Project

From CSRRT-LU

Table of contents

1 Projects handled by the CSRRT-LU 1.1 Honeylux 1.2 Sec Incident stat and Correlation (SiC) 1.3 OpenPGP public key infrastructure in Luxembourg 1.4 Mobile Security 1.5 Flowsec 1.6 Malware 1.7 Documentation 1.8 Presentations/Talks

Projects handled by the CSRRT-LU

As the Internet and networked systems become more widespread and advanced, there is a higher risk of accidents, attacks, and failures. One of the goals of CSRRT-LU is to try to find ways to improve technical approaches for identifying and preventing security flaws, for limiting the damage from attacks, and for ensuring that systems continue to provide essential services despite of compromises or failures. CSRRT-LU is supporting multiple research projects to improve the overall technical expertise in Computer/Network Security.

As the various research projects share information, we have a common working wiki for all the CSRRT-LU projects. This is useful for technical people who want to have more information about the ongoing projects and also, to participate in the projects. You can also propose your specific project.

Honeylux

A research project in Luxembourg to improve security by using the Honeynet technique. Honeynet is a method to keep an "attacker" on a specific framework in order to learn from his activities.
General presentation
You can find a general presentation of the honeylux project and the first results for the year 2002-2003.
This presentation has been given during the Spiral 2003 conference.

Link to the Honeylux project webpages

WorkshopUniLu

SecurityOverviewLuxembourg

Sec Incident stat and Correlation (SiC)

The main purpose of the project is to collect and correlate information computer security incidents. You can submit incidents to incident@csrrt.org.lu.

OpenPGP public key infrastructure in Luxembourg

OpenPGP Key Server Access to the public key server : http://pgp.csrrt.org.lu/ - PKS protocol is also available.

Mobile Security

The Mobile Security project regroups smaller projects dealing with mobile security.
One of these projects is the Wireless coverage project.
It deals mainly with the study of the statistics of Wireless Access Points in the Grand Duchy of Luxembourg.

Flowsec

This project focuses on network flow based security analysis.
A mailing list is available here: http://lists.csrrt.org.lu/mailman/listinfo/flowop.

• BGPASinLuxembourg
• BGPASCurrentGraphLux
• TheHop

Malware

This project focuses on the art of capturing Malware from networks and on analysing it under different viewpoints. The goal is to do trend, spreading and type analysis of the different Malwares we collect.

• Capturing and analyzing Malware
• Classify Malware - Actually dead
• Malware behavior
• Malware/fiw

Documentation

• Documentation about TCP/IP Security.

Presentations/Talks

• Cansecwest 06 Presentation about Zen and the art of collecting and analyzing Malware
• Rencontres CRP-HT 26/09 L'observation des différentes attaques IT au Grand-Duché de Luxembourg