File Security using Decoy Passwords

In this paper, we've projected honey words (decoy passwords) to observe attacks against hashed password databases. For every user account, the legitimate password is hold on with many honey words so as to sense impersonation. If honey words are chosen properly, a cyber-attacker who steals a �le of hashed passwords cannot be certain if it's the real password or a honey word for any account. Moreover, getting into with a honey word to login can trigger an alarm notifying the administrator a couple of password �le breach. At the expense of increasing the storage demand by twenty times, the authors introduce a straightforward and effective answer to the detection of password �le revealing events [5]. During this study, we tend to scrutinize the honey word system and present some remarks to focus on attainable weak points. Also, we advise another approach that selects the honey words from existing user passwords within the system so as to supply realistic honey words a perfectly flat honey word generation technique and also to cut back storage price of the honey word scheme. This Honey words idea was originally projected by 2 mortal Juels and Rivest to discover attacks against hashed password databases.