MITIGATE - Multidimensional, IntegraTed, rIsk assessment framework and dynamic, collaborative risk manaGement tools for critical

Date: 
01/09/2015 to 28/02/2018

Introduction

The main goal of MITIGATE is to realize a radical shift in risk management methodologies for the maritime sector towards a collaborative evidence-driven Maritime Supply Chain Risk Assessment (g-MSRA) approach that alleviates the limitations of state-of-the-art risk management frameworks. To this end, the project will integrate, validate and commercially exploit an effective, collaborative, standards-based risk management (RM) system for port’s Critical Information Infrastructures (CIIs), which shall consider all threats arising from the supply chain, including threats associated with portCIIs interdependencies and associated cascading effects.

Despite the importance of CIIs and dynamic information and communication technology (ICT)-based maritime supply chains (SCs) for port operations, state-of-the-art RM methodologies for maritime environments pay limited attention to cyber-security and do not adequately address security processes for international SCs.

Motivated by these limitations, MITIGATE will introduce, integrate, validate and commercialize a novel RM system, which will empower stakeholders’ collaboration for the identification, assessment and mitigation of risks associated with cybersecurity assets and SC processes.
This collaborative system will boost transparency in risk handling, while enabling the generation of unique evidence about risk assessment and mitigation. At the heart of the RM system will be an open simulation environment enabling stakeholders to simulate risks and evaluate risk mitigation actions. This environment will allow users to model, design, execute and analyze attack-oriented simulations. Emphasis will be paid on the estimation of cascading effects in SCs, as well as on the prediction of future risks.

Who is the project designed for?

Maritime stakeholders such as ports, terminal operators, handling agents, forwarders, hauliers, shippers and shipping lines.

How is your project benefitting the end-user?

Supplying a service platform to calculate the risks within the IT infrastructure of the own company and companies within business processes such as supply chains. The platform entails seven main components that comprise the MITIGATE system namely

  • the Asset Modelling & Visualization,
  • the Supply Chain Service Modelling,
  • the Simulation & Game Theory,
  • the Collaborative Risk Assessment,
  • the Open Intelligence and Big-Data Analytics,
  • the Notification and Reporting,
  • the Administration and
  • the Access Control and Privacy Component.

Please briefly describe the results your project achieved so far

Development of a comprehensive methodology and, based on that, the above mentioned platform with TRL 7.

What are the next steps for your project?

Project runtime is finished since February 2018. Exploitation measures will continue in order to bring the MITIGATE services into the industries.

News

Europol - Internet Organised Crime Threat Assessment 2018

Europol has just released its fifth annual Internet Organised Crime Threat Assessment (IOCTA).

The report offers a unique law enforcement view of the emerging threats and key developments in the field of cybercrime over the last year and warns of 15 ways in which people can fall prey to cyber criminals.

Events

29/09/2018 to 05/10/2018
Cryptology And Network Security - 30th September/ 3rd October 2018 - Naples (Italy)

The International Conference on Cryptology And Network Security (CANS) is a recognized annual conference, focusing on all aspects of cryptology, and of data, network, and computer security. CANS 2018 will be held in Naples from the next 30th September until the 3rd October.

06/10/2018 to 11/10/2018
Security of Personal Data Processing Event - 8th October - Athens (Greece)

ENISA and Cyberwatching.eu co-organize in October 8, 2018 a workshop on security measures (article 32 GDPR) in Athens.