Honey Encryption

Honey Encryption is a security tool that makes it difficult for an attacker who is carrying out a brute force attack to know if he has correctly guessed a password or encryption key.

Honey Encryption is a security tool that makes it difficult for an attacker who is carrying out a brute force attack to know if he has correctly guessed a password or encryption key.

Typically, an attacker will know he's guessed wrong because the decrypted results will be unintelligible. If Honey Encryption has been used, however, the wrong guess will generate phony results that appear to be genuine. Because each incorrect guess generates a plausible result, it will be difficult for the attacker to know when he has guessed correctly.

Honey Encryption was created by Ari Juels, former chief scientist of the RSA, and Thomas Ristenpart from the University of Wisconsin. At the time of this writing, Honey Encryption is best-suited for constructions in which encrypted data is derived from passwords.

See also: honey pot, honeynet, honey monkey

 

This was first published in April 2014

Continue Reading About Honey Encryption

Glossary

'Honey Encryption ' is part of the:

View All Definitions

Dig deeper on Enterprise information security management

Pro+

Features

Enjoy the benefits of Pro+ membership, learn more and join.

0 comments

Oldest 

Forgot Password?

No problem! Submit your e-mail address below. We'll send you an email containing your password.

Your password has been sent to:

File Extensions and File Formats

Powered by:

SearchCompliance

SearchHealthIT

SearchCloudComputing

SearchMobileComputing

SearchDataCenter

Close