Using Deception to Enhance Security: A Taxonomy, Model, and Novel Uses

Author

Mohammed H. Almeshekah, Purdue University

Date of Award

January 2015

Degree Type

Dissertation

Degree Name

Doctor of Philosophy (PhD)

Department

Computer Science

First Advisor

Eugene H Spafford

Second Advisor

Mikhail J Atallah

Committee Member 1

Matt Bishop

Committee Member 2

Samuel S Wagstaff

Abstract

As the convergence between our physical and digital worlds continue at a rapid pace, securing our digital information is vital to our prosperity. Most current typical computer systems are unwittingly helpful to attackers through their predictable responses. In everyday security, deception plays a prominent role in our lives and digital security is no different. The use of deception has been a cornerstone technique in many successful computer breaches. Phishing, social engineering, and drive-by-downloads are some prime examples. The work in this dissertation is structured to enhance the security of computer systems by using means of deception and deceit.

Recommended Citation

Almeshekah, Mohammed H., "Using Deception to Enhance Security: A Taxonomy, Model, and Novel Uses" (2015). Open Access Dissertations. 1334.
https://docs.lib.purdue.edu/open_access_dissertations/1334