Descrizione del progetto
Proteggere l’ecosistema dell’internet delle cose per mitigare gli attacchi su larga scala
Nel regno dell’internet delle cose, la progettazione fallace di hardware legacy e dispositivi embedded ha creato un problema di sicurezza pressante. Si tratta di una vulnerabilità che consente ai criminali informatici di compromettere facilmente questi dispositivi, provocando attacchi su larga scala alle infrastrutture informatiche critiche. In questo contesto, il progetto CYBER-TRUST, finanziato dall’UE, è alla guida di una piattaforma innovativa. Catturando gli attacchi emergenti, comprese le vulnerabilità zero-day, il progetto mira a raccogliere e condividere in modo proattivo le informazioni sulle minacce informatiche. Sfruttando i libri contabili distribuiti e le blockchain, migliorerà le capacità di rilevamento e risposta contro gli attacchi informatici mirati e interdisciplinari. Il progetto si concentra inoltre sul mantenimento di profili di vulnerabilità accurati dei dispositivi dell’internet delle cose, sulla conformità alle normative e sulla riduzione al minimo dei danni causati dagli attacchi informatici.
Obiettivo
The CYBER-TRUST project aims to develop an innovative cyber-threat intelligence gathering, detection, and mitigation platform to tackle the grand challenges towards securing the ecosystem of IoT devices. The security problems arising from the flawed design of legacy hardware and embedded devices allows cyber-criminals to easily compromise them and launch large-scale attacks toward critical cyber-infrastructures. The proposed interdisciplinary approach will capture different phases of such emerging attacks, before and after known (even years old) or unknown (zero-day) vulnerabilities have been widely exploited by cyber-criminals to launch the attack. Emphasis is given on building a proactive cyber-threat intelligence gathering and sharing system to prevent the exploitation of zero-day vulnerabilities. This intelligence information will be used to maintain accurate vulnerability profiles of IoT devices, in accordance with data protection, privacy, or other regulations, and optimally alter their attack surface to minimise the damage from cyber-attacks. Novel technologies will be developed, based on distributed ledgers and blockchains, to monitor devices’ integrity state and network behaviour that will considerably increase the detection and response capabilities against targeted and interdisciplinary cyber-attacks. In the case of alleged malicious activity, tools for collecting and storing forensic evidence on a tamper-proof blockchain structure will be delivered, taking into account the specific needs of law enforcement agencies. Privacy-preserving network monitoring and advanced virtual reality-based visualisation techniques will be employed for quickly detecting botnets, DDoS attacks and other incidents. Relying on interdisciplinary research, an intelligent autonomous cyber-defence framework will be built for providing
intelligent ways of isolating the devices under an attacker’s control (or infected) and effectively responding to and mitigating large-scale attacks.
Campo scientifico
- natural sciencescomputer and information sciencesinternetinternet of things
- natural sciencescomputer and information sciencescomputer security
- natural sciencescomputer and information sciencesdata sciencedata processing
- natural sciencescomputer and information sciencesartificial intelligencecomputational intelligence
Programma(i)
Argomento(i)
Invito a presentare proposte
Vedi altri progetti per questo bandoBando secondario
H2020-DS-SC7-2017
Meccanismo di finanziamento
RIA - Research and Innovation actionCoordinatore
10177 Athina
Grecia