All

What are you looking for?

All
Projects
Results
Organizations

Quick search

  • Projects supported by TA ČR
  • Excellent projects
  • Projects with the highest public support
  • Current projects

Smart search

  • That is how I find a specific +word
  • That is how I leave the -word out of the results
  • “That is how I can find the whole phrase”
EN
ČeštinaEnglish

Grouping evil IP addresses

The result's identifiers

  • Result code in IS VaVaI

    <a href="https://www.isvavai.cz/riv?ss=detail&h=RIV%2F63839172%3A_____%2F18%3A10133092" target="_blank" >RIV/63839172:_____/18:10133092 - isvavai.cz</a>

  • Result on the web

  • DOI - Digital Object Identifier

Alternative languages

  • Result language

    angličtina

  • Original language name

    Grouping evil IP addresses

  • Original language description

    Botnet is a group of devices that synchronously performs distributed attacks. Botnets currently represent a very dangerous potential threat to all systems. Botnets can attack with great force, especially when it comes to botnets of many hundreds and thousands of bots. Defense against distributed attacks plays an important role in defending the entire system. The Intrusion Detection System (IDS) is part of the defense. This system monitors network traffic and detects suspicious activity that could lead to a system security breach. IDS is a source of reported detected security events that are solved by Incident response. Sharing information from these reports can help you get a global view. The NERD system was developed CESNET, the operator of the Czech National Research and Education Network (NREN). System NERD collects information about all malicious entities on the network and manages a reputation database over them. This presentation describes the design and implementation of the new system GRIP (Group of IPs). The presentation also describes the analysis of security incidents records in IDEA format. Based on this analysis an algorithm was designed to create groups of suspicious network addresses from a security incident.

  • Czech name

  • Czech description

Classification

  • Type

    O - Miscellaneous

  • CEP classification

  • OECD FORD branch

    20206 - Computer hardware and architecture

Result continuities

  • Project

    <a href="/en/project/LM2015042" target="_blank" >LM2015042: E-infrastructure CESNET</a><br>

  • Continuities

    P - Projekt vyzkumu a vyvoje financovany z verejnych zdroju (s odkazem do CEP)

Others

  • Publication year

    2018

  • Confidentiality

    S - Úplné a pravdivé údaje o projektu nepodléhají ochraně podle zvláštních právních předpisů

Similar results(10)

Cyber Threat Intelligence systemAnalysis of the IP Telephony Security Issues Using Automatic Neural Network ClassifierDetection of Suspicious Behavior