Explore a conference talk on advanced deceptive defense strategies in cybersecurity. Learn about the Troop suite, a proof-of-concept approach focused on deterrence rather than just detection. Discover how this innovative method draws inspiration from attacker tradecraft to create more effective defensive measures. Delve into dynamic deceptive defense techniques, including the "Sock Floor" concept and the distinction between "honey" and "mushroom" traps. Examine classic deceptive techniques, security paradigms, and anomaly detection methods. Investigate game-based models, the Golden Ticket approach, and mushroom files. Gain insights into simulations, balance in cybersecurity, and future directions for research and implementation in this cutting-edge field of digital defense.
Mushrooms Not Honey - Making Deceptive Defenses More Toxic for Attackers
Overview
Syllabus
Introduction
Dynamic Deceptive Defense
The Core Idea
The Basic Problem
The Second Problem
The Third Problem
The Sock Floor
Honey and Mushrooms
Classic Deceptive Techniques
Observations
Security through obscurity
Security is an oversight
Security is an emergent feature
Anomaly detection
Taxonomy
Techniques
Other Techniques
Research
Simple gamebased models
Daniel Lanagin
Golden Ticket
Detecting Attacks
Mushroom Files
Simulations
Balance
Whats Next
Next Steps
Taught by
RSA Conference
