Saved in:
Bibliographic Details
Main Authors: Landsborough, Jason, Rowe, Neil C., Nguyen, Thuy D., Fugate, Sunny
Format: Preprint
Published: 2024
Subjects:
Online Access:https://arxiv.org/abs/2412.16430
Tags: Add Tag
No Tags, Be the first to tag this record!
_version_ 1866913622666510336
author Landsborough, Jason
Rowe, Neil C.
Nguyen, Thuy D.
Fugate, Sunny
author_facet Landsborough, Jason
Rowe, Neil C.
Nguyen, Thuy D.
Fugate, Sunny
contents Deception is being increasingly explored as a cyberdefense strategy to protect operational systems. We are studying implementation of deception-in-depth strategies with initially three logical layers: network, host, and data. We draw ideas from military deception, network orchestration, software deception, file deception, fake honeypots, and moving-target defenses. We are building a prototype representing our ideas and will be testing it in several adversarial environments. We hope to show that deploying a broad range of deception techniques can be more effective in protecting systems than deploying single techniques. Unlike traditional deception methods that try to encourage active engagement from attackers to collect intelligence, we focus on deceptions that can be used on real machines to discourage attacks.
format Preprint
id arxiv_https___arxiv_org_abs_2412_16430
institution arXiv
publishDate 2024
record_format arxiv
spellingShingle WiP: Deception-in-Depth Using Multiple Layers of Deception
Landsborough, Jason
Rowe, Neil C.
Nguyen, Thuy D.
Fugate, Sunny
Cryptography and Security
Deception is being increasingly explored as a cyberdefense strategy to protect operational systems. We are studying implementation of deception-in-depth strategies with initially three logical layers: network, host, and data. We draw ideas from military deception, network orchestration, software deception, file deception, fake honeypots, and moving-target defenses. We are building a prototype representing our ideas and will be testing it in several adversarial environments. We hope to show that deploying a broad range of deception techniques can be more effective in protecting systems than deploying single techniques. Unlike traditional deception methods that try to encourage active engagement from attackers to collect intelligence, we focus on deceptions that can be used on real machines to discourage attacks.
title WiP: Deception-in-Depth Using Multiple Layers of Deception
topic Cryptography and Security
url https://arxiv.org/abs/2412.16430