Computer Hacking Forensic Investigator (CHFI v10) — Question 103

Jason has set up a honeypot environment by creating a DMZ that has no physical or logical access to his production network. In this honeypot, he has placed a server running Windows Active Directory. He has also placed a Web server in the DMZ that services a number of web pages that offer visitors a chance to download sensitive information by clicking on a button. A week later, Jason finds in his network logs how an intruder accessed the honeypot and downloaded sensitive information. Jason uses the logs to try and prosecute the intruder for stealing sensitive corporate information. Why will this not be viable?

Answer options

• A. Entrapment
• B. Enticement
• C. Intruding into a honeypot is not illegal
• D. Intruding into a DMZ is not illegal

Correct answer: A

Explanation

The correct answer is A, as entrapment occurs when an individual is induced to commit a crime they otherwise would not have committed. In this scenario, the honeypot was set up to entice intruders, which can complicate legal proceedings. Options C and D are incorrect because while accessing a honeypot may not be illegal, the act of entrapment plays a significant role in the legal validity of prosecution.