Final Thought

            The use of honeywords isn’t going to prevent attackers from stealing password databases and cracking
            them, nonetheless, the implementation of this method can improve the security and resilience of the
            system against data breaches.

            Some benefits of using honeywords are enumerated as follows:

               ●  When a fake password is detected in an authentication operation, a data breach can be earlier
                   detected by IT operators.
               ●  A user account can be automatically locked down when a honeyword is used.
               ●  The honeychecker executes separated from server running the system and compromising the
                   honeychecker does not compromise the website (and vice-versa).
               ●  A password obtained from the cracking process does not give the attacker confidence that he can
                   login successfully and undetected — that can be a fake password and an alarm will be triggered
                   informing IT administrators that a risky-signin is happening.


















                                 97