{"id":"https://openalex.org/W4402957669","doi":"https://doi.org/10.1145/3678890.3678897","title":"Honeyquest: Rapidly Measuring the Enticingness of Cyber Deception Techniques with Code-based Questionnaires","display_name":"Honeyquest: Rapidly Measuring the Enticingness of Cyber Deception Techniques with Code-based Questionnaires","publication_year":2024,"publication_date":"2024-09-29","ids":{"openalex":"https://openalex.org/W4402957669","doi":"https://doi.org/10.1145/3678890.3678897"},"language":"en","primary_location":{"id":"doi:10.1145/3678890.3678897","is_oa":true,"landing_page_url":"https://doi.org/10.1145/3678890.3678897","pdf_url":null,"source":null,"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"The 27th International Symposium on Research in Attacks, Intrusions and Defenses","raw_type":"proceedings-article"},"type":"preprint","indexed_in":["arxiv","crossref","datacite"],"open_access":{"is_oa":true,"oa_status":"gold","oa_url":"https://doi.org/10.1145/3678890.3678897","any_repository_has_fulltext":true},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5015021374","display_name":"Mario Kahlhofer","orcid":"https://orcid.org/0000-0002-6820-4953"},"institutions":[{"id":"https://openalex.org/I121883995","display_name":"Johannes Kepler University of Linz","ror":"https://ror.org/052r2xn60","country_code":"AT","type":"education","lineage":["https://openalex.org/I121883995"]}],"countries":["AT"],"is_corresponding":false,"raw_author_name":"Mario Kahlhofer","raw_affiliation_strings":["Dynatrace Research, Austria and Johannes Kepler University, Austria"],"raw_orcid":"https://orcid.org/0000-0002-6820-4953","affiliations":[{"raw_affiliation_string":"Dynatrace Research, Austria and Johannes Kepler University, Austria","institution_ids":["https://openalex.org/I121883995"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5102934619","display_name":"Stefan Achleitner","orcid":"https://orcid.org/0000-0002-5499-6101"},"institutions":[],"countries":[],"is_corresponding":false,"raw_author_name":"Stefan Achleitner","raw_affiliation_strings":["Dynatrace Research, Austria"],"raw_orcid":"https://orcid.org/0000-0002-5499-6101","affiliations":[{"raw_affiliation_string":"Dynatrace Research, Austria","institution_ids":[]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5026312652","display_name":"Stefan Ra\u00df","orcid":"https://orcid.org/0000-0003-2821-2489"},"institutions":[{"id":"https://openalex.org/I121883995","display_name":"Johannes Kepler University of Linz","ror":"https://ror.org/052r2xn60","country_code":"AT","type":"education","lineage":["https://openalex.org/I121883995"]}],"countries":["AT"],"is_corresponding":false,"raw_author_name":"Stefan Rass","raw_affiliation_strings":["LIT Secure and Correct Systems Lab, Johannes Kepler University, Austria"],"raw_orcid":"https://orcid.org/0000-0003-2821-2489","affiliations":[{"raw_affiliation_string":"LIT Secure and Correct Systems Lab, Johannes Kepler University, Austria","institution_ids":["https://openalex.org/I121883995"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5037581759","display_name":"Ren\u00e9 Mayrhofer","orcid":"https://orcid.org/0000-0003-1566-4646"},"institutions":[{"id":"https://openalex.org/I121883995","display_name":"Johannes Kepler University of Linz","ror":"https://ror.org/052r2xn60","country_code":"AT","type":"education","lineage":["https://openalex.org/I121883995"]}],"countries":["AT"],"is_corresponding":false,"raw_author_name":"Ren\u00e9 Mayrhofer","raw_affiliation_strings":["LIT Secure and Correct Systems Lab, Johannes Kepler University, Austria","Research ,"],"raw_orcid":"https://orcid.org/0000-0003-1566-4646","affiliations":[{"raw_affiliation_string":"LIT Secure and Correct Systems Lab, Johannes Kepler University, Austria","institution_ids":["https://openalex.org/I121883995"]},{"raw_affiliation_string":"Research ,","institution_ids":[]}]}],"institutions":[],"countries_distinct_count":1,"institutions_distinct_count":4,"corresponding_author_ids":[],"corresponding_institution_ids":[],"apc_list":null,"apc_paid":null,"fwci":3.4477,"has_fulltext":true,"cited_by_count":5,"citation_normalized_percentile":{"value":0.93628859,"is_in_top_1_percent":false,"is_in_top_10_percent":true},"cited_by_percentile_year":{"min":95,"max":98},"biblio":{"volume":null,"issue":null,"first_page":"317","last_page":"336"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T10734","display_name":"Information and Cyber Security","score":0.9998000264167786,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T10734","display_name":"Information and Cyber Security","score":0.9998000264167786,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11241","display_name":"Advanced Malware Detection Techniques","score":0.9994999766349792,"subfield":{"id":"https://openalex.org/subfields/1711","display_name":"Signal Processing"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T10400","display_name":"Network Security and Intrusion Detection","score":0.9973000288009644,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/deception","display_name":"Deception","score":0.8488448858261108},{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.6493078470230103},{"id":"https://openalex.org/keywords/code","display_name":"Code (set theory)","score":0.5750008225440979},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.3878975212574005},{"id":"https://openalex.org/keywords/programming-language","display_name":"Programming language","score":0.21846282482147217},{"id":"https://openalex.org/keywords/psychology","display_name":"Psychology","score":0.2130434513092041},{"id":"https://openalex.org/keywords/social-psychology","display_name":"Social psychology","score":0.087818443775177}],"concepts":[{"id":"https://openalex.org/C2779267917","wikidata":"https://www.wikidata.org/wiki/Q170028","display_name":"Deception","level":2,"score":0.8488448858261108},{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.6493078470230103},{"id":"https://openalex.org/C2776760102","wikidata":"https://www.wikidata.org/wiki/Q5139990","display_name":"Code (set theory)","level":3,"score":0.5750008225440979},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.3878975212574005},{"id":"https://openalex.org/C199360897","wikidata":"https://www.wikidata.org/wiki/Q9143","display_name":"Programming language","level":1,"score":0.21846282482147217},{"id":"https://openalex.org/C15744967","wikidata":"https://www.wikidata.org/wiki/Q9418","display_name":"Psychology","level":0,"score":0.2130434513092041},{"id":"https://openalex.org/C77805123","wikidata":"https://www.wikidata.org/wiki/Q161272","display_name":"Social psychology","level":1,"score":0.087818443775177},{"id":"https://openalex.org/C177264268","wikidata":"https://www.wikidata.org/wiki/Q1514741","display_name":"Set (abstract data type)","level":2,"score":0.0}],"mesh":[],"locations_count":8,"locations":[{"id":"doi:10.1145/3678890.3678897","is_oa":true,"landing_page_url":"https://doi.org/10.1145/3678890.3678897","pdf_url":null,"source":null,"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"The 27th International Symposium on Research in Attacks, Intrusions and Defenses","raw_type":"proceedings-article"},{"id":"pmh:oai:arXiv.org:2408.10796","is_oa":true,"landing_page_url":"http://arxiv.org/abs/2408.10796","pdf_url":"https://arxiv.org/pdf/2408.10796","source":{"id":"https://openalex.org/S4306400194","display_name":"arXiv (Cornell University)","issn_l":null,"issn":null,"is_oa":true,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I205783295","host_organization_name":"Cornell University","host_organization_lineage":["https://openalex.org/I205783295"],"host_organization_lineage_names":[],"type":"repository"},"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":null,"raw_type":"text"},{"id":"doi:10.5281/zenodo.13880651","is_oa":true,"landing_page_url":"https://doi.org/10.5281/zenodo.13880651","pdf_url":null,"source":{"id":"https://openalex.org/S4306400562","display_name":"Zenodo (CERN European Organization for Nuclear Research)","issn_l":null,"issn":null,"is_oa":true,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I67311998","host_organization_name":"European Organization for Nuclear Research","host_organization_lineage":["https://openalex.org/I67311998"],"host_organization_lineage_names":[],"type":"repository"},"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":null,"is_accepted":false,"is_published":null,"raw_source_name":null,"raw_type":"article-journal"},{"id":"doi:10.5281/zenodo.13880652","is_oa":true,"landing_page_url":"https://doi.org/10.5281/zenodo.13880652","pdf_url":null,"source":{"id":"https://openalex.org/S4306400562","display_name":"Zenodo (CERN European Organization for Nuclear Research)","issn_l":null,"issn":null,"is_oa":true,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I67311998","host_organization_name":"European Organization for Nuclear Research","host_organization_lineage":["https://openalex.org/I67311998"],"host_organization_lineage_names":[],"type":"repository"},"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":null,"is_accepted":false,"is_published":null,"raw_source_name":null,"raw_type":"article-journal"},{"id":"doi:10.5281/zenodo.17279036","is_oa":true,"landing_page_url":"https://doi.org/10.5281/zenodo.17279036","pdf_url":null,"source":{"id":"https://openalex.org/S4306400562","display_name":"Zenodo (CERN European Organization for Nuclear Research)","issn_l":null,"issn":null,"is_oa":true,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I67311998","host_organization_name":"European Organization for Nuclear Research","host_organization_lineage":["https://openalex.org/I67311998"],"host_organization_lineage_names":[],"type":"repository"},"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":null,"is_accepted":false,"is_published":null,"raw_source_name":null,"raw_type":"article-journal"},{"id":"doi:10.5281/zenodo.17279037","is_oa":true,"landing_page_url":"https://doi.org/10.5281/zenodo.17279037","pdf_url":null,"source":{"id":"https://openalex.org/S4306400562","display_name":"Zenodo (CERN European Organization for Nuclear Research)","issn_l":null,"issn":null,"is_oa":true,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I67311998","host_organization_name":"European Organization for Nuclear Research","host_organization_lineage":["https://openalex.org/I67311998"],"host_organization_lineage_names":[],"type":"repository"},"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":null,"is_accepted":false,"is_published":null,"raw_source_name":null,"raw_type":"article-journal"},{"id":"doi:10.5281/zenodo.20323773","is_oa":true,"landing_page_url":"https://doi.org/10.5281/zenodo.20323773","pdf_url":null,"source":{"id":"https://openalex.org/S4306400562","display_name":"Zenodo (CERN European Organization for Nuclear Research)","issn_l":null,"issn":null,"is_oa":true,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I67311998","host_organization_name":"European Organization for Nuclear Research","host_organization_lineage":["https://openalex.org/I67311998"],"host_organization_lineage_names":[],"type":"repository"},"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":null,"is_accepted":false,"is_published":null,"raw_source_name":null,"raw_type":"article-journal"},{"id":"doi:10.5281/zenodo.20323774","is_oa":true,"landing_page_url":"https://doi.org/10.5281/zenodo.20323774","pdf_url":null,"source":{"id":"https://openalex.org/S4306400562","display_name":"Zenodo (CERN European Organization for Nuclear Research)","issn_l":null,"issn":null,"is_oa":true,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I67311998","host_organization_name":"European Organization for Nuclear Research","host_organization_lineage":["https://openalex.org/I67311998"],"host_organization_lineage_names":[],"type":"repository"},"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":null,"is_accepted":false,"is_published":null,"raw_source_name":null,"raw_type":"article-journal"}],"best_oa_location":{"id":"doi:10.1145/3678890.3678897","is_oa":true,"landing_page_url":"https://doi.org/10.1145/3678890.3678897","pdf_url":null,"source":null,"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"The 27th International Symposium on Research in Attacks, Intrusions and Defenses","raw_type":"proceedings-article"},"sustainable_development_goals":[],"awards":[],"funders":[],"has_content":{"pdf":false,"grobid_xml":false},"content_urls":null,"referenced_works_count":89,"referenced_works":["https://openalex.org/W151695039","https://openalex.org/W796823965","https://openalex.org/W1487402535","https://openalex.org/W1536598138","https://openalex.org/W1569442657","https://openalex.org/W1665985821","https://openalex.org/W1996058992","https://openalex.org/W2012910199","https://openalex.org/W2020018978","https://openalex.org/W2026711169","https://openalex.org/W2062293785","https://openalex.org/W2064462335","https://openalex.org/W2072610876","https://openalex.org/W2077375749","https://openalex.org/W2084413241","https://openalex.org/W2093397575","https://openalex.org/W2101173463","https://openalex.org/W2124242181","https://openalex.org/W2130778370","https://openalex.org/W2132243687","https://openalex.org/W2151584216","https://openalex.org/W2151915331","https://openalex.org/W2152598326","https://openalex.org/W2156204309","https://openalex.org/W2159601538","https://openalex.org/W2161125296","https://openalex.org/W2502904752","https://openalex.org/W2512166484","https://openalex.org/W2536759866","https://openalex.org/W2565020460","https://openalex.org/W2607460355","https://openalex.org/W2610466262","https://openalex.org/W2725073272","https://openalex.org/W2766667285","https://openalex.org/W2794694510","https://openalex.org/W2797887368","https://openalex.org/W2799873608","https://openalex.org/W2809494870","https://openalex.org/W2884962025","https://openalex.org/W2894102733","https://openalex.org/W2897909608","https://openalex.org/W2930946359","https://openalex.org/W2970101446","https://openalex.org/W2970977022","https://openalex.org/W2971648973","https://openalex.org/W2990220343","https://openalex.org/W2990491324","https://openalex.org/W2991407119","https://openalex.org/W2997993688","https://openalex.org/W2998623387","https://openalex.org/W3003257820","https://openalex.org/W3005180383","https://openalex.org/W3005235095","https://openalex.org/W3005264141","https://openalex.org/W3005300825","https://openalex.org/W3005518632","https://openalex.org/W3006206753","https://openalex.org/W3008836990","https://openalex.org/W3013735105","https://openalex.org/W3039211466","https://openalex.org/W3045763553","https://openalex.org/W3093855599","https://openalex.org/W3132257166","https://openalex.org/W3156178383","https://openalex.org/W3156463429","https://openalex.org/W3170221089","https://openalex.org/W3174885261","https://openalex.org/W3189604664","https://openalex.org/W3194931682","https://openalex.org/W3195892385","https://openalex.org/W3196048063","https://openalex.org/W4220839468","https://openalex.org/W4220953501","https://openalex.org/W4251538490","https://openalex.org/W4254527739","https://openalex.org/W4280624701","https://openalex.org/W4285079909","https://openalex.org/W4285163379","https://openalex.org/W4285300810","https://openalex.org/W4287884605","https://openalex.org/W4360983588","https://openalex.org/W4366525950","https://openalex.org/W4366777291","https://openalex.org/W4389148887","https://openalex.org/W4391903986","https://openalex.org/W4392364798","https://openalex.org/W4398230534","https://openalex.org/W4402158702","https://openalex.org/W4402158709"],"related_works":["https://openalex.org/W4391375266","https://openalex.org/W2748952813","https://openalex.org/W2165717120","https://openalex.org/W2039390456","https://openalex.org/W2948663225","https://openalex.org/W2029954793","https://openalex.org/W1992683634","https://openalex.org/W4295295666","https://openalex.org/W1978059949","https://openalex.org/W2512387791"],"abstract_inverted_index":{"Fooling":[0],"adversaries":[1,150],"with":[2,37,98,109],"traps":[3],"such":[4],"as":[5],"honeytokens":[6],"can":[7,144],"slow":[8],"down":[9],"cyber":[10,19,87,142],"attacks":[11],"and":[12,55,90,135],"create":[13],"strong":[14],"indicators":[15],"of":[16,41,75,85,106,118,132,141],"compromise.":[17],"Unfortunately,":[18],"deception":[20,76,88,134,143],"techniques":[21,58,77,89,120],"are":[22],"often":[23],"poorly":[24],"specified.":[25],"Also,":[26],"realistically":[27],"measuring":[28],"their":[29],"effectiveness":[30],"requires":[31],"a":[32,38,60,115,153],"well-exposed":[33],"software":[34],"system":[35],"together":[36],"production-ready":[39],"implementation":[40,117],"these":[42,119],"techniques.":[43],"This":[44],"makes":[45],"rapid":[46],"prototyping":[47],"challenging.":[48],"Our":[49,64],"work":[50,108],"translates":[51],"13":[52],"previously":[53],"researched":[54],"12":[56],"self-defined":[57],"into":[59],"high-level,":[61],"machine-readable":[62],"specification.":[63],"open-source":[65],"tool,":[66],"Honeyquest,":[67],"allows":[68],"researchers":[69],"to":[70],"quickly":[71],"evaluate":[72],"the":[73,83,104,130,139,147],"enticingness":[74,84],"without":[78,114],"implementing":[79],"them.":[80],"We":[81,101,125],"test":[82],"25":[86],"19":[91],"true":[92,154],"security":[93,155],"risks":[94],"in":[95],"an":[96],"experiment":[97],"47":[99],"humans.":[100],"successfully":[102],"replicate":[103],"goals":[105],"previous":[107],"many":[110],"consistent":[111],"findings,":[112],"but":[113],"time-consuming":[116],"on":[121,160],"real":[122],"computer":[123],"systems.":[124],"provide":[126],"valuable":[127],"insights":[128],"for":[129],"design":[131],"enticing":[133],"also":[136],"show":[137],"that":[138,149],"presence":[140],"significantly":[145],"reduce":[146],"risk":[148,156],"will":[151],"find":[152],"by":[157],"about":[158],"22%":[159],"average.":[161]},"counts_by_year":[{"year":2026,"cited_by_count":1},{"year":2025,"cited_by_count":4}],"updated_date":"2026-06-11T09:08:48.828518","created_date":"2024-09-30T00:00:00"}