Project information
Research of Tools for Cyber Situational Awareness and Decision Support of CSIRT Teams in Protection of Critical Infrastructure (CRUSOE)

Project Identification

VI20172020070

Project Period

1/2017 - 12/2020

Investor / Pogramme / Project type

Ministry of the Interior of the CR

Security Research for the Needs of the State Program 2015-2020

MU Faculty or unit

Institute of Computer Science

Keywords

situational awareness; OODA; fingerprinting; decision support; CSIRT; critical information infrastructure

The aim of this project is research and development of tools for situational awareness and decision support of security teams in network protection, especially those containing critical information infrastructure. The tools will help security teams achieve situational awareness. The situation overview will account for ongoing security incidents, occurrence of vulnerabilities in network, and requirements on availability, integrity, and confidentiality. The tools will support decision making process of security teams by suggesting the optimal strategy for attack mitigation.

Publications

Total number of publications: 17

2018

CRUSOE: Data Model for Cyber Situation Awareness

KOMÁRKOVÁ Jana HUSÁK Martin LAŠTOVIČKA Martin TOVARŇÁK Daniel

Article in Proceedings

Proceedings of the 13th International Conference on Availability, Reliability and Security, year: 2018
Machine Learning Fingerprinting Methods in Cyber Security Domain: Which one to Use?

LAŠTOVIČKA Martin DUFKA Antonín KOMÁRKOVÁ Jana

Article in Proceedings

Proceedings of the 14th International Wireless Communications and Mobile Computing Conference, year: 2018
Passive OS Fingerprinting Methods in the Jungle of Wireless Networks

LAŠTOVIČKA Martin JIRSÍK Tomáš ČELEDA Pavel ŠPAČEK Stanislav FILAKOVSKÝ Daniel

Article in Proceedings

NOMS 2018 - 2018 IEEE/IFIP Network Operations and Management Symposium, year: 2018
Passive OS Fingerprinting Prototype Demonstration

LAŠTOVIČKA Martin FILAKOVSKÝ Daniel

Article in Proceedings

NOMS 2018 - 2018 IEEE/IFIP Network Operations and Management Symposium, year: 2018
Threat Detection Through Correlation of Network Flows and Logs

ŠPAČEK Stanislav ČELEDA Pavel

Article in Proceedings

Proceedings of the 12th International Conference on Autonomous Infrastructure, Management and Security (AIMS 2018), year: 2018

2017

Network Defence Strategy Evaluation: Simulation vs. Live Network

MEDKOVÁ Jana HUSÁK Martin DRAŠAR Martin

Article in Proceedings

2017 IFIP/IEEE Symposium on Integrated Network and Service Management (IM), year: 2017
Situational Awareness: Detecting Critical Dependencies and Devices in a Network

LAŠTOVIČKA Martin ČELEDA Pavel

Article in Proceedings

AIMS 2017 - 11th IFIP WG 6.6 International Conference on Autonomous Infrastructure, Management, and Security, year: 2017

Project informationResearch of Tools for Cyber Situational Awareness and Decision Support of CSIRT Teams in Protection of Critical Infrastructure (CRUSOE)

Publications

2018

2017

Project information
Research of Tools for Cyber Situational Awareness and Decision Support of CSIRT Teams in Protection of Critical Infrastructure (CRUSOE)