-
Home
-
European Projects
-
Advanced Cyber Defence Centre (ACDC)
Advanced Cyber Defence Centre
(ACDC)
Start date: Feb 1, 2013,
End date: Jul 31, 2015
PROJECT
FINISHED
In ACDC, we bring together partners from 14 European countries, including public administrations, private sector organizations and academia, in order to achieve a sustainable victory over a powerful cyber threat commonly known as botnet. We integrate the matured knowledge of our consortium into an integrated strategy ranging from adoption to governance, supported by a full service offer for controlling cyber security problems, particularly botnets.The proposed pilot addresses the identification, measurement, and analysis of botnets as well as the prevention, detection, mitigation, recovery, and evaluation of their impact. We present an end-to-end approach from detection to protection, manifested as five powerful services, operated by our member states.Service #1, the centralized clearing house, is our single point of contact for data storage and analysis. While offering a liberal input interface, the distribution of gained knowledge is done in a precisely defined data format, which is openly shared. Service #2, the support center, delivers structured information for stakeholders and affected end users, likewise. Here, disinfection tools can be downloaded and affected users, including small and medium enterprises, are supported in dealing with their incidents. Service #3 focuses on the detection and mitigation of infected websites, while the detection of network anomalies, including possible cloud- or mobile-based botnets, is subject to Service #4. Both services are operated in a decentralized and distributed manner in order to achieve a high degree of diversification. Obviously, all data acquired using Service #3 and #4 is sent to the centralized clearing house for further analysis. Service #5 aims on the integration of tools for identification and removal of malware (e.g., bots) from end user devices.The proposed pilot will enable ACDC to not only identify and shut down command and control servers but to eliminate the actual weapons of a botnet – the bots.