What is active defense? | Definition from TechTarget (2024)

An active defense is the use of offensive actions to outmaneuver an adversary and make an attack more difficult to carry out. Slowing down or derailing the attacker so they cannot advance or complete their attack increases the probability that they will make a mistake and expose their presence or reveal their attack vector.

See Also
Defensiveness in Relationships: How To Handle A Defensive Partner And Relationship Challenges - Lifengoal

While the term active defense is often associated with military applications and protecting critical infrastructure and key resources (CIKR), it also applies to information technology (IT) security. In cybersecurity, an active defense raises the financial cost of an attack in terms of wasting the attacker's processing power and time. Applying offense-driven strategies is critical to being able to detect and stop not only external threat actors, but also insiders and attackers with varying motivations including ransomware, extortionand cryptojacking.

An active defense complements offense-driven actions and allows an organization to proactively detect and derail attacks early and gather the threat intelligence required to understand the attack and prevent a similar recurrence. Sometimes active defense includes striking back at an attacker, but this is normally reserved for military and law enforcement that have the resources and authority to confirm attribution and take appropriate action.

Deception technology can be used to detect an attacker early on in the attack cycle by obfuscating the attack surface with realistic device decoys and attractive digital bait. Misdirection can trick the attacker into engaging and lead them to believe they are escalating their attack, when in fact, they are wasting their time and processing power and providing the defender with counterintelligence. The forensic information gathered through an active defense can then be applied to defense strategies and stop a live attack, identify forensic artifacts and expedite incident response to prevent the attack from resurfacing.

This was last updated in May 2018

Continue Reading About active defense

Related Terms

AI red teaming
AI red teaming is the practice of simulating attack scenarios on an artificial intelligence application to pinpoint weaknesses ...Seecompletedefinition
virus (computer virus)
A computer virus is a type of malware that attaches itself to a program or file. A virus can replicate and spread across an ...Seecompletedefinition
virus signature (virus definition)
A virus signature, also known as a 'virus definition,' is a piece of code with a unique binary pattern that identifies a computer...Seecompletedefinition
What is active defense? | Definition from TechTarget (2024)

FAQs

What is the active defense method? ›

Active defense is the use of offensive tactics to outsmart or slow down a hacker and make cyberattacks more difficult to carry out. An active cyber defense approach helps organizations prevent attackers from advancing through their business networks.

Discover More
What is an example of an active defense? ›

Examples of such honeypot technologies include Illusive Networks, TrapX, Cymmetria, Attivo, and others. Other types of active defenses might include automated incident response, which attempts to tie together different response strategies in order to increase work for attackers and decrease work for defenders.

Learn More Now
What is active cyber defence? ›

Active Cyber Defence (ACD) seeks to reduce the harm from commodity cyber attacks by providing tools and services that protect from a range of attacks.

Discover More Details
What is the capability of active defense? ›

Active Defense cyber security proactively detects and diverts attacks and engages the adversary to learn the attack tactics, techniques, and procedures (TTPs). It is also about dynamically changing the network landscape or the attacker's perception to detect and mitigate attacks early.

See Details
What is passive or active defense? ›

The attack can be directed against an object owned or controlled by the defender, or against the defender itself. The defender can defend its object in two ways: implementing the preventive strike against the potential attacker (active defense) and protecting its object against the impact (passive defense).

View More
What are the 4 levels of defense? ›

Defense Mechanisms
  • Overview. ...
  • Level 1: Pathological Defenses. ...
  • Level 2: Immature Defenses. ...
  • Level 3: Neurotic Defense Mechanisms. ...
  • Level 4: Mature Defense Mechanisms. ...
  • Repression, False Memories, and Trauma. ...
  • Childhood Trauma and Defense Mechanisms. ...
  • Defense Mechanisms and Therapy.

Discover More
What is defense and example? ›

Defense has to do with protecting something or fighting against an opponent, whether it's national defense, a football team's defense, or a defense lawyer. Defense is the opposite of offense. It has to do with defending against all sorts of things: In the military, defense is about protecting a country from attack.

Continue Reading
What is the most common form of defense? ›

The innocence defense is one of the most common types of criminal defenses. It is used when the accused denies that they committed the crime.

Get More Info Here
What are the types of defensive action? ›

The two basic types are maneuver and area defense. An operational-level defensive plan may include subordinate units that are executing various combinations of maneuver and area defenses, along with some offensive courses of action, within the overall defensive mission framework.

Read On
What is active response in cyber security? ›

Active response is defined as the dynamic reconfiguration or alteration of network access control mechanisms, sessions, or even individual packets based on alerts that an IDS generates.

Keep Reading

What is active cyber defense NIST? ›

Active cyber defense is the practice of taking steps to prevent, detect and respond to cyberattacks before they cause damage such as: Penetration testing: Simulating cyberattacks to identify vulnerabilities and improve security. Threat hunting: Actively searching for malicious activity on networks and systems.

Keep Reading
What is active and passive defense in cyber security? ›

Passive Cyber Defense is all measures, other than active cyber defense, taken to minimize the effectiveness of cyber threats against friendly forces and assets. Whereas active defenses are direct actions taken against specific threats, passive defenses focus more on making cyber assets more resilient to attack.

Discover More
What are the three forms of defense? ›

There are three basic defensive tasks: area defense, mobile, and retrograde. Each contains elements of the others, and usually contains both static and dynamic aspects. Infantry platoons serve as the primary maneuver element, or terrain-controlling units for the Infantry company.

View Details
What is the main purpose of the defense? ›

The Department of Defense is responsible for providing the military forces needed to deter war and protect the security of our country.

See Details
Why is defense important? ›

National defense benefits everyone, but in different degrees. National defense defends against the threat that foreign aggressors will confiscate or destroy domestic property and destroy lives. It defends individual liberty, political freedom, and the domestic political system.

See More
What are the different methods of defense? ›

7 Main Defense Mechanisms

This list is sometimes shortened to provide only seven main defense mechanisms, which are denial, displacement, projection, rationalization, reaction formation, repression, and sublimation.

Discover More
What are the three types of defense in the Army? ›

There are three basic defensive tasks: area defense, mobile, and retrograde. Each contains elements of the others, and usually contains both static and dynamic aspects. Infantry platoons serve as the primary maneuver element, or terrain-controlling units for the Infantry company.

View Details
Top Articles
Most goals in international football: Know the top scorers
Is Jaylen Brown the second most important player on the Celtics?
Accor Hotels Loyalty Program | ALL
What is ALL (Accor Live Limitless) Membership?
Teach computing skills with Visual Studio Code for Education (new!) | Microsoft Education Blog
Unplugged Coding Activities & Games for Kids & Teens – Sphero
Hessaire Mini Split Remote Control Manual
Mummy Tail Animal Jam
For Rent: 174 Elizabeth St. in Nolita
For Rent: 32 Spring St. in Nolita
Big Island Of - Hawaii Real Estate - 381 Homes For Sale | Zillow
Housing Assistance Programs
Latest Posts
Top 10 best strikers in football in 2022
Top prospects for New York Rangers | NHL.com
Article information

Author: Van Hayes

Last Updated:

Views: 5563

Rating: 4.6 / 5 (66 voted)

Reviews: 81% of readers found this page helpful

Author information

Name: Van Hayes

Birthday: 1994-06-07

Address: 2004 Kling Rapid, New Destiny, MT 64658-2367

Phone: +512425013758

Job: National Farming Director

Hobby: Reading, Polo, Genealogy, amateur radio, Scouting, Stand-up comedy, Cryptography

Introduction: My name is Van Hayes, I am a thankful, friendly, smiling, calm, powerful, fine, enthusiastic person who loves writing and wants to share my knowledge and understanding with you.