This project was co-financed with state support of the CR Technological Agency as part of Programu na podporu aplikovaného výzkumu ZÉTA
www.tacr.cz
Research useful for society.

Project detail

Advanced behavioural models of application layer for effective analysis of traffic in business networks

Duration: 01.01.2018 — 30.06.2019

Funding resources

Technologická agentura ČR - Program na podporu aplikovaného výzkumu ZÉTA

- whole funder (2017-10-11 - 2019-06-30)

On the project

Description in English
The Project focuses on the intelligent analysis of enterprise network traffic of the most commonly used Hypertext Transfer and Server Message Block protocols. In the first year, the mentioned protocol and their behaviour will be analysed. Further, these methods will be used to create a sufficient data generator, which will simulate real traffic of large enterprise network including the possible attacks or unusual behaviour. The main intention is to use this generator and acquired knowledge for creating new advanced analytical methods, which will operate over the metadata of application protocols. These methods will use modern methods of behavioural analysis, traffic classification, detection and machine learning. The finalisation of these methods is planned on the end of the project.

Key words in English
Behavioural analysis, Corporate networks, Application layer, Application protocol, HTTP, SMB, Network threats, Machine learning, Detection of anomalies, Ransomware, Machine attacks, Machine behaviour, Network traffic classification, Data generation.

Mark

TJ01000381

Default language

Czech

People responsible

Mišurec Jiří, prof. Ing., CSc. - fellow researcher
Mlýnek Petr, doc. Ing., Ph.D. - principal person responsible

Units

Department of Telecommunications
- (2017-04-28 - not assigned)

Results

FUJDIAK, R.; UHER, V.; MLÝNEK, P.; BLAŽEK, P.; SLÁČIK, J.; MIŠUREC, J.; VOLKOVA, M; CHMELAŘ, P.; SEDLÁČEK, V. IP traffic generator using container virtualization technology. In 10th International Congress on Ultra Modern Telecommunications and Control Systems and Workshops (ICUMT). 2018. p. 1-6. ISBN: 978-1-5386-9361-2.
Detail

FUJDIAK, R.; MLÝNEK, P.; MRNUSTIK, P.; BARABAS, M.; BLAŽEK, P.; BORCIK, F.; MIŠUREC, J. Managing the Secure Software Development. In 2019 10th IFIP International Conference on New Technologies, Mobility and Security (NTMS). 2019. p. 1-4. ISBN: 978-1-7281-1542-9.
Detail

UHER, V.; FUJDIAK, R.; MLÝNEK, P.; BLAŽEK, P.; SLÁČIK, J.; MIŠUREC, J.; MILSHYNA, I.; DUŠIČKOVÁ, K.; SOBOTKA, L.; MOUDRÁ, L.; MERTA, M.: V-TJ01000381-1; Generátor provozu pro aplikační síťové protokoly. SE5-118. URL: http://www.utko.feec.vutbr.cz/~fujdiak/L7Gen/cz.html. (software)
Detail

Responsibility: Mlýnek Petr, doc. Ing., Ph.D.