| 摘要 |
A method of computer system security is proposed that uses a failword, which is a password-like string that fools the malicious user, and does not alert him that he is not gaining proper access. A failword is indistinguishable to the malicious user from a password in its apparent functionality, but has a different real utility. Failword security is implemented by picking a set of failwords, by separating the system data into two sets: the open data set which is not protected, and the closed data set which is, by creating a decoy data set that imitates the closed data set, and by suitably updating these sets. The effect of this method is to give the system a strong counter-offensive capability against malicious users, especially useful where significant commercial or national security interests are involved.
|
