Focus: Honeypots
Honeypots are currently the most popular of all traps and deceptive measures. Accordingly, we’ll take a detailed look at some of the main issues related to honeypots and their use. The meaning of “honeypot,” however, is not universally agreed upon, so we’ll start by exploring what kinds of implementations might be called honeypots.
Deception Servers Versus Deception Hosts
Earlier in this chapter, we proposed a definition of a honeypot. In his previously cited paper on honeypots, however, Douglas Moran propounds that the term “honeypot” is ill-advised. First, according to Moran, “honeypot” is an inadequately defined term in that it can mean almost anything. Additionally, in many people’s minds, the term “honeypot” conjures the ...
Get Incident Response: A Strategic Guide to Handling System and Network Security Breaches now with the O’Reilly learning platform.
O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.
