Attackers have repeatedly demonstrated they can evade an organization’s conventional defenses. To remain effective, a modern Active Defense requires additional capabilities that fill the gaps not covered by traditional security controls. Deception technology focuses on in-network detection, closing visibility gaps, concealing sensitive or critical information, and misdirecting attacks away from production assets, thus giving defenders the advantage.

This document takes a detailed look at what an ideal deception system should encompass with a checklist to help assess the options.