Home / News / Company news

Company News

21.11.2017

Netoscope marks fifth anniversary

The Technical Center of Internet and the Coordination Center for TLD .RU/.РФ held a meeting between companies participating in the Netoscope project to mark the project’s fifth anniversary. Over the five years, the project has compiled a list of over 3.1 million domain names suspected of malicious activity, embedding malicious codes into websites being the most common (90.6% violating domain names as of the end of October, 2017).

In his opening speech, Director of the Coordination Center Andrei Vorobyev noted that during its five years of operation, the Netoscope project became popular not only in Russia, but in foreign countries as well.
Pavel Khramtsov, head of the Netoscope project and head of the Applied Services Department of the Technical Center of Internet, spoke about ICANN’s domain zone security project that has a lot in common with Netoscope.
Khramtsov noted that Netoscope in fact covers the areas of information security that are not regulated by law, for example, countering spam on the internet.

“The DNS system will be increasingly infected year by year and we can only counter it with the close cooperation of the project’s participants,” he said.

Alexander Venedyukhin, leading analyst at the Technical Center of Internet, spoke about the new research that concerns various modifications of the TLS protocol used for ensuring secure connection. The findings show that the number of nodes using the Diffie-Hellman key exchange algorithm on elliptic curves is increasing in the .RU, .РФ and SU domain zones. The use of elliptic-curve cryptography, which is believed to provide better security, results in stronger security in Runet.

He also expanded on research on X.509 extensions of TLS certificates which was conducted by Technical Center of Internet experts for Netoscope in the second and third quarters of 2017. The results of this research show that the distribution of X.509 extensions on TLS certificates and Runet nodes corresponds to the world practice.

Alexander Vedenyukhin also mentioned that in the future the experts are planning to explore how DNS operation affects the security of the addressing system within domain zones.

Five years ago, at the end of October 2012, the Coordination Center and the Technical Center of Internet created a research platform to aggregate information on malware. A year after that, the new information analytical resource called Netoscope was developed. The resource compiles the latest data on cyber threats on the internet and the updates on combating malicious websites. The data comes from the companies participating in the platform’s operation that submit their entries to the project’s database. Today, the list of companies participating in the project includes BIZon, Group-IB, the Coordination Center, Kaspersky Lab, Mail.ru, the Federal Supervision Service for Communications, Information Technology and Mass Media, Rostelecom, RU-CERT, the Technical Center of Internet, and Yandex.


Back to the list