The Energy cluster is focused on cybersecurity applied to the electrical power and energy systems (EPES). EPES, is of key importance to the economy, as all other domains rely on the availability of electricity. Being a sector in deep transformation with digitization, the IoT and the new role of consumers, it is necessary to ensure the proper functioning and resilience of existing infrastructures that can be considered essential, taking into account the installed equipment and legacy systems and analyzing how to minimize associated risks. At the same time, the new facilities and equipment that are developed and installed must be done under cybersecurity and privacy principles from the design and throughout the entire supply chain, as well as its life cycle. In this sense, it is essential to define and follow clear standards and a certification framework that provides security to users, manufacturers and operators. Cybersecurity and its challenges are evolving at a rapid pace, which is why the European Commission has taken a series of measures to tackle it, such as the establishment of a comprehensive legislative framework that builds on:
The energy sector presents certain particularities that require particular attention:
SDN-microSENSE aims at providing and demonstrating a secure, resilient to cyber-attacks, privacy-enabled, and protected against data breaches solution for decentralised EPES. All designed, developed, and tested technologies should consider the latest related research findings and maintain high compliance with current industrial standards (e.g., IEC standards). SDN-microSENSE project intends to provide a set of secure, privacy-enabled and resilient to cyberattacks tools to ensure the normal operation of EPES as well as the integrity and the confidentiality of communications.
EnergyShield will develop an integrated toolkit that combines the latest technologies for vulnerability assessment, monitoring and protection, as well as learning and sharing tailored to meet the needs of EPES operators. Objectives of the project will be:
The power grid is exposed to security threats inherited from the ICT sector, while privacy issues and new vulnerabilities, related to the specific characteristics of the SG infrastructure, will emerge. The project will develop a security platform tailored to the SG, that
The platform will combine, for the very first time, technologies like Blockchain, Distributed Hash Tables, Trusted Execution Environments, and OpenID Connect.
Driven by the lack of appropriate products in the market, DEFeND will deliver a platform which empowers organisations in different sectors to assess the compliance status, plan the achievement of the GDPR compliance and increase their competences in different aspects of GDPR. DEFeND exploitation strategy is based on commercialisation of project results at three levels:
DEFeND platform enables building and analysing models following a Privacy-by-Design approach spanning over two levels, the Planning Level and the Operational Level, and across three management areas:
1. SDN-microSENSE project will contribute towards
2. EnergyShield project will:
3. SealedGrid project will contribute:
4. DEFeND projects will impact EPES organizations and individual EPES users by:
Wojciech Wideł, Preetam Mukherjee, and Mathias Ekstedt from our partner KTH published in IEEE Access about their work in the SOCCRATES project.
In order to ensure that the SOCCRATES platform is fit for purpose, the project will carry out three pilots to validate the platform in realistic environments. This webinar will show results and experiences from the second pilot, in which the complete SOCCRATES platform was validated in realistic (on-site) environments at Vattenfall, mnemonic and Shadowserver.
Martin Eian, Researcher, Mnemonic
Piotr Kijewski, CEO Shadowserver
Maciej Kosz, IT Security Officer, Vattenfall
SOCCRATES provides a deep dive session on the SOCCRATES platform at the ONE Conference 2022.
Within the H2020 EU project SOCCRATES a security decision support platform has been developed for Security Operation Centres (SOCs) and Computer Security Incident Response Teams (CSIRTs). This, so called ‘SOCCRATES Platform’ is targeted at organisation’s inhouse SOC and at Managed Security Service Providers (MSSP) that provide SOC services.