Thesis Details

Detekce těžení kryptoměn pomocí analýzy dat o IP tocích

Master's Thesis Student: Šabík Erik Academic Year: 2016/2017 Supervisor: Žádník Martin, Ing., Ph.D.
English title
Detection of Cryptocurrency Miners Based on IP Flow Analysis
Language
Czech
Abstract

This master's thesis describes the general information about cryptocurrencies, what principles are used in the process of creation of new coins and why mining cryptocurrencies can be malicious. Further, it discusses what is an IP flow, and how to monitor networks by monitoring network traffic using IP flows. It describes the Nemea framework that is used to build comprehensive system for detecting malicious traffic. It explains how the network data with communications of the cryptocurrencies mining process were obtained and then provides an analysis of this data. Based on this analysis a proposal is created for methods capable of detecting mining cryptocurrencies by using IP flows records. Finally, proposed detection method was evaluated on various networks and the results are further described.

Keywords

Nemea, IDS, NetFlow, IPFIX, Cryptocurrency

Department
Department of Computer Systems FIT BUT
Degree Programme
Information Technology, Field of Study Information Technology Security
Files
Status
defended, grade A
Date
21 June 2017
Reviewer
Krobot Pavel, Ing.
Committee
Hanáček Petr, doc. Dr. Ing. (DITS FIT BUT), předseda
Bartík Vladimír, Ing., Ph.D. (DIFS FIT BUT), člen
Křivka Zbyněk, Ing., Ph.D. (DIFS FIT BUT), člen
Švéda Miroslav, prof. Ing., CSc. (DIFS FIT BUT), člen
Veselý Vladimír, Ing., Ph.D. (DIFS FIT BUT), člen
Zeman Václav, doc. Ing., Ph.D. (UTKO FEEC BUT), člen
Citation
ŠABÍK, Erik. Detekce těžení kryptoměn pomocí analýzy dat o IP tocích. Brno, 2017. Master's Thesis. Brno University of Technology, Faculty of Information Technology. 2017-06-21. Supervised by Žádník Martin. Available from: https://www.fit.vut.cz/study/thesis/19931/
BibTeX 
@mastersthesis{FITMT19931,
    author = "Erik \v{S}ab\'{i}k",
    type = "Master's thesis",
    title = "Detekce t\v{e}\v{z}en\'{i} kryptom\v{e}n pomoc\'{i} anal\'{y}zy dat o IP toc\'{i}ch",
    school = "Brno University of Technology, Faculty of Information Technology",
    year = 2017,
    location = "Brno, CZ",
    language = "czech",
    url = "https://www.fit.vut.cz/study/thesis/19931/"
}

Theses

Back to top