Periodic Reporting for period 2 - SAURON (Scalable multidimensionAl sitUation awaReness sOlution for protectiNg european ports)
Okres sprawozdawczy: 2019-01-01 do 2020-09-30
SAURON proposes as main objective to ensure an adequate level of both physical and cyber protection for the EU ports and limiting, as far as possible, the detrimental effects for the society and citizens of a combined attack (physical & cyber) to an EU port.
Nowadays coordinated and increasingly complex terrorist attacks are shocking the world. Due to the progressive reliance of the industrial sector and many CI, in particular EU ports on ICT systems, the impact of a coordinated physical attack, a deliberate disruption of critical automation (cyber) systems or even a combined scenario including both kind of attacks, could have disastrous consequences for the European Member States’ regions and social wellbeing in general.
Taking into account this fact and this real threat on EU ports as one of the main CI in Europe, the SAURON project proposes an holistic situation awareness concept as an integrated, scalable and yet installation-specific solution for protecting EU ports and its surroundings.
Sauron is funded by the Horizon 2020 Programme of the European Commission, in the topic of Critical Infrastructure Protection, contract 740477.
Nowadays coordinated and increasingly complex terrorist attacks are shocking the world. Due to the progressive reliance of the industrial sector and many CI, in particular EU ports on ICT systems, the impact of a coordinated physical attack, a deliberate disruption of critical automation (cyber) systems or even a combined scenario including both kind of attacks, could have disastrous consequences for the European Member States’ regions and social wellbeing in general.
Taking into account this fact and this real threat on EU ports as one of the main CI in Europe, the SAURON project proposes an holistic situation awareness concept as an integrated, scalable and yet installation-specific solution for protecting EU ports and its surroundings.
Sauron is funded by the Horizon 2020 Programme of the European Commission, in the topic of Critical Infrastructure Protection, contract 740477.
During the first period of the project, from May 2017 to December 2018, the consortium worked in several tasks to achieve the goals proposed and included in the Grant Agreement.
In the first phase of the project, we completed the state of the art on physical and cyber security tools currently available in the market. Furthermore we gather a list of requirements from questionnaires and face-to-face interviews with relevant stakeholders. We also defined the system architecture and the pilots where it will be tested. The las task in this phase, was a complete analysis of ethical and legal requirements that may affect the project.
The second phase of the project was the development of the different components in the Sauron architecture. During the first period was completed the development of the PSA and the CSA and we started the integration in the two defined pilots. It’s ongoing the development of the other two components, the HAS and EPWS.
Moreover, we consortium worked in protecting key technical advances and resulting IP produced by the project partners and prepare the commercialization of the project results by developing and implementing detailed business plans to take the outputs of the project to market.
Main results in the period:
• A list of tools and systems that will be used to build the SAURON system. These tools are presented in deliverable D3.1
• Existing legal and ethical frameworks relevant to the research activities of the project (presented in deliverable D3.2)
• A complete list of requirements sorted by priority. It has been reported in full in the classified deliverable D3.3 submitted in month 6
• The SAURON terrorist-attack scenarios that will be utilized at a later stage (WP7) to validate the SAURON project results. The scenarios have been described in deliverable D3.3
• The high level architecture of the SAURON system described in deliverable D3.4
• A roadmap (presented in deliverable D3.5) of the application of the identified legal rules in the context of the SAURON solution
• Visualization techniques oriented to Cyber Situation Awareness
• External awareness of possible port authority targets is enhanced through the use of the External Intelligence Gathering module
• Enhancement of real-time seaport cyber-incident detection based on event correlation, contextualization of the related alerts, automation with the knowledge base of incidents, providing “required-action” guidance.
• Scalable platform in terms of source type and volume acquisition as well as the orientation to small and big IT Security teams
• The PSA system development which includes (Sensors integration, PSA HMI, Communication modules, AIS module for maritime data visualization, Valencia council cameras integration)
• The data model that is the core of the PSA system
• Integration with smart city platform (PSA alarms export to EPWS)
• The Video Processing System, that, from raw data provided by the sensors, elaborates knowledge in the form of alarms and events (face recognitions, object tracking’s, etc.) in the context of the PSA procedures (for instance somebody is detected in a particular area where he/she is not allowed to be)
• Integration with HSA. PSA produces events and alarms that are sent to HSA for further correlation and consequence analysis
• A distributed platform that allows for as many as desired PSA nodes (in the pilots port authority HQ PSA and port police units portable PSA) sharing information in real time
• A scalable platform that can agglutinate and gather information from different heterogeneous sensors, in a scalable number, coupled with a data model that produces physical situational awareness for port operators.
• Joint data model including cyber and physical assets
• The integration with information public transport system of the city of Valencia.
• The integration with Valencia city App to push notifications
• An extensive list of papers and industrial conference presentations.
• Communication elements: website, logo, twitter account, newsletter, brochure, poster, and video.
• A template has been used to capture the expected foreground IP from all partners, together with any required background IP, in order to track developments and plans for IP protection. Individual partner exploitation plans have been updated based on plans in the DoA, taking account of recent developments.
• Market data, trends and drivers of the Port Security sector have been analysed in order to inform the development of the exploitation strategy.
• A customer engagement plan including key dissemination events and stakeholders to be approached has been produced (see D9.1).
• An overall exploitation strategy has been developed and agreed, and an initial system exploitation plan and a refined and extended business plan has been produced.
In the first phase of the project, we completed the state of the art on physical and cyber security tools currently available in the market. Furthermore we gather a list of requirements from questionnaires and face-to-face interviews with relevant stakeholders. We also defined the system architecture and the pilots where it will be tested. The las task in this phase, was a complete analysis of ethical and legal requirements that may affect the project.
The second phase of the project was the development of the different components in the Sauron architecture. During the first period was completed the development of the PSA and the CSA and we started the integration in the two defined pilots. It’s ongoing the development of the other two components, the HAS and EPWS.
Moreover, we consortium worked in protecting key technical advances and resulting IP produced by the project partners and prepare the commercialization of the project results by developing and implementing detailed business plans to take the outputs of the project to market.
Main results in the period:
• A list of tools and systems that will be used to build the SAURON system. These tools are presented in deliverable D3.1
• Existing legal and ethical frameworks relevant to the research activities of the project (presented in deliverable D3.2)
• A complete list of requirements sorted by priority. It has been reported in full in the classified deliverable D3.3 submitted in month 6
• The SAURON terrorist-attack scenarios that will be utilized at a later stage (WP7) to validate the SAURON project results. The scenarios have been described in deliverable D3.3
• The high level architecture of the SAURON system described in deliverable D3.4
• A roadmap (presented in deliverable D3.5) of the application of the identified legal rules in the context of the SAURON solution
• Visualization techniques oriented to Cyber Situation Awareness
• External awareness of possible port authority targets is enhanced through the use of the External Intelligence Gathering module
• Enhancement of real-time seaport cyber-incident detection based on event correlation, contextualization of the related alerts, automation with the knowledge base of incidents, providing “required-action” guidance.
• Scalable platform in terms of source type and volume acquisition as well as the orientation to small and big IT Security teams
• The PSA system development which includes (Sensors integration, PSA HMI, Communication modules, AIS module for maritime data visualization, Valencia council cameras integration)
• The data model that is the core of the PSA system
• Integration with smart city platform (PSA alarms export to EPWS)
• The Video Processing System, that, from raw data provided by the sensors, elaborates knowledge in the form of alarms and events (face recognitions, object tracking’s, etc.) in the context of the PSA procedures (for instance somebody is detected in a particular area where he/she is not allowed to be)
• Integration with HSA. PSA produces events and alarms that are sent to HSA for further correlation and consequence analysis
• A distributed platform that allows for as many as desired PSA nodes (in the pilots port authority HQ PSA and port police units portable PSA) sharing information in real time
• A scalable platform that can agglutinate and gather information from different heterogeneous sensors, in a scalable number, coupled with a data model that produces physical situational awareness for port operators.
• Joint data model including cyber and physical assets
• The integration with information public transport system of the city of Valencia.
• The integration with Valencia city App to push notifications
• An extensive list of papers and industrial conference presentations.
• Communication elements: website, logo, twitter account, newsletter, brochure, poster, and video.
• A template has been used to capture the expected foreground IP from all partners, together with any required background IP, in order to track developments and plans for IP protection. Individual partner exploitation plans have been updated based on plans in the DoA, taking account of recent developments.
• Market data, trends and drivers of the Port Security sector have been analysed in order to inform the development of the exploitation strategy.
• A customer engagement plan including key dissemination events and stakeholders to be approached has been produced (see D9.1).
• An overall exploitation strategy has been developed and agreed, and an initial system exploitation plan and a refined and extended business plan has been produced.
- New video processing techniques for increasing the port security
- Correlation Engine for Hybrid events
- Hybrid Situation Awareness for detecting potential cascading effect
- Intelligent Cyber-Anomaly Detection
- Advanced visualization of the cyber space
- Emergency Population Alert System
- Correlation Engine for Hybrid events
- Hybrid Situation Awareness for detecting potential cascading effect
- Intelligent Cyber-Anomaly Detection
- Advanced visualization of the cyber space
- Emergency Population Alert System