Research on Deception in Defense of Information Systems

Abstract

Our research group has been broadly studying the use of deliberate deception by software to foil attacks on information systems. This can provide a second line of defense when access controls have been breached or against insider attacks. The thousands of new attacks being discovered every year that subvert access controls say that such a second line of defense is desperately needed. We have developed a number of demonstration systems, including a fake directory system intended to waste the time of spies, a Web information resource that delays suspicious requests, a modified file-download utility that pretends to succumb to a buffer overflow, and a tool for systematically modifying an operating system to insert deceptive responses. We are also developing an associated theory of deception that can be used to analyze and create offensive and defensive deceptions, with especial attention to reasoning about time using temporal logic. We conclude with some discussion of the legal implications of deception by computers.

Open PDF

Document Details

Document Type
Technical Report
Publication Date
Jun 01, 2004
Accession Number
ADA464829

Entities

People

  • Doron Drusinsky
  • J. B. Michael
  • Mikhail I. Auguston
  • Neil C. Rowe

Organizations

  • Naval Postgraduate School

Tags

DTIC Thesaurus Topics

  • Artificial Intelligence
  • Computer Networks
  • Computer Programs
  • Computer Science
  • Computers
  • Countermeasures
  • Cyberattacks
  • Cyberterrorism
  • Deception
  • Detection
  • Homeland Security
  • Information Systems
  • Intrusion Detection
  • Intrusion Detectors
  • National Security
  • Operating Systems
  • Probability

Fields of Study

  • Computer science

Readers

  • Database Systems and Applications
  • Defense Acquisition Program Management
  • Sensor Fusion and Tracking Systems.