Descripción del proyecto
Proteger el ecosistema del internet de las cosas para mitigar los ataques a gran escala
En el ámbito del internet de las cosas (IdC), el diseño defectuoso del «hardware» heredado y los dispositivos integrados ha creado un acuciante problema de seguridad. Se trata de una vulnerabilidad que permite a los ciberdelincuentes comprometer fácilmente estos dispositivos, lo que da lugar a ataques a gran escala contra ciberinfraestructuras críticas. En este contexto, el proyecto CYBER-TRUST, financiado con fondos europeos, encabeza una plataforma innovadora. Al registrar los ataques emergentes, como las vulnerabilidades de día cero, su equipo pretende recopilar y compartir de forma preventiva información sobre ciberamenazas. Aprovechando los libros de contabilidad distribuidos y las cadenas de bloques, se mejorarán las capacidades de detección y respuesta frente a ciberataques selectivos e interdisciplinarios. Además, el proyecto se centra en mantener perfiles de vulnerabilidad precisos de los dispositivos del IdC, cumplir la normativa y minimizar los daños causados por los ciberataques.
Objetivo
The CYBER-TRUST project aims to develop an innovative cyber-threat intelligence gathering, detection, and mitigation platform to tackle the grand challenges towards securing the ecosystem of IoT devices. The security problems arising from the flawed design of legacy hardware and embedded devices allows cyber-criminals to easily compromise them and launch large-scale attacks toward critical cyber-infrastructures. The proposed interdisciplinary approach will capture different phases of such emerging attacks, before and after known (even years old) or unknown (zero-day) vulnerabilities have been widely exploited by cyber-criminals to launch the attack. Emphasis is given on building a proactive cyber-threat intelligence gathering and sharing system to prevent the exploitation of zero-day vulnerabilities. This intelligence information will be used to maintain accurate vulnerability profiles of IoT devices, in accordance with data protection, privacy, or other regulations, and optimally alter their attack surface to minimise the damage from cyber-attacks. Novel technologies will be developed, based on distributed ledgers and blockchains, to monitor devices’ integrity state and network behaviour that will considerably increase the detection and response capabilities against targeted and interdisciplinary cyber-attacks. In the case of alleged malicious activity, tools for collecting and storing forensic evidence on a tamper-proof blockchain structure will be delivered, taking into account the specific needs of law enforcement agencies. Privacy-preserving network monitoring and advanced virtual reality-based visualisation techniques will be employed for quickly detecting botnets, DDoS attacks and other incidents. Relying on interdisciplinary research, an intelligent autonomous cyber-defence framework will be built for providing
intelligent ways of isolating the devices under an attacker’s control (or infected) and effectively responding to and mitigating large-scale attacks.
Ámbito científico
- natural sciencescomputer and information sciencesinternetinternet of things
- natural sciencescomputer and information sciencescomputer security
- natural sciencescomputer and information sciencesdata sciencedata processing
- natural sciencescomputer and information sciencesartificial intelligencecomputational intelligence
Programa(s)
Tema(s)
Convocatoria de propuestas
Consulte otros proyectos de esta convocatoriaConvocatoria de subcontratación
H2020-DS-SC7-2017
Régimen de financiación
RIA - Research and Innovation actionCoordinador
10177 Athina
Grecia