The NIX.CZ National Interconnection Node will Test DDoS Protection Developed by CESNET

Prague, 11 March 2019 – CESNET's solution for protecting against DDoS attacks, called DDoS Protector, will be deployed experimentally in the NIX.CZ interconnection node as part of the FENIX security project. Project members will be able to verify that their networks are protected, as is the data flowing through the NIX.CZ node. CESNET Association developers will then gain experience from deploying DDoS Protector in a world-class interconnection environment.

DDoS Protector is a solution that CESNET has primarily developed to protect its network. It utilises its own HW accelerated network cards with FPGA arrays, in which a number of algorithms are implemented to mitigate DDoS attacks. After several years of successful operation in the CESNET2 network, DDoS Protector's deployment in an interconnection node environment represents a new challenge and a chance to prove new cyberdefence capabilities. The current installed capacity in NIX.CZ allows the mitigation of DDoS attacks with intensities of up to 100 Gbps. In the case of larger attacks, the capacity can be linearly increased by installing additional devices.

From the operational point of view, the entire course of DDoS attack mitigation by DDoS Protector is fully within the competence of the connected member. NIX.CZ affects neither what operations are processed by DDoS Protector nor the mitigation method in any way. Therefore, the DDoS Protector represents another tool that NIX.CZ members can use to protect their networks if needed.

'By deploying DDoS Protector, NIX.CZ will offer advanced mitigation techniques to the connected networks. Thanks to this technology, networks will be able to better interact with their operations and more easily apply mitigation guidelines. We are delighted that the CESNET Association is dedicated to this project and will further develop it. We believe that this cooperation will build on our previous joint projects in the security field and elsewhere,' said Petr Jiran of the NIX.CZ Association.

The CESNET Association was founded by various Czech universities and the Czech Academy of Sciences in 1996. It has built and developed the national CESNET e-infrastructure, which is designed for science, research, and education. The CESNET e-infrastructure includes a computer network, computing grids, data repositories, and an environment for collaboration, and it offers a wide range of services to universities, scientific research facilities, and other institutions. The Association also does its own research and development of information and communications technology and represents the Czech Republic in major international projects, particularly those related to building the pan-European GÉANT network. CESNET places great emphasis on the security of network operations, services, and user data.

About NIX.CZ Association

NIX.CZ, z.s.p.o. (Professional Association of Legal Entities) is a company that associates Czech with foreign internet service providers in order to interconnect their networks. Currently, the Association is the largest neutral IXP (Internet Exchange Point) provider in the Czech Republic and ranks among the top 10 IXPs in Europe. Comprehensive planning, sophisticated technical solutions, and 24/7/365 technical support ensure problem-free operation of the node. The Association has been supporting peering via the IPv6 protocol since 2003.

About the FENIX Security Project

The FENIX project arose from the NIX.CZ Czech peer node in 2013 as a response to intense DoS attacks faced by major Czech media outlets, banks, and operators in March 2012. The purpose of the project is to maintain the availability of internet services in these sectors in the case of DoS attacks.

The FENIX project is managed by its members, who are independent of the NIX.CZ Association and have complete autonomy in their decision-making. The project is designed for companies that provide connectivity to major services and that need to secure their operations even in the most critical situations.

Last change: 12.3.2019