Generation of Secure and Reliable Honeywords, Preventing False Detection

Chang, Donghoon; Goel, Aarushi; Mishra, Sweta; Sanadhya, Somitra Kumar

doi:10.1109/tdsc.2018.2824323

Cited by 13 publications

(16 citation statements)

References 15 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…When enrolling, the user selects a password-tail of t>1 from a selection of 1. alphabetic characters (a-z), and 2. digits in addition to the username and password (0 -9).  In 19 This study proposes a new honeyword creation strategy that incorporates all four methods. As a result, the system acquires four groups of honeywords generated from the following sources:…”

Section: Modified-uimentioning

confidence: 99%

Honeyword Generation Using a Proposed Discrete Salp Swarm Algorithm

2023

View full text Add to dashboard Cite

Honeywords are fake passwords that serve as an accompaniment to the real password, which is called a "sugarword." The honeyword system is an effective password cracking detection system designed to easily detect password cracking in order to improve the security of hashed passwords. For every user, the password file of the honeyword system will have one real hashed password accompanied by numerous fake hashed passwords. If an intruder steals the password file from the system and successfully cracks the passwords while attempting to log in to users' accounts, the honeyword system will detect this attempt through the honeychecker. A honeychecker is an auxiliary server that distinguishes the real password from the fake passwords and triggers an alarm if intruder signs in using a honeyword. Many honeyword generation approaches have been proposed by previous research, all with limitations to their honeyword generation processes, limited success in providing all required honeyword features, and susceptibility to many honeyword issues. This work will present a novel honeyword generation method that uses a proposed discrete salp swarm algorithm. The salp swarm algorithm (SSA) is a bio-inspired metaheuristic optimization algorithm that imitates the swarming behavior of salps in their natural environment. SSA has been used to solve a variety of optimization problems. The presented honeyword generation method will improve the generation process, improve honeyword features, and overcome the issues of previous techniques. This study will demonstrate numerous previous honeyword generating strategies, describe the proposed methodology, examine the experimental results, and compare the new honeyword production method to those proposed in previous research.

show abstract

Section: Modified-uimentioning

confidence: 99%

Honeyword Generation Using a Proposed Discrete Salp Swarm Algorithm

2023

View full text Add to dashboard Cite

show abstract

“…A k s h i m a et al [48] suggested The "evolving-password model", the "user-profile model", and the "append-secret model" as enhanced and more functional honeyword generating methods.…”

Section: In 2018mentioning

confidence: 99%

A Scrutiny of Honeyword Generation Methods: Remarks on Strengths and Weaknesses Points

Yasser

Sadiq

Al-Hamdani

2022

Cybernetics and Information Technologies

View full text Add to dashboard Cite

Honeyword system is a successful password cracking detection system. Simply the honeywords are (False passwords) that are accompanied to the sugarword (Real password). Honeyword system aims to improve the security of hashed passwords by facilitating the detection of password cracking. The password database will have many honeywords for every user in the system. If the adversary uses a honeyword for login, a silent alert will indicate that the password database might be compromised. All previous studies present a few remarks on honeyword generation methods for max two preceding methods only. So, the need for one that lists all preceding researches with their weaknesses is shown. This work presents all generation methods then lists the strengths and weaknesses of 26 ones. In addition, it puts 32 remarks that highlight their strengths and weaknesses points. This research has proved that every honeyword generation method has many weaknesses points.

show abstract

“…In addition to the username and password, the user chooses a password-tail of t > 1 from a list of (1) alphabetic characters (a-z) and ( 2) digits upon enrolling (0-9). (iv) In [18], as new honeyword generation approaches, the "evolving-password model," "user-profile model," and "append-secret model" are suggested. (1) Evolving-password model: e following two separate computation steps can be utilized to finish the process: (a) Counting the number of times password patterns and tokens are used, and (b) generating honeywords from post frequencies and maintaining frequency lists.…”

Section: Related Workmentioning

confidence: 99%

A Proposed Harmony Search Algorithm for Honeyword Generation

Yasser

Sadiq

Al-Hamdani

2022

Advances in Human-Computer Interaction

View full text Add to dashboard Cite

The honeyword system is a password cracking detection technique that aims to improve the security of hashed passwords by making password cracking simpler to detect. Many honeywords (false passwords) accompany the sugarword (true password) to form the sweetwords (false and true passwords) for every user. If the attacker signs in using a honeyword, a silent alarm trigger shows that the honeyword system might be compromised. Many honeyword generation techniques are presented; each one has a flaw in the generating process, a lack of support for all honeyword characteristics, and a slew of honeyword problems. The harmony search algorithm (HSA), a metaheuristic intelligence algorithm inspired by music, is used in this article to offer a novel method for generating honeyword. The suggested honeyword generation technique will enhance the generating process, enhance honeyword characteristics, and address prior approaches’ shortcomings. This paper will show several previous honeyword generation techniques, explain the suggested one, discuss the experimental findings, and compare the new honeyword generation method with the previous ones.

show abstract

Generation of Secure and Reliable Honeywords, Preventing False Detection

Cited by 13 publications

References 15 publications

Honeyword Generation Using a Proposed Discrete Salp Swarm Algorithm

Honeyword Generation Using a Proposed Discrete Salp Swarm Algorithm

A Scrutiny of Honeyword Generation Methods: Remarks on Strengths and Weaknesses Points

A Proposed Harmony Search Algorithm for Honeyword Generation

Contact Info

Product

Resources

About