Honey chatting: A novel instant messaging system robust to eavesdropping over communication

Kim, Joo-Im; Yoon, Ji Won

doi:10.1109/icassp.2016.7472064

Cited by 8 publications

(4 citation statements)

References 10 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…The Levenshtein distance between the number of bit changes in the plaintext data and the decoy message of the CDM is compared with Yoon et al [33], Kim and Yoon [44] and Beaunardeau et al [45] as depicted in Table 4. The following related works were selected because they use similar dataset.…”

Section: (Iii) Statistical Evaluation Based On Levenshtein Distance (Ld)mentioning

confidence: 99%

A Cognitive Deception Model for Generating Fake Documents to Curb Data Exfiltration in Networks During Cyber-Attacks

et al. 2022

View full text Add to dashboard Cite

show abstract

Section: (Iii) Statistical Evaluation Based On Levenshtein Distance (Ld)mentioning

confidence: 99%

A Cognitive Deception Model for Generating Fake Documents to Curb Data Exfiltration in Networks During Cyber-Attacks

et al. 2022

View full text Add to dashboard Cite

show abstract

“…By adopting the honey encryption scheme, the defender can defeat brute-force attackers when they try to guess keys randomly. A recent application called Honey Chatting has been proposed in [36] to combat eavesdropping attacks by applying honey encryption to chatting applications. Honey encryption ensures that an attacker will not be able to verify if a right key is used to decrypt a chatting message thus cannot determine the exact content of the message.…”

Section: Cryptography Based Approachmentioning

confidence: 99%

Cyber Deception for Computer and Network Security: Survey and Challenges

Lu¹,

Wang²,

Zhao³

2020

Preprint

View full text Add to dashboard Cite

Cyber deception has recently received increasing attentions as a promising mechanism for proactive cyber defense. Cyber deception strategies aim at injecting intentionally falsified information to sabotage the early stage of attack reconnaissance and planning in order to render the final attack action harmless or ineffective.Motivated by recent advances in cyber deception research, we in this paper provide a formal view of cyber deception, and review high-level deception schemes and actions. We also summarize and classify recent research results of cyber defense techniques built upon the concept of cyber deception, including gametheoretic modeling at the strategic level, network-level deception, in-host-system deception and cryptography based deception. Finally, we lay out and discuss in detail the research challenges towards developing full-fledged cyber deception frameworks and mechanisms.

show abstract

“…Others have acknowledged the importance of cryptography in communication. According to Kim and Yoon [25], some cryptosystems used in IM are vulnerable to brute-force attacks, specially those with short keys, or that are based in passwords, as users' choices are commonly weak. To overcome this problem, the authors propose a Honey Encryption system for use in Instant Messaging, in which inputting the wrong key will give a plausible, yet incorrect, plaintext.…”

Section: Related Workmentioning

confidence: 99%

Securing Instant Messages With Hardware-Based Cryptography and Authentication in Browser Extension

et al. 2020

View full text Add to dashboard Cite

Instant Messaging (IM) provides near-real-time communication between users, which has shown to be a valuable tool for internal communication in companies and for general-purpose interaction among people. IM systems and supporting protocols, however, must consider security aspects to guarantee the messages' authenticity, confidentiality, and integrity. In this paper, we present a solution for integrating hardware-based public key cryptography into Converse.js, an open-source IM client for browsers enabled with the Extensible Messaging and Presence Protocol (XMPP). The proposal is developed as a plugin for Converse.js, thus overriding the original functions of the client; and a browser extension that is triggered by the plugin and is responsible for calling the encryption and decryption services for each sent and received message. This integrated artifact allowed the experimental validation of the proposal providing authenticity of IM users with digital certificates and protection of IM messages with hardware-based cryptography. Results also shows the proposed systems is resistent to adversarial attacks against confidentiality and integrity and it is secure when considering cryptrographic tests like the Hamming distance and the NIST SP800-22.

show abstract

Honey chatting: A novel instant messaging system robust to eavesdropping over communication

Cited by 8 publications

References 10 publications

A Cognitive Deception Model for Generating Fake Documents to Curb Data Exfiltration in Networks During Cyber-Attacks

A Cognitive Deception Model for Generating Fake Documents to Curb Data Exfiltration in Networks During Cyber-Attacks

Cyber Deception for Computer and Network Security: Survey and Challenges

Securing Instant Messages With Hardware-Based Cryptography and Authentication in Browser Extension

Contact Info

Product

Resources

About