(Advanced Cyber Defence Centre) is CIP project. The proposed ACDC pilot addresses the identification, measurement, and analysis of botnets as well as the prevention, detection, mitigation, recovery, and evaluation of their impact. It presents an end-to-end approach from detection to protection, manifested as five powerful services, operated by the member states. Service #1, the centralized clearing house, is our single point of contact for data storage and analysis. While offering a liberal input interface, the distribution of gained knowledge is done in a precisely defined data format, which is openly shared. Service #2, the support center, delivers structured information for stakeholders and affected end users, likewise. Here, disinfection tools can be downloaded and affected users, including small and medium enterprises, are supported in dealing with their incidents. Service #3 focuses on the detection and mitigation of infected websites, while the detection of network anomalies, including possible cloud- or mobile-based botnets, is subject to Service #4. Both services are operated in a decentralized and distributed manner in order to achieve a high degree of diversification. Obviously, all data acquired using Service #3 and #4 is sent to the centralized clearing house for further analysis. Service #5 aims on the integration of tools for identification and removal of malware (e.g., bots) from end user devices. The proposed pilot will enable ACDC to not only identify and shut down command and control servers but to eliminate the actual weapons of a botnet - the bots. Project partners are: Eco Verband Der Deutschen Internetwirtschaft Ev (Germany), Technikon (Austria), Leuven Security Excellence Consortium (Belgium), Katholieke Universiteit Leuven (Belgium), EAD Bulgarski Poshtibp (Bulgaria), Cognitive Security SRO (Czech Republic), Signal Spam Association (France), Montimage (France), Microsoft Emea (France), Cassidian Sas (France), Westfalische Hochschule Gelsenkirchen (Germany), G Data Software AG (Germany), Fraunhofer-Geselischaft (Germany), DFN-CERT Service (Germany), DE-CIX Management (Germany), Telecim Italia (Italy), Istituto Superiore Delle Communicazioni (Italy), Ingegneria Informatica (Italy), FCCN (Portugal), CARNet (Republic of Croatia), Xlab Razvij (Slovenia), Telefonica (Spain), ATOS (Spain), etc.
Start: 2013-02-01 -