翻訳と辞書
Words near each other
・ Hong Kong 97 (video game)
・ Hong Kong A1 Division Championship
・ Hong Kong Academic Aptitude Test
・ Honeysuckle Gelato
・ Honeysuckle Lodge
・ Honeysuckle Rose
・ Honeysuckle Rose (album)
・ Honeysuckle Rose (film)
・ Honeysuckle Rose (song)
・ Honeysuckle Rose Aquarela Do Brasil
・ Honeysuckle Weeks
・ Honeysuckle Weeks (album)
・ Honeysuckle, Kentucky
・ Honeysuckle, Newcastle
・ Honeytech
Honeytoken
・ Honeytrap
・ Honeytribe
・ Honeyville
・ Honeyville, Indiana
・ Honeyville, Utah
・ Honeyville, Virginia
・ Honeywagon
・ Honeywell
・ Honeywell (disambiguation)
・ Honeywell 200
・ Honeywell 316
・ Honeywell 6000 series
・ Honeywell 800
・ Honeywell Aerospace


Dictionary Lists
翻訳と辞書 辞書検索 [ 開発暫定版 ]
スポンサード リンク

Honeytoken : ウィキペディア英語版
Honeytoken
In the field of computer security, honeytokens are honeypots that are not computer systems. Their value lies not in their use, but in their abuse. As such, they are a generalization of such ideas as the honeypot and the canary values often used in stack protection schemes. Honeytokens can exist in almost any form, from a dead, fake account to a database entry that would only be selected by malicious queries, making the concept ideally suited to ensuring data integrity—any use of them is inherently suspicious if not necessarily malicious. In general, they don't necessarily prevent any tampering with the data, but instead give the administrator a further measure of confidence in the data integrity.
An example of a honeytoken is a fake email address used to track if a mailing list has been stolen.〔(Has my mailing list been stolen? | Plynt Security Testing Learning Center )〕
If they are chosen to be unique and unlikely to ever appear in legitimate traffic, they can also be detected over the network by an intrusion-detection system (IDS), alerting the system administrator to things that would otherwise go unnoticed. This is one case where they go beyond merely ensuring integrity, and with some reactive security mechanisms, may actually prevent the malicious activity, e.g. by dropping all packets containing the honeytoken at the router. However, such mechanisms have pitfalls because it might cause serious problems if the honeytoken was poorly chosen and appeared in otherwise legitimate network traffic, which was then dropped.
As stated by Lance Spitzner in his article on Security Focus,〔(Honeytokens: The Other Honeypot )〕 the term was first coined by Augusto Paes de Barros〔(Augusto Paes de Barros blog )〕 in 2003.〔(IDS: RES: Protocol Anomaly Detection IDS - Honeypots )〕
==References==


抄文引用元・出典: フリー百科事典『 ウィキペディア(Wikipedia)
ウィキペディアで「Honeytoken」の詳細全文を読む



スポンサード リンク
翻訳と辞書 : 翻訳のためのインターネットリソース

Copyright(C) kotoba.ne.jp 1997-2016. All Rights Reserved.