Skip to main content

REactively Defending against Advanced Cybersecurity Threats

Objective

Security is a vital property for every operational system and network. As systems become more powerful and, in many aspects, more complex, advanced cyber-attacks impose new threats for important operations of our society. Computer systems assist core functions of hospitals, energy centers, logistics, and communications, to name a few, and compromising such systems may have severe consequences for everyone of us. Despite the evolution of computer systems, current security defenses-although they have been substantially improved in the last decade-seem not really enough to stop advanced cyber attacks. Systems still suffer from vulnerabilities, despite the many active or passive defenses in place that have been developed in the last decades.

We believe that the core of this problem is that cyber attackers are almost always one step ahead of the cyber security researchers and practitioners. Indeed, cyber attackers are the first to strike, and while researchers try to figure out what happened, attackers have all the time in the world to plan their next strike. In this project we advocate that we should change the rules of the cyber attackers’ game and challenge the asymmetry. Instead of following the cyber attackers, researchers should try to forecast where attackers will strike next and to use this information (i) to fortify potential targets to withstand the attack and (ii) to wire targets up with forensic hooks and make them “forensics ready”. To make all this possible at a reasonable performance cost, we propose selective fortification, a mechanism that combines traditional passive and active defense approaches into a new reactive mode of operation. We take advantage of our rich background in software hardening and instrumentation for immediate delivering effective patches by selectively armoring the vulnerable part of a program.

Call for proposal

H2020-DS-SC7-2017
See other projects for this call

Funding Scheme

RIA - Research and Innovation action

Coordinator

IDRYMA TECHNOLOGIAS KAI EREVNAS
Address
N Plastira Str 100
70013 Irakleio
Greece
Activity type
Research Organisations
EU contribution
€ 477 500

Participants (5)

STICHTING VU
Netherlands
EU contribution
€ 520 125
Address
De Boelelaan 1105
1081 HV Amsterdam
Activity type
Higher or Secondary Education Establishments
UNIVERSITY OF CYPRUS
Cyprus
EU contribution
€ 341 250
Address
Avenue Panepistimiou 2109 Aglantzi
1678 Nicosia
Activity type
Higher or Secondary Education Establishments
EURECOM
France
EU contribution
€ 372 461,25
Address
Route Des Chappes 450 Campus Sophiatech
06410 Biot
Activity type
Higher or Secondary Education Establishments
RUHR-UNIVERSITAET BOCHUM
Germany
EU contribution
€ 409 375
Address
Universitaetsstrasse 150
44801 Bochum
Activity type
Higher or Secondary Education Establishments
NORTONLIFELOCK FRANCE
France
EU contribution
€ 605 750
Address
17 Avenue De L'arche
92671 Courbevoie
Activity type
Private for-profit entities (excluding Higher or Secondary Education Establishments)