technique that aims to improve the security of hashed passwords by making password cracking simpler to detect. Many honeywords (false passwords) accompany the sugarword (true password) to form the sweetwords (false and true passwords) for every user. If the attacker signs in using a honeyword, a silent alarm trigger shows that the honeyword system might be compromised. Many honeyword generation techniques are presented; each one has a flaw in the generating process, a lack of support for all honeyword characteristics, and a slew of honeyword problems. The harmony search algorithm (HSA), a metaheuristic intelligence algorithm inspired by music, is used in this article to offer a novel method for generating honeyword. The suggested honeyword generation technique will enhance the generating process, enhance honeyword characteristics, and address prior approaches’ shortcomings. This paper will show several previous honeyword generation techniques, explain the suggested one, discuss the experimental findings, and compare the new honeyword generation method with the previous ones.

show abstract

“…The attacker has no way to distinguish a priori and is correct and this is done in two steps 1 -Choose a random set of the seed area 2-Linking this random group of seeds with the original message [21] Figure (3) : The seed space for coffee types encryption. [22] the figure (3) shows an example of seed space for coffee types encryption, Cappuccino, Espresso, Latte, and Mocha are among the coffee message options. These four messages have been arranged in alphabetical order.…”

Section: Dtementioning

confidence: 99%

“…And here, these false messages are called honey terms, as researchers called these types of false messages, although researchers tend to use the term honey message instead. Honey words were added to be used as decoys before encrypting honey, present along with the correct message [2], and thus the attacker was unable to recognize the correct message even though the honey encryption involves a delivery encryption method that maps separate messages instead of storing a bunch of spoofed messages for each recipient, the Honey word concept is still very similar [3].…”

Section: The Challenges Of Honey Encryption 51-creating Of Honey Mess...mentioning

confidence: 99%

“…Day after day, our life has evolved, and improvements and facilities are added to it in all life facilities, this progress there must be a weakness, which is the password that is the window on our personal life and our private information [1], but all our lives have become dependent on a number or a group of letters We choose it and create it so it can be a guardian of our data and information portal, In this paper, we will present a review of the honey encryption planner. The honey algorithm is a cryptographic system that ensures flexibility versus a brute-force attack [2] by presenting a reasonable but fake plain text for each void key that an intruder uses to decrypt a message [3]. Two main keys areas are the difficulty of creating a persuasive trap message that's perfect enough to trick convincing the assailant they have the original message.…”

Section: Introductionmentioning

confidence: 99%

See 1 more Smart Citation

Honey Encryption Security Techniques: A Review Paper

Gharbi

Nori

2022

AL-Rafidain Journal of Computer Sciences and Mathematics

View full text Add to dashboard Cite

From time to time, we hear in the news about a breach or attack on some well-known companies as just news, but it is a serious problem because it is the privacy of citizens, their money in trade and managing their businesses and projects. In this paper, we offer a review of the honey encryption planner. Honey Encryption is the encryption system that ensures flexibility versus the brute-force attack through the provision of plain reasonable text, but false for each key is invalid utilized by a trespasser to decrypt a message, two key areas are open it is difficult to create a compelling message trap that's perfect enough to deceive the striker even when he believes that he has the message in its original form. The next problem, the typo issue, where a valid phony plain text seem to a lawful user when he accidentally enters the wrong key. Our goal is to have more satisfaction disguised tricks that are perfect enough to prevent a trespasser from getting the original message, We also need new security methods because the attackers are looking for new ways to attack the systems, so we proposed a new way to protect messages and passwords well and difficult to break and take all the possibilities of attack, including the brute-force, and then the data is hidden in an image with a public secret key.

show abstract

A bodyguard of lies

Cited by 15 publications

References 8 publications

A Scrutiny of Honeyword Generation Methods: Remarks on Strengths and Weaknesses Points

A Scrutiny of Honeyword Generation Methods: Remarks on Strengths and Weaknesses Points

A Proposed Harmony Search Algorithm for Honeyword Generation

Honey Encryption Security Techniques: A Review Paper

Contact Info

Product

Resources

About