How to Hoax a Hacker

The 'honeypot passwords' that could keep your online account safe

Email Print
FacebookTwitterShare

Researchers have unveiled a radical new way to secure passwords – and say fooling hackers is key.

The new honey encryption system relies on tricking cybercriminals.

It gives hackers fake data in response to incorrect password guesses, fooling the hacker repeatedly.

Researchers say it is the first of a new breed of encyrption tools designed to trick hackers.

‘Decoys and deception are really underexploited tools in fundamental computer security,’ Ari Juels, an independent researcher who was previously chief scientist at computer security company RSA, told MIT Technology Review.

Together with Thomas Ristenpart of the University of Wisconsin, he has developed a new encryption system with a trick up its sleeve.

It gives encrypted data an additional layer of protection by serving up fake data in response to every incorrect guess of the password or encryption key. 

If the attacker does eventually guess correctly, the real data should be lost amongst the crowd of spoof data, the researchers say.

Side Bar: HOW HONEY ENCRYPTION WORKS

The new system gives encrypted data an additional layer of protection by serving up fake data in response to every incorrect guess of the password or encryption key. 

If the attacker does eventually guess correctly, the real data should be lost amongst the crowd of spoof data, the researchers say.

Read the rest of the article

Email Print
FacebookTwitterShare