CORDIS
EU research results

CORDIS

English EN

A SECURE HEALTHCARE ENVIRONMENT FOR INFORMATICS RESILIENCE

Project information

Grant agreement ID: 883275

Status

Grant agreement signed

  • Start date

    1 September 2020

  • End date

    31 August 2023

Funded under:

H2020-EU.3.7.6.

H2020-EU.3.7.4.

  • Overall budget:

    € 4 999 975

  • EU contribution

    € 4 999 975

Coordinated by:

INSTITUT MINES-TELECOM

France

Objective

The health sector is steadily becoming the de facto target for cyberattacks. Based on the most recent ENISA report at the end of 2018, cybersecurity incidents have shown that the healthcare sector is one of the most vulnerable. Focusing specifically on Electronic Medical Devices (EMD), they suffer from numerous and multi-layered vulnerabilities . Default, weak or no password authentication for remote connections, unencrypted traffic or obsolete and insecure cryptographic algorithms, unsupported operating systems, outdated, unmanaged and vulnerable software are among the most serious problems that jeopardise both their smooth operation and the data aggregated and stored. The vision of HEIR is to provide a thorough threat identification and cybersecurity knowledge base system addressing both local (in the hospital / medical centre) and global (including different stakeholders) levels, that comprises the following pillars: (i) Real time threat hunting services, facilitated by advanced machine learning technologies, supporting the identification of the most common threats in electronic medical systems based on widely accepted methodologies such as the OWASP Top 10 Security Risks and the ENISA Top 15 Threats; (ii) Sensitive data trustworthiness sharing facilitated by the HEIR privacy aware framework; (iii) Innovative Benchmarking based on the calculation of the Risk Assessment of Medical Applications (RAMA) score, that will measure the security status of every medical device and provide thorough vulnerability assessment of hospitals and medical centres; (iv) The delivery of an Observatory for the Security of Electronic Medical Devices; an intelligent knowledge base accessible by different stakeholders, providing advanced visualisations for each threat identified in RAMA and facilitating global awareness on EMD-related threats. Last, HEIR will set up a broad European network for establishing good security practice in all regulatory frameworks to reduce market access.
Leaflet | Map data © OpenStreetMap contributors, Credit: EC-GISCO, © EuroGeographics for the administrative boundaries

Coordinator

INSTITUT MINES-TELECOM

Address

19 Place Marguerite Perey
91120 Palaiseau

France

Activity type

Higher or Secondary Education Establishments

EU Contribution

€ 406 875

Participants (15)

IDRYMA TECHNOLOGIAS KAI EREVNAS

Greece

EU Contribution

€ 209 500

AEGIS IT RESEARCH GMBH

Germany

EU Contribution

€ 385 750

IOTAM INTERNET OF THINGS APPLICATIONS AND MULTI LAYER DEVELOPMENT LTD

Cyprus

EU Contribution

€ 393 750

STELAR SECURITY TECHNOLOGY LAW RESEARCH UG (HAFTUNGSBESCHRANKT) GMBH

Germany

EU Contribution

€ 304 600

SPHYNX TECHNOLOGY SOLUTIONS AG

Switzerland

EU Contribution

€ 375 000

BITDEFENDER SRL

Romania

EU Contribution

€ 300 000

IBM ISRAEL - SCIENCE AND TECHNOLOGY LTD

Israel

EU Contribution

€ 590 000

IASO IDIOTIKI GENIKI MAIEFTIKI GINAIKOLOGIKI & PAIDIATRIKI KLINIKI DIAGNOSTIKO THERAPEFTIKO & EREVNITIKO KENTRO

Greece

EU Contribution

€ 146 875

WELLICS LTD

United Kingdom

EU Contribution

€ 348 750

CROYDON HEALTH SERVICES NATIONAL HEALTH SERVICE TRUST

United Kingdom

EU Contribution

€ 271 312,50

PANEPISTIMIAKO GENIKO NOSOKOMEIO IRAKLEIOU

Greece

EU Contribution

€ 169 000

UNIVERSITETSSYKEHUSET NORD-NORGE HF

Norway

EU Contribution

€ 362 500

HARALDSPLASS DIAKONALE SYKEHUS AS

Norway

EU Contribution

€ 212 500

SIEMENS SRL

Romania

EU Contribution

€ 242 812,50

UNIVERSITEIT MAASTRICHT

Netherlands

EU Contribution

€ 280 750

Project information

Grant agreement ID: 883275

Status

Grant agreement signed

  • Start date

    1 September 2020

  • End date

    31 August 2023

Funded under:

H2020-EU.3.7.6.

H2020-EU.3.7.4.

  • Overall budget:

    € 4 999 975

  • EU contribution

    € 4 999 975

Coordinated by:

INSTITUT MINES-TELECOM

France