Tato pr\u00e1ce se zab\u00fdv\u00e1 novou metodou anal\u00fdzy s\u00ed\u0165ov\u00e9ho
\nprovozou za \u00fa\u010delem odhalov\u00e1n\u00ed bezpe\u010dnostn\u00edch hrozeb a
\n\u00fatok\u016f. V sou\u010dasn\u00e9 dob\u011b se hojn\u011b vyu\u017e\u00edv\u00e1 strojov\u00e9 u\u010den\u00ed,
\nkter\u00e9 v\u0161ak \u010dasto generuje p\u0159\u00edli\u0161 mnoho bezpe\u010dnostn\u00edch
\nud\u00e1lost\u00ed, jejich\u017e pravdivost je n\u00e1ro\u010dn\u00e1 ov\u011b\u0159it. Navrhovan\u00fd
\np\u0159\u00edstup vyu\u017e\u00edv\u00e1 tzv. slab\u00e9 indik\u00e1tory, kter\u00e9 pomoc\u00ed
\nspojov\u00e1n\u00ed n\u011bkolika indik\u00e1tor\u016f dosahuje vy\u0161\u0161\u00ed p\u0159esnosti, ale
\nhlavn\u011b vy\u0161\u0161\u00ed vysv\u011btlitelnosti jednotliv\u00fdch detekc\u00ed.
\nBezpe\u010dnostn\u00ed analytici tak maj\u00ed krom\u011b samotn\u00e9ho upozorn\u011bn\u00ed
\ndostupn\u00e9 i zd\u016fvodn\u011bn\u00ed o tom, pro\u010d k algoritmus ud\u00e1lost
\ndetekoval a co ho k tomu vedlo. To je hlavn\u00ed rozd\u00edl od
\nklasick\u00fdch metod strojov\u00e9ho u\u010den\u00ed, co\u017e v\u00fdrazn\u011b zvy\u0161uje
\nd\u016fv\u011bru v dan\u00fd detektor.<\/p>\n
Hlavn\u00edm p\u0159\u00ednosem pr\u00e1ce je softwarov\u00e1 knihovna s n\u00e1zvem Weak
\nIndication Framework dostupn\u00e1 komunit\u011b, kter\u00e1 obsahuje
\nnej\u010dast\u011bji pou\u017e\u00edvan\u00e9 metody pro anal\u00fdzu s\u00ed\u0165ov\u00e9ho provozu a
\ndatovou f\u00fazi. Tato knihovna c\u00edl\u00ed na urychlen\u00ed v\u00fdvoje nov\u00fdch
\ndetektor\u016f bezpe\u010dnostn\u00edch hrozeb a minimalizaci \u010dasu mezi
\nobjeven\u00edm nov\u00e9 bezpe\u010dnostn\u00ed hrozby a nasazen\u00edm nov\u00e9ho
\ndetektoru t\u00e9to hrozby. Tato knihovna je d\u00e1le pou\u017eita pro
\nimplementaci detektor\u016f Tor komunikace, cryptomalwaru,
\nskryt\u00fdch s\u00ed\u0165ov\u00fdch tunel\u016f a detekci malware. V\u0161echny tyto
\ndetektory byly d\u016fkladn\u011b testov\u00e1ny a byly nasazeny na
\nn\u00e1rodn\u00ed akademick\u00e9 a v\u00fdzkumn\u00e9 s\u00edti CESNET3 a v sou\u010dasn\u00e9
\ndob\u011b chr\u00e1n\u00ed v\u00edce ne\u017e p\u016fl milionu aktivn\u00edch u\u017eivatel\u016f t\u00e9to
\ns\u00edt\u011b.<\/p>\n","protected":false},"featured_media":23578,"template":"","meta":{"_acf_changed":false,"_links_to":"","_links_to_target":""},"university":[178,179],"thesis-year":[391,407],"class_list":["post-24171","thesis","type-thesis","status-publish","has-post-thumbnail","hentry","thesis-year-391","thesis-year-2024-sk"],"acf":{"autor":"Richard Pln\u00fd","portret":"","vedouci":"Ing. Karel Hynek, Ph.D."},"_links":{"self":[{"href":"https:\/\/www.itspy.cz\/sk\/wp-json\/wp\/v2\/thesis\/24171","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.itspy.cz\/sk\/wp-json\/wp\/v2\/thesis"}],"about":[{"href":"https:\/\/www.itspy.cz\/sk\/wp-json\/wp\/v2\/types\/thesis"}],"version-history":[{"count":0,"href":"https:\/\/www.itspy.cz\/sk\/wp-json\/wp\/v2\/thesis\/24171\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/www.itspy.cz\/sk\/wp-json\/wp\/v2\/media\/23578"}],"wp:attachment":[{"href":"https:\/\/www.itspy.cz\/sk\/wp-json\/wp\/v2\/media?parent=24171"}],"wp:term":[{"taxonomy":"university","embeddable":true,"href":"https:\/\/www.itspy.cz\/sk\/wp-json\/wp\/v2\/university?post=24171"},{"taxonomy":"thesis-year","embeddable":true,"href":"https:\/\/www.itspy.cz\/sk\/wp-json\/wp\/v2\/thesis-year?post=24171"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}