@PhDThesis{Barros:2010:UsTéAn,
author = "Barros, Eduardo Gomes de",
title = "Uso de t{\'e}cnicas de an{\'a}lise de s{\'e}ries temporais para
prever o comportamento do ru{\'{\i}}do de fundo na internet
brasileira usando dados do cons{\'o}rcio brasileiro de
honeypots",
school = "Instituto Nacional de Pesquisas Espaciais",
year = "2010",
address = "S{\~a}o Jos{\'e} dos Campos",
month = "2010-11-19",
keywords = "honeypots, cons{\'o}rcio brasileiro de honeypots (CBH),
ru{\'{\i}}do de fundo, predi{\c{c}}{\~a}o de eventos,
honeypots, brazilian honeypots consortium, ru{\'{\i}}do de
fundo, background radiation, early warning.",
abstract = "O tr{\'a}fego capturado pelos sensores do Cons{\'o}rcio
Brasileiro de Honeypots (CBH) revela a exist{\^e}ncia de um
tr{\'a}fego que existe na Internet independentemente do tipo de
m{\'a}quina sendo usada ou do tipo de servi{\c{c}}o sendo
prestado: o ru{\'{\i}}do de fundo todo tr{\'a}fego n{\~a}o
produtivo, seja ele malicioso ou n{\~a}o. As atividades
maliciosas que ocorrem na parcela brasileira da Internet
est{\~a}o embutidas neste tr{\'a}fego. Conhec{\^e}-lo,
caracteriz{\'a}-lo e descrev{\^e}-lo {\'e} um desafio que
auxiliar{\'a} na emiss{\~a}o de alertas precoces, paradigma de
seguran{\c{c}}a necess{\'a}rio para a defesa das infraestruturas
cr{\'{\i}}ticas de uma Na{\c{c}}{\~a}o que vem complementar o
atual, o reativo. A partir dos dados do Cons{\'o}rcio Brasileiro
de Honeypots criou-se uma metodologia para sanitiza{\c{c}}{\~a}o
dos mesmos que permitiu que servissem de base para
constru{\c{c}}{\~a}o de s{\'e}ries temporais. A partir destas
s{\'e}ries foi poss{\'{\i}}vel a caracteriza{\c{c}}{\~a}o e a
descri{\c{c}}{\~a}o deste tr{\'a}fego na parcela brasileira da
Internet. A modelagem matem{\'a}tica utilizada permitiu a
proje{\c{c}}{\~a}o de eventos futuros e a an{\'a}lise de quando
alertas precoces devem ser emitidos. ABSTRACT: The traffic
captured by the sensors of the Brazilian Honeypots Alliance (CBH)
reveals the existence of a traffic that exists on the Internet
regardless of the type of machine or the service being provided:
the background noise - all non-productive traffic, whether
malicious or not. The malicious activities occurring in the
Brazilian portion of the Internet are embedded in this traffic.
Know it, characterize it and describe it is a challenge that will
help the issue of early warnings, the security paradigm necessary
for the protection of Nation's critical infrastructures and which
complements the current, the reactive. From the Brazilian
Honeypots Alliance data a methodology was created for data
sanitization and allowing its use for constructing time series.
From these series the characterization and description of the
Brazilian Internet traffic was possible. The mathematical model
used allows the projection of future events and the analysis of
when early warnings should be issued.",
committee = "Dutra, Luciano Vieira (presidente) and Stephany, Stephan
(orientador) and Montes Filho, Antonio (orientador) and Guedes,
Ulisses Thadeu Vieira and Correa, Ricardo Varela and Camilli,
Alberto and Mello, Cl{\'a}udio Gomes de",
copyholder = "SID/SCD",
englishtitle = "Use of temporal series analysis over the brazilian honeypot
alliance data to predict the brazilian internet background
radiation behavior",
language = "pt",
pages = "174",
ibi = "8JMKD3MGP7W/38E36T5",
url = "http://urlib.net/ibi/8JMKD3MGP7W/38E36T5",
targetfile = "publicacao.pdf",
urlaccessdate = "15 jun. 2024"
}