CORDIS - EU research results
CORDIS

A CybEr range tRaining platform for medicAl organisations and systems Security

Project description

Solving healthcare cybersecurity challenges

The healthcare industry is one of the biggest targets for cyberattacks, threatening daily operations and compromising confidential patient data. For instance, hospitals store a massive amount of patient data that is worth a lot of money to hackers. Also, hackers can install costly ransomware on medical devices that monitor heart rates or dispense drugs. The EU-funded AERAS project will develop a realistic and rapidly adjustable cyber range platform for systems and organisations in the healthcare sector. The aim will be to prepare stakeholders with different types of responsibility and levels of expertise in defending high-risk, critical cyber systems and organisations against advanced, known and new cyberattacks, and to reduce their security risks. The project will test the prototype in two pilots in the healthcare sector.

Objective

AERAS aims to develop a realistic and rapidly adjustable cyber range platform for systems and organisations in the critical healthcare sector, to effectively prepare stakeholders with different types of responsibility and levels of expertise in defending high-risk, critical cyber-systems and organizations against advanced, known and new cyber-attacks, and reduce their security risks. The platform will be a virtual cyberwarfare solution enabling the simulation of the operation and effects of security controls and offering hands-on training on their development, assessment, use and management.
The platform will be based on an evidence-based approach where virtual cyberwarfare and simulations are configured according to evidence regarding: (i) the occurrence of cyber threats, and (ii) the effectiveness of the operation of the internal and external system defence mechanisms. Evidence will be collected by multi- faceted real-time monitoring and assessed according to Cyber Range Security Assurance (CRSA) models specifying potential cyber-attacks, the security mechanisms used against them, and the methods for assessing their effectiveness. The AERAS solution will be delivered at TRL-7 and validated through two different pilots in the healthcare sector: (i) a hospital medical systems pilot; and (ii) a public health systems pilot.

Coordinator

UNIVERSITA DEGLI STUDI DI MILANO
Net EU contribution
€ 110 400,00
Address
Via Festa Del Perdono 7
20122 Milano
Italy

See on map

Region
Nord-Ovest Lombardia Milano
Activity type
Higher or Secondary Education Establishments
Links
Total cost
€ 110 400,00

Participants (10)