Description du projet
Sécuriser l’écosystème de l’IdO pour atténuer les attaques à grande échelle
Dans le domaine de l’internet des objets (IdO), les défauts de conceptions du matériel existant et des dispositifs intégrés a créé un problème de sécurité pressant. Cette vulnérabilité permet aux cybercriminels de facilement compromettre ces dispositifs, et de mener des attaques à grande échelle sur des cyberinfrastructures critiques. Dans ce contexte, le projet CYBER-TRUST financé par l’UE constitue le fer de lance d’une plateforme innovante. Le projet entend recueillir et à partager de manière proactive des informations sur les cybermenaces, en identifiant les attaques émergentes, y compris les vulnérabilités de type «zero-day». S’appuyant sur les registres distribués et les chaînes de bloc, il renforcera les capacités de détection et de réaction contre les cyberattaques ciblées et interdisciplinaires. Le projet se concentre en outre sur le maintien de profils de vulnérabilité précis des appareils IdO, sur le respect des réglementations et sur la réduction des dommages causés par les cyberattaques.
Objectif
The CYBER-TRUST project aims to develop an innovative cyber-threat intelligence gathering, detection, and mitigation platform to tackle the grand challenges towards securing the ecosystem of IoT devices. The security problems arising from the flawed design of legacy hardware and embedded devices allows cyber-criminals to easily compromise them and launch large-scale attacks toward critical cyber-infrastructures. The proposed interdisciplinary approach will capture different phases of such emerging attacks, before and after known (even years old) or unknown (zero-day) vulnerabilities have been widely exploited by cyber-criminals to launch the attack. Emphasis is given on building a proactive cyber-threat intelligence gathering and sharing system to prevent the exploitation of zero-day vulnerabilities. This intelligence information will be used to maintain accurate vulnerability profiles of IoT devices, in accordance with data protection, privacy, or other regulations, and optimally alter their attack surface to minimise the damage from cyber-attacks. Novel technologies will be developed, based on distributed ledgers and blockchains, to monitor devices’ integrity state and network behaviour that will considerably increase the detection and response capabilities against targeted and interdisciplinary cyber-attacks. In the case of alleged malicious activity, tools for collecting and storing forensic evidence on a tamper-proof blockchain structure will be delivered, taking into account the specific needs of law enforcement agencies. Privacy-preserving network monitoring and advanced virtual reality-based visualisation techniques will be employed for quickly detecting botnets, DDoS attacks and other incidents. Relying on interdisciplinary research, an intelligent autonomous cyber-defence framework will be built for providing
intelligent ways of isolating the devices under an attacker’s control (or infected) and effectively responding to and mitigating large-scale attacks.
Champ scientifique
- natural sciencescomputer and information sciencesinternetinternet of things
- natural sciencescomputer and information sciencescomputer security
- natural sciencescomputer and information sciencesdata sciencedata processing
- natural sciencescomputer and information sciencesartificial intelligencecomputational intelligence
Programme(s)
Thème(s)
Régime de financement
RIA - Research and Innovation actionCoordinateur
10177 Athina
Grèce