Project Details
Automatizované zpracování útoků
Project Period: 1. 10. 2009 – 30. 9. 2013
Project Type: grant
Code: FR-TI1/037
Agency: Ministerstvo průmyslu a obchodu ČR
Program: TIP
English title
Automated attack processing
Type
grant
Keywords
Enterprise networks, Honeypot, KDD-99, behavioral model, signatures
Abstract
Large-scale computer networks resilience against attacks and malware -- development and implementation of a new method for automatic detection of attacks and malware
Team members
Švéda Miroslav, prof. Ing., CSc.
(UTKO)
– research leader
Antal Lukáš, Ing.
Barabas Maroš, Ing., Ph.D.
Bláha Lukáš, Ing.
Drahanský Martin, prof. Ing., Ph.D.
Drozd Michal, Ing.
Hanáček Petr, doc. Dr. Ing. (DITS)
Homoliak Ivan, Ing., Ph.D. (DITS)
Chmelař Petr, Ing.
Orság Filip, Ing., Ph.D. (DITS)
Antal Lukáš, Ing.
Barabas Maroš, Ing., Ph.D.
Bláha Lukáš, Ing.
Drahanský Martin, prof. Ing., Ph.D.
Drozd Michal, Ing.
Hanáček Petr, doc. Dr. Ing. (DITS)
Homoliak Ivan, Ing., Ph.D. (DITS)
Chmelař Petr, Ing.
Orság Filip, Ing., Ph.D. (DITS)
Publications
2013
- BARABAS, M.; HOMOLIAK, I.; DROZD, M.; HANÁČEK, P. Automated Malware Detection Based on Novel Network Behavioral Signatures. International Journal of Engineering and Technology, 2013, vol. 5, no. 2,
p. 249-253. ISSN: 1793-8236. Detail - HOMOLIAK, I.; BARABAS, M.; CHMELAŘ, P.; DROZD, M.; HANÁČEK, P. ASNM: Advanced Security Network Metrics for Attack Vector Description. Proceedings of the 2013 International Conference on Security & Management. Las Vegas: Computer Science Research, Education, and Applications Press, 2013.
p. 350-358. ISBN: 1-60132-259-3. Detail - HOMOLIAK, I.; BARABAS, M.; CHMELAŘ, P.; DROZD, M.; HANÁČEK, P. Advanced Security Network Metrics. In Emerging Trends in ICT Security. Waltham: Elsevier Science, 2013.
p. 187-202. ISBN: 978-0-12-411474-6. Detail - OČENÁŠEK, P.; ŠVÉDA, M. On the Effective Internet Communication Filtering. Applied Mechanics and Materials, 2013, vol. 2013, no. 307,
p. 478-481. ISSN: 1660-9336. Detail - ŠVÉDA, M. Time in Cyber-Physical Systems: Specifications, Modeling and Measurements. Proceedings of the SCSI 2013. Recent Advances in Electrical Engineering Series, 16. Rhodes Island: European Society for Environmental Research and Sustainable Development, 2013.
p. 413-419. ISBN: 978-1-61804-204-0. Detail - ŠVÉDA, M.; RYŠAVÝ, O. Dependable Cyber-Physical Systems Networking: An Approach for Real-Time, Software Intensive Systems. Programmable Devices and Embedded Systems. Programmable devices and systems. Volume #12. Laxenburg: IFAC, 2013.
p. 1-4. ISBN: 978-3-902823-21-2. ISSN: 1474-6670. Detail
2012
- BARABAS, M.; DROZD, M.; HANÁČEK, P. Behavioral signature generation using shadow honeypot. World Academy of Science, Engineering and Technology, 2012, vol. 2012, no. 65,
p. 829-833. ISSN: 2010-376X. Detail - OČENÁŠEK, P.; ŠVÉDA, M. Analysis and Filtering of Network Communication in ISP Firewalls. Lecture Notes in Information Technology, 2012, vol. 2012, no. 38,
p. 491-494. ISSN: 2070-1918. Detail - ŠVÉDA, M.; RYŠAVÝ, O.; DE SILVA, G.; MATOUŠEK, P.; RÁB, J. Static Analysis of Routing and Firewall Policy Configurations. In e-Business and Telecommunications. Communications in Computer and Information Science. LNCS CCIS, Vol.222. Heidelberg: Springer Science+Business Media B.V., 2012.
p. 39-53. ISBN: 978-3-642-25205-1. ISSN: 1865-0929. Detail - ŠVÉDA, M.; SEKLETÁR, M.; FIDLER, T.; RYŠAVÝ, O. A High-level Network-wide Router Configuration Language. Proceedings ICN 2012. Saint Gilles, Reunion Island: International Academy, Research, and Industry Association, 2012.
p. 18-21. ISBN: 978-1-61208-183-0. Detail - VESELÝ, V.; ŠVÉDA, M. L2 protocols in OMNeT++. In IP Networking 1 -- Theory and Practice. Žilina: Zilina University Publisher, 2012.
p. 37-40. ISBN: 978-80-554-0494-3. Detail
2011
- DROZD, M.; BARABAS, M.; GRÉGR, M.; CHMELAŘ, P. Buffer Overflow Attacks Data Acquisition. Proceedings of the 6th IEEE International Conference on IDAACS 2011. Volume 2. Praha: Institute of Electrical and Electronics Engineers, 2011.
p. 775-779. ISBN: 978-1-4577-1423-8. Detail - ŠVÉDA, M. Design Experience with Routing SW and Related Applications. Proceedings of The Tenth International Conference on Networks - ICN 2011. St. Maarten: International Academy, Research, and Industry Association, 2011.
p. 133-138. ISBN: 978-1-61208-002-4. Detail - ŠVÉDA, M.; RYŠAVÝ, O.; DE SILVA, G.; MATOUŠEK, P.; RÁB, J. Reachability Analysis in Dynamically Routed Networks. Proceedings of the IEEE ECBS 2011. Piscataway, NJ: IEEE Computer Society, 2011.
p. 197-205. ISBN: 978-0-7695-4379-6. Detail - ŠVÉDA, M.; RYŠAVÝ, O.; MATOUŠEK, P. Supporting Safe and Secure Networked System Design. Computer Aided Systems Theory (EUROCAST´11), Extended Abstracts. Las Palmas de Gran Canaria: The Universidad de Las Palmas de Gran Canaria, 2011.
p. 22-23. ISBN: 978-84-693-9560-8. Detail
2010
- KORNECKI, A.; GREGA, W.; HILBURN, T.; THIRIET, J.; ŠVÉDA, M.; RYŠAVÝ, O.; PILAT, A. Transatlantic Engineering Programs: An Experience in International Cooperation. In Safeeullah Soomro (Editor): Engineering the Computer Science and IT. 2010. Vienna: IN-TECH Education and Publishing, 2010.
p. 65-84. ISBN: 978-953-307-012-4. Detail - PIWKO, K.; CHMELAŘ, P.; HERNYCH, R.; KUBÍČEK, D. NAXD: Native XML Interface for a Relational Database. XML Prague Conference Proceedings. Prague: Charles University, 2010.
p. 307-316. ISBN: 978-80-7378-115-6. Detail - ŠVÉDA, M. Fault Management Driven Design with Safety and Security Requirements. Proceedings 17th IEEE International Conference and Workshops on Engineering of Computer-Based Systems ECBS 2010. Oxford: IEEE Computer Society, 2010.
p. 113-120. ISBN: 978-0-7695-4005-4. Detail - ŠVÉDA, M. NETWORK CONVERGENCY AND MODELING -- Design Experience with Routing SW for Intranets and Fieldbusses. Proceedings of the Fifth International Conference on Software and Data Technologies, ICSOFT 2010. Athens: Institute for Systems and Technologies of Information, Control and Communication, 2010.
p. 173-178. ISBN: 978-989-8425-22-5. Detail - ŠVÉDA, M.; RYŠAVÝ, O.; MATOUŠEK, P.; RÁB, J. An Approach for Automated Network-Wide Security Analysis. Proceedings of the Ninth International Conference on Networks ICN 2010. Les Menuires: IEEE Computer Society, 2010.
p. 294-299. ISBN: 978-0-7695-3979-9. Detail - ŠVÉDA, M.; RYŠAVÝ, O.; MATOUŠEK, P.; RÁB, J.; ČEJKA, R. SECURITY ANALYSIS OF TCP/IP NETWORKS -- An Approach to Automatic Analysis of Network Security Properties. Proceedings of the International Conference on Data Communication Networking ICETE-DCNET 2010. Athens: Institute for Systems and Technologies of Information, Control and Communication, 2010.
p. 5-11. ISBN: 978-989-8425-25-6. Detail - ŠVÉDA, M.; TRCHALÍK, R. Development of Interconnecting SW for Intranets and Fieldbuses. Programmable devices and systems, 2010, vol. 2010, no. 10,
p. 119-124. ISSN: 1474-6670. Detail
2009
- DROZD, M. Bezpečnost: 1:0 pro malware?. DSM Data Security Management, 2009, roč. 13, č. 4,
s. 16-19. ISSN: 1211-8737. Detail - ŠVÉDA, M. Fault Management for Secure Embedded Systems. International Conference on Systems Proceedings, ICONS 2009. New York, NY: IEEE Computer Society, 2009.
p. 23-28. ISBN: 978-0-7695-3551-7. Detail - ŠVÉDA, M. Safe and Secure Networked Embedded Applications. Proceedings of the 4th International Conference on Broadband Communication. Wroclaw: Institute of Electrical and Electronics Engineers, 2009.
p. 137-142. ISBN: 978-83-7493-405-3. Detail - ŠVÉDA, M.; KORNECKI, A.; HILBURN, T.; GREGA, W.; THIRIET, J.; RYŠAVÝ, O. Real-Time Software-Intensive Systems Engineering: An International Perspective. European Association for Education in Electrical and Information Engineering Council's Annual Conference 2009. Valencia: Politechnical University of Valencia, 2009.
p. 1-6. ISBN: 978-84-8363-428-8. Detail