Two Taxonomies of Deception for Attacks on Information Systems
Loading...
Authors
Rowe, Neil C.
Rothstein, Hy S.
Subjects
Deception
information warfare
information systems
tactics
defense
decoys
honeypots
lying
disinformation
information warfare
information systems
tactics
defense
decoys
honeypots
lying
disinformation
Advisors
Date of Issue
2004-07
Date
July 2004
Publisher
Monterey, California. Naval Postgraduate School
Language
Abstract
'Cyberwar' is information warfare directed at the software of information systems. It represents an increasing threat
to our militaries and civilian infrastructures. Six principles of military deception are enumerated and applied to
cyberwar. Two taxonomies of deception methods for cyberwar are then provided, making both offensive and
defensive analogies from deception strategies and tactics in conventional war to this new arena. One taxonomy has
been published in the military literature, and the other is based on case theory in linguistics. The application of both
taxonomies to cyberwar is new. We then show how to quantify and rank proposed deceptions for planning using
'suitability' numbers associated with the taxonomies. The paper provides planners for cyberwar with a more
comprehensive enumeration than any yet published to the tactics and strategies that they and their enemies may use.
Some analogies to deception in conventional warfare hold, but many do not, and careful thought and preparation
must be applied to any deception effort.
Type
Conference Paper
Description
This paper appeared in the Journal of Information Warfare, 3 (2), July 2004, 27-39.
Series/Report No
Department
Organization
Identifiers
NPS Report Number
Sponsors
Funder
Format
Citation
Journal of Information Warfare, 3 (2), July 2004, 27-39.
Distribution Statement
Approved for public release; distribution is unlimited.