Mushrooms Not Honey - Making Deceptive Defenses More Toxic for Attackers
Offered By: RSA Conference via YouTube
Course Description
Overview
Explore a conference talk on advanced deceptive defense strategies in cybersecurity. Learn about the Troop suite, a proof-of-concept approach focused on deterrence rather than just detection. Discover how this innovative method draws inspiration from attacker tradecraft to create more effective defensive measures. Delve into dynamic deceptive defense techniques, including the "Sock Floor" concept and the distinction between "honey" and "mushroom" traps. Examine classic deceptive techniques, security paradigms, and anomaly detection methods. Investigate game-based models, the Golden Ticket approach, and mushroom files. Gain insights into simulations, balance in cybersecurity, and future directions for research and implementation in this cutting-edge field of digital defense.
Syllabus
Introduction
Dynamic Deceptive Defense
The Core Idea
The Basic Problem
The Second Problem
The Third Problem
The Sock Floor
Honey and Mushrooms
Classic Deceptive Techniques
Observations
Security through obscurity
Security is an oversight
Security is an emergent feature
Anomaly detection
Taxonomy
Techniques
Other Techniques
Research
Simple gamebased models
Daniel Lanagin
Golden Ticket
Detecting Attacks
Mushroom Files
Simulations
Balance
Whats Next
Next Steps
Taught by
RSA Conference
Related Courses
Computer SecurityStanford University via Coursera Cryptography II
Stanford University via Coursera Malicious Software and its Underground Economy: Two Sides to Every Story
University of London International Programmes via Coursera Building an Information Risk Management Toolkit
University of Washington via Coursera Introduction to Cybersecurity
National Cybersecurity Institute at Excelsior College via Canvas Network