PROTECTIVE - Proactive Risk Management through Improved Cyber Situational Awareness

Date: 
01/09/2016 to 31/08/2019

Introduction

PROTECTIVE is a system for proactive risk management through improved situational awareness. The system is intended for National Research Education Network (NREN) Computer Security Incident Response Teams (CSIRTs) initially to understand, correlate, prioritize and share cyber threat intelligence for enhanced decision-making capabilities.

We aim to provide NRENs with improved security alert management capabilities, through uses of meta alerts, alerts that summarise a plethora of threats and incidents in order to understand the bigger picture of the threat landscape, provide better context awareness and enhance existing cyber threat intelligence sharing capabilities through automation while remaining General Data Protection Regulation (GDPR) compliant.

Who is the project designed for?

- Public Computer Security Incident Response Teams (CSIRTs), initially targeting NRENs.
- Managed Security Service Providers (MSSPs).

The end-users are security operation centre operators and analysts that make decisions based on cyber threat intelligence and alerts generated internally.

How is your project benefitting the end-user?

Enhancing cyber threat intelligence sharing through:

  • Applying Correlation and Prioritization methods w.r.t. your own constituency.
  • Computational Trust, being able to score confidence about the data received.
  • Automation, by moving away from solely relying on email ticket systems to share cyber threat intelligence.
  • GDPR compliance through development of run-time monitoring.
  • MSSPs will be able to benefit CTI from NRENs in order to protect SMEs from the latest observed threats.

Please briefly describe the results your project achieved so far

We have created an early instance of the tool running, and are currently developing and enhancing its performance and usability.

What are the next steps for your project?

We are running two pilots to test the tool in live NREN environments in which we collect performance and usability data.

News

Project of the Week - HERMENEUT

Cyberwatching.eu Project of the Week: HERMENEUT

Enterprises Intangible Risk Management via Economic Models based on Simulation of Modern Cyber Attacks

A Dynamic Solution for Intangible Assets

 

Project Hermeneut is a Horizon 2020 research and innovation project focusing on the economic aspects of cybersecurity, specially regarding intangible assets. It started in May 2017 and with a duration of 24 months it’s now approaching its end.

Future Events

ICDS 2019, The Thirteenth International Conference on Digital Society and eGovernments
21/02/2019 to 28/02/2019
Image:

From February 24th to the 28th, 2097, the ICDS 2019, The Thirteenth International Conference on Digital Society and eGovernments will be host in Athens, Greece.

The event will focus on state-of-the-art public services, e-government services in the context of digital society, Internet and web services, digital intelligence, networking and telecommunications, e-commerce, e-business and other areas.

Global Cyber Security Summit
27/02/2019
Image:

Global Cyber Security Summit

Developing a Robust Cyber Defense Strategy

Please Note: This program is under Chatham House Rule