Definition

Honey Encryption

Contributor(s): Nicole Laskowski

Honey Encryption is a security tool that makes it difficult for an attacker who is carrying out a brute force attack to know if he has correctly guessed a password or encryption key.

Typically, an attacker will know he's guessed wrong because the decrypted results will be unintelligible. If Honey Encryption has been used, however, the wrong guess will generate phony results that appear to be genuine. Because each incorrect guess generates a plausible result, it will be difficult for the attacker to know when he has guessed correctly.

Honey Encryption was created by Ari Juels, former chief scientist of the RSA, and Thomas Ristenpart from the University of Wisconsin. At the time of this writing, Honey Encryption is best-suited for constructions in which encrypted data is derived from passwords.

See also: honey pot, honeynet, honey monkey

 

This was last updated in April 2014

Continue Reading About Honey Encryption

Dig Deeper on Enterprise information security management

PRO+

Content

Find more PRO+ content and other member only offers, here.

Start the conversation

Send me notifications when other members comment.

By submitting you agree to receive email from TechTarget and its partners. If you reside outside of the United States, you consent to having your personal data transferred to and processed in the United States. Privacy

Please create a username to comment.

-ADS BY GOOGLE

File Extensions and File Formats

Powered by:

SearchCompliance

SearchHealthIT

SearchCloudComputing

SearchMobileComputing

SearchDataCenter

Close