NoAH: a European Network of Affined Honeypots

Objectif

In the last few years, we have been witnessing an increasing number of cyberattacks on the Internet. Viruses, worms, trojans, spyware and other types of malicious programs are discouraging the effective use of the Internet, and crippling the IT infrastruc ture. Recent studies have pointed out that attackers already posses the technology to take over a large fraction of the Internet within minutes. At these time scales, human reaction to an attack may be impossible. To combat such threats, we need an infra structure to assist in detecting and containing such attacks. The goal of NoAH is to produce a design study and perform the necessary technical work towards the development of an infrastructure for security monitoring based on honeypot technology. Honeyp ots are computer systems that do not provide regular production services. Instead, they are intentionally vulnerable and at the same time closely monitored systems that wait to be compromised by attackers. Once hit, honeypots can be used to analyze atta cks. In NoAH, honeypots will be used as early-warning systems capable of detecting attacks at the early stages of their infestation. By correlating data received by geographically distributed honeypots, NoAH will able to detect cyber-attacks before they have the chance to do any major damage. To contain the spread of attacks once detected, NoAH will explore the possibilities for generating automated attack signatures, or other containment-related information that may be used by security appliances. NoAH will provide a valuable distributed security analysis infrastructure: ISPs and NRNs will be able to reduce the security risks of their services; information security organizations will be able to better assess threats, risks and damage in a more timely fashion; security analysts and researchers will gain access to a wealth of data as well as a large experimental testbed, that will significantly boost the effectiveness of their activities.

Champ scientifique (EuroSciVoc)

CORDIS classe les projets avec EuroSciVoc, une taxonomie multilingue des domaines scientifiques, grâce à un processus semi-automatique basé sur des techniques TLN. Voir: Le vocabulaire scientifique européen.

• sciences naturelles informatique et science de l'information logiciel
• sciences naturelles informatique et science de l'information internet
• sciences naturelles informatique et science de l'information sécurité informatique logiciel malveillant

Programme(s)

Programmes de financement pluriannuels qui définissent les priorités de l’UE en matière de recherche et d’innovation.

• FP6-INFRASTRUCTURES - Research infrastructures: Specific programme for research, technological development and demonstration: "Structuring the European Research Area" under the Sixth Framework Programme 2002-2006

Thème(s)

Les appels à propositions sont divisés en thèmes. Un thème définit un sujet ou un domaine spécifique dans le cadre duquel les candidats peuvent soumettre des propositions. La description d’un thème comprend sa portée spécifique et l’impact attendu du projet financé.

• INFRASTR-4 - Design studies: feasibility studies and technical preparatory work for new infrastructures with European dimension

Appel à propositions

Procédure par laquelle les candidats sont invités à soumettre des propositions de projet en vue de bénéficier d’un financement de l’UE.

FP6-2003-INFRASTRUCTURES-4
Voir d’autres projets de cet appel

Régime de financement

Régime de financement (ou «type d’action») à l’intérieur d’un programme présentant des caractéristiques communes. Le régime de financement précise le champ d’application de ce qui est financé, le taux de remboursement, les critères d’évaluation spécifiques pour bénéficier du financement et les formes simplifiées de couverture des coûts, telles que les montants forfaitaires.

DS-SSA - Design studies implemented as Specific Support Actions

Coordinateur

Participants (7)