BTS Internships

Setting up a national quantum key distribution network

Sam KAFAÏ ( Promotion: BCYB24 )

Company: Restena

2, place de l’Université, L-4365 Esch-sur-Alzette

Contact: Stefan WINTER
Title: Chief Technology Officer
Email: stefan.winter@restena.lu
Phone: 42 44 091

Description:
Restena will bring into service a national network for securely sharing quantum-derived encryption key material (a QKD, Quantum Key Distribution, network). This work is part of two European-scale projects funded by the European Commission under the Connecting Europe Facility (CEF).
The network comprises key distribution over fiber-optic as well as free-space network segments.
Beyond the mere on-link derivation of key material using QKD hardware, the network includes Key Management Systems (KMS), in the form of specialised open-source software, and a Quantum Domain Controller (QDC) for the national coordination and interconnection of nodes.
All these components together enable the establishment of quantum-secure symmetric encryption keys between arbitrary endpoint of the network, enabling end-to-end encryption of traffic for arbitrary upper layers (MACsec, VPN, HTTPS, ...).

Tools:

Period: 1774828800 – 1781913600

Tutor: Marc LUDWIG

Installation and configuration of a traffic analyser to detect DDoS attacks

Denim LATIC ( Promotion: BCYB21 )

Company: Restena

2, place de l’Université, L-4365 Esch-sur-Alzette

Contact: Jo HOFFMANN
Email: jo.hoffmann@restena.lu
Phone: 42 44 091

Description:
Some network anomalies can only be detected by analysing the traffic passing through it.
Technologies like netflow and IPFIX sample traffic passing through network equipment in real time and send aggregate statistics to a central node. Besides storing the data, the central node also evaluates the data along different kinds of parameters and metrics.
A project within GEANT has developed such an evaluation tool (NeMo) with a focus on detecting DDoS attacks.
The aim of this project is to evaluates NeMo with regards to anomaly and DDoS attack detection. While the first stages of the project will be concerned with implementation and configuration of the tool, subsequent stages will dive into the use-case of anomaly detection, and integration of the tool into the incident response ecosystem at Restena.

Tools:
• Installation of solution in Restena LAB environment
• Configuration and integration with netflow/sflow sources
• DDoS attack generation and detection
• General network flow analysis capabilities and anomaly detection
• Integration into Restena's incident handling process
• Time permitting evaluation of extensibility and integration with other tools such as OTRS, Firewall on Demand, ELK...

Period: 1680480000 – 1687478400

Tutor: Marc LUDWIG