EIC

Date: 
01/01/2015 to 31/12/2020

Challenges

The protection of information systems and the data they transmit (Smart City, SmartGrids, Connected and Autonomous Vehicles, Connected Health, Internet of Things, BigData, Cloud, etc.) requires complex choices to be made between ease of use, the cost of security, safety of operation, the respect of constantly evolving digital rights and understanding and forecasting the market and its players. The development of the cybersecurity market, one of the plans selected by the New Industrial France Committee (NFI), needs progress to be made in systems of systems engineering.

The EIC project therefore aims to create an experimental and technical cybersecurity platform called CHESS (Cybersecurity Hardening Environment for Systems of Systems) which will allow assessments to be made of the combination of cybersecurity technologies through innovative use cases in the field of SmartGrids, the Factory of the Future, Connected and Autonomous Transport and the new services of the Internet of Things.

The human, political and economic elements cannot be dissociated from the technologies designed to protect these new interconnected information systems. The EIC project also conducts concerted and coherent research in the economic and legal fields. This involves, for example, anticipating the ergonomics that will be accepted in the security functions of the new smart systems.

Objectives

The project aims to:

  • Ensure awareness and anticipate the threat by providing the platform with coordinated tools and automated analysis capabilities;
  • Assess the robustness of the protective measures implemented in realistic use cases;
  • Meet the requirements of overseeing attacks through an integrated operational management system which will offer innovative monitoring capabilities;
  • Understand and model the cybersecurity risk;
  • Put forward legal and regulatory cybersecurity strategies and solutions.

A new typology of threats will be studied using a Systems of Systems approach:

  • Resilient architecture;
  • Understanding of emerging threats;
  • Protection of sensitive and/or personal data.

New concepts and methods will be developed for the operational management of cybersecurity:

  • Integrated processing for the SOCs (Security Operation Center) of the future;
  • The redesign of security monitoring in the SOCs;
  • Actions to take before, during and after a cyber-attack;
  • Assistance with decision-making through advances in data visualisation.

Tools will be developed and evaluated:

  • Intra and extra SOC interoperability;
  • Digital autopsies and assistance with understanding attacks;
  • Alerts and assistance for automating countermeasures;
  • Analysis of weak signals and machine learning;
  • Capture, mass analytical processing and usable reporting of the security data.

New avenues will be explored:

  • Formally proven security for insulating critical embedded functions;
  • Homomorphic cryptography for sharing security analyses without disclosure;
  • Optimising cyber-protection aided by modelling and game theory.

Innovative modelling work on the economics of cyber-security will be carried out according to two complementary focus areas:

  • The costs of protection given the costs of cyber-attacks;
  • Calculations of the amounts of insurance covering the residual risks

The legal and regulatory work will focus on essential operators in six complementary fields:

  • The concept of territory in cyberspace;
  • Damage in cyberspace and deriving from cyberspace;
  • Actors and responsibilities in cyberspace;
  • The role of the State;
  • The role of Europe;
  • Levers of action.

Doctoral thesis supported by the project

Targeted markets

SMEs and integrators: cyber-security solutions and integrated packages; innovative security products and software

Large users / Essential operators: evaluation of choice of architecture and security solutions; new-generation operational security centres; new services linked to cyber-security (insurance, etc.)

Week: 
Friday, 3 August, 2018

News

Pilots for the European Cybersecurity Competence Networks: how can your SME benefit? - Cyberwatching.eu 6th Webinar -

The four pilot projects involved in the development of the European Cybersecurity Competence Network will present their plans and upcoming tools and services for SMEs in the Cyberwatching.eu webinar on the 2nd of April, 10:00 AM CEST

REGISTER NOW!

 

Future Events

Cyber Insurance and its Contribution to Cyber Risk Mitigation - Leiden March 25-29
25/03/2019 to 29/03/2019
Image:

The rise in both the scale and severity of recent cyberattacks demands new thinking about cybersecurity risk and the mitigation and transfer of that risk. Cyber insurance is one potential way to manage risk by transferring damage liability, but the cyber insurance market is immature and the understanding and actuarial knowledge of cyber-risk is currently underdeveloped.

e-SIDES workshop 2019
02/04/2019
Image:

e-SIDES workshop: Towards Value-Centric Big Data: Connect People, Processes and Technology

BRUSSELS

2 April 2019

10am to 4pm

 

e-SIDES is a research project funded by European Commission H2020 Programme that deals with the ethical, legal, social and economic implications of privacy-preserving technologies in different big data context.