Internet monitoring system to publish tools as open source

OSORAn Estonian government project to safeguard the country’s Internet infrastructure will publish some of the tools it is developing as open source, using the European Union Public Licence (EUPL).

The project will be monitoring network traffic in Estonia, aiming to prevent network problems.

The project was awarded this summer by the National Informatics Center (RIA) to the Finish IT security specialist Clarified Networks and the Estonian IT solutions provider and equipment manufacturer Cybernetica.

The two are assisted by the computer emergency response team (CERT), part of RIA. Banks, telecom operators, Internet operators and ministries will also contribute to the project, expects Jani Kenttälä, CTO at Clarified. “The providers of Estonia’s critical Internet infrastructure know each other pretty well.”

The project will be using many different open source tools. In its procurement, RIA explained the project required expertise with open source operating systems OpenBSD and Debian GNU/Linux. It also requested specific open source tools, for instance the intrusion detection application Snort and configuration manager Cfengine.

“We are using many great open source tools for this project”, says Kenttälä. “That is why we will give back to the open source community the tools that we develop for this project.”

One of the main goals is to create tools that can be used for similar monitoring projects, the CTO explains. Apart from developing such tools, the consortium plans to promote, to support and to further develop the end-results. “Using open source tools provides scalability for the user base. We hope to be able to get a sustainable community of developers involved.”

The project is already well under way, says Kenttälä. “Development of the first two open source components, ‘Snort4All’ and ‘Abuse helper’ started at the end of September. We hope to complete these to at the end of this year, so they should be availble early next year.”

Snort4All will provide Estonian organisations with tailored hardware and software to detections intrusions and other network events. ‘Abuse helper’ is meant to help CERT teams and Internet operators handle network abuses.

Then the security specialist will start on a third component ‘Virtual Situation Room’, which they aim to complete at the end of 2010. This system should provide notifications immediately of serious threats to the network services. It is to become part of the national crisis management system, but could also be used also for other networks, including telephone and mobile networks, electricity networks, and payments systems.

Article was originally published at the Open Source Observatory and Repository Europe.

Related Posts

How to install S3QL from source on Fedora 19 S3QL is an online file system for UNIX-like operating systems that provide features like compression, encryption, data de-duplication, immutable trees...
DA223 HQL: Acer’s all-in-one Android PC has a Snapdragon 600 inside The DA223 HQL is the newest Android all-in-one computer announced at the just-concluded 2014 edition of the International Consumer Electronics Show (C...
Knock: A Linux kernel patch for NAT-compatible, stealthy port knocking A Linux kernel patch that "implements a new NAT-compatible, TCP option for stealthy port knocking with a few new twists for improved security" has bee...
EFF Asks Illinois Appellate Court to Block Unmasking of Anonymous Online Critic The Electronic Frontier Foundation (EFF) and the Media Freedom and Information Access Practicum (MFIA) at Yale Law School filed a friend-of-the-court ...
Google to Gmail users: Forget about privacy. It’s so dead! Here's a report from The Guardian. Yep, it's that same UK online news site that's been making headlines for more than a month. The report cites...
CoreOS announces Distributed Trusted Computing for Tectonic Enterprise Today’s vulnerabilities - Heartbleed, Shellshock, Poodle - have a brand. When vulnerabilities have a brand and your favorite companies are making ...

We Recommend These Vendors and Free Offers

Launch an SSD VPS in Europe, USA, Asia & Australia on Vultr's KVM-based Cloud platform starting at $5:00/month (15 GB SSD, 768 MB of RAM).

Deploy an SSD Cloud server in 55 seconds on DigitalOcean. Built for developers and starting at $5:00/month (20 GB SSD, 512 MB of RAM).

Want to become an expert ethical hacker and penetration tester? Request your free video training course of Online Penetration Testing and Ethical Hacking

Whether you're new to Linux or are a Linux guru, you can learn a lot more about the Linux kernel by requesting your free ebook of Linux Kernel In A Nutshell.


One Comment

  1. To be precise, instead of monitoring the actual traffic, the deployed tools monitor network events and reports related to Internet abuse.

    See the open source site for one of the tools:

    http://code.google.com/p/abusehelper/

    The experiences of CERT-EE and CERT-FI have greatly helped in designing the new concepts of AbuseHelper.

Leave a Comment

Your email address will not be published. Required fields are marked *

*