Roskomnadzor to Boost Protection of Russian Internet

Roskomnadzor Announces New Scanning System to Identify Vulnerabilities in Russian Information Systems

Roskomnadzor (RKN) has announced the creation of a new scanning system aimed at identifying vulnerabilities in Russian information resources. The system will be based at the Monitoring and Management Center for General Use (the SSSP) of the Main Radio Frequency Center (GRCHC).

The main objective of the system is to identify and eliminate vulnerabilities in Russian information systems, including websites, databases, and mail servers. It is designed for operational detection and elimination of any vulnerabilities in the systems. However, RKN is planning to limit the scanning of the Russian Internet segment foreign services.

The system was created following a decision made at the Scientific and Technical Council on Information Security of Russian Systems and Resources. The Council also determined the key areas of work for the current year.

RKN plans to create a system of verification of the country’s belonging of network addresses based on the CMU which will be used by owners of Russian information systems. The system aims to provide a trusted source of information that ensures the correct operation of Russian information resources and access to them.

RKN also pointed out the need to protect against DDOS attacks. It was noted that the number and capacity of attacks have increased 1.5 times in 2022, and the duration of these attacks has increased from an hour to 10 hours. In 2021, RKN turned to using technical means of the SSUP CMU to protect against DDOS attacks. The system has already successfully defended large attacks aimed at key Russian industry and departmental segments.

According to RKN, it is planned to create a Russian national protection system from DDOS attacks by the end of 2024. Also included in the plans is the organization of information about attacks and methods of protection between the largest Russian companies in the field of cybersecurity.

Sources:
https://www.gazeta.ru/tech/2022/03/07/14218175.shtml

/Reports, release notes, official announcements.