Practical Autonomous Cyberhealth for resilient SMEs & Microenterprises

Informations projet

PALANTIR

N° de convention de subvention: 883335

Site Web du projet

DOI

10.3030/883335

Projet clôturé

Date de signature de la CE 17 Avril 2020

Date de début 1 Septembre 2020

Date de fin 31 Août 2023

Financé au titre de

Secure societies - Protecting freedom and security of Europe and its citizens

Coût total

€ 5 194 978,87

Contribution de l’UE

€ 4 046 908,38

4 046 908,38

1 148 070,49

Coordonné par

DIADIKASIA BUSINESS CONSULTING SYMVOULOI EPICHEIRISEON AE
Greece

CORDIS fournit des liens vers les livrables publics et les publications des projets HORIZON.

Les liens vers les livrables et les publications des projets du 7e PC, ainsi que les liens vers certains types de résultats spécifiques tels que les jeux de données et les logiciels, sont récupérés dynamiquement sur OpenAIRE .

Livrables

Hybrid Threat Intelligence Framework- First release

D51 The integrated data analytics engine based on ML and DL for threat detection and classification first release accompanied by reports describing the implementation and usage guidelines All WP5 tasks contribute to this deliverable T53 and T52 for threat detection and classification T54 for remediation activities and T51 for traffic accumulation and preprocessing

PALANTIR Secure Services Ecosystem - Second release

D3.2. A set of software prototypes of the trusted & virtualised security services to be used in PALANTIR (Second release), accompanied by reports describing the implementation and usage guidelines. Linked with all WP3 tasks, mainly with T3.2 (services orchestration), T3.1 (individual security services), T3.4 (service catalogue) and T3.3 (risk calculation mechanisms).

Hybrid Threat Intelligence Framework - Second release

D5.2. The integrated data analytics engine (based on ML and DL) for threat detection and classification (second release), accompanied by reports describing the implementation and usage guidelines. All WP5 tasks contribute to this deliverable, T5.3 and T5.2 (for threat detection and classification), T5.4 (for remediation activities) and T5.1 (for traffic accumulation and pre-processing).

PALANTIR Secure Services Ecosystem - First release

A set of software prototypes of the trusted virtualised security services to be used in PALANTIR First release accompanied by reports describing the implementation and usage guidelines Linked with all WP3 tasks mainly with T32 services orchestration T31 individual security services T34 service catalogue and T33 risk calculation mechanisms

Dashboard, Reporting and Threat Sharing Platform - First release

D41 A set of software prototypes of the Security Dashboard for interacting with the PALANTIR framework reporting and sharing threat intelligence information First release accompanied by reports describing the implementation and usage guidelinesPrimarily linked with T41 for the dashboard functionalities and also with T43 service matching and accounting

Dashboard, Reporting and Threat Sharing Platform - Second release

D4.3 A set of software prototypes of the Security Dashboard for interacting with the PALANTIR framework, reporting and sharing threat intelligence information, accompanied by reports describing the implementation and usage guidelines (Second release)Primarily linked with T4.1 (for the dashboard functionalities) and also with T4.3 (service matching and accounting).

Integration & Validation Report: Use case results and playbook (first prototype)

D61 Report describing the integrated Prototype of the PALANTIR framework as well as the evaluationverification results on the use cases first prototypeLinked with T61 integration and testing but also with the 3 UCs T62 T63 T64

Trust, Attestation and Verification Framework -Specifications of first release

D42 The set of reports describing the implementation and usage guidelines for attesting the integrity of hardware and software modulesSpecifications of first release Linked mainly with T44 different attestation mechanisms and with T42 fault management

Integration & Validation Report: Use case results and playbook (final prototype)

D62 Report describing the integrated Prototype of the PALANTIR framework as well as the evaluationverification results on the use cases final prototype Linked with T61 integration and testing but also with the 3 UCs T62 T63 T64

Trust, Attestation and Verification Framework -Specifications of second release

D44 The set of reports describing the implementation and usage guidelines for attesting the integrity of hardware and software modules Linked mainly with T44 different attestation mechanisms and with T42 fault management

Threat analysis & AS-based risk assessment

D22 Comprehensive definition of the relevant attack classes entryexit points channels data stores etc in SDNNFV and cloudnative deploymentsLinked with T24

Risk Reduction measures

D24 Highlevel identification of measures to reduce security risks in service oriented infrastructures Linked with T24

Requirements & high-level design - Final

D23 Systemlevel requirements for the PALANTIR framework and highlevel technical design and specifications Final version Primarily linked with T21 functional requirements also with T22 business and legal requirements T23 UC requirements

Requirements & high-level design - Interim

D21 System level requirements for PALANTIR framework highlevel designs and specifications interim version Primarily linked with T21 functional requirements also with T22 business and legal requirements T23 UC requirements

Project website & social media accounts

D72 The project public website and the established projects accounts on the selected social media platforms Linked with T73 Digital presence

Publications

syslrn: Learning What to Monitor for Efficient Anomaly Detection

Auteurs: Davide Sanvito; Giuseppe Siracusano; Sharan Santhanam; Roberto Gonzalez; Roberto Bifulco
Publié dans: ACM EuroMLSys 2022, Numéro 28, 2022, ISBN 978-1-4503-9254-9
Éditeur: ACM EuroMLSys 2022
DOI: 10.1145/3517207.3526979

A data infrastructure for heterogeneous telemetry adaptation. Application to Netflow-based cryptojacking detection.

Auteurs: Alejandro A. Moreno-Sancho, Antonio Pastor, Ignacio D. Martinez-Casanueva, Daniel González-Sánchez, Luis Bellido Triana
Publié dans: International Conference on Intelligence in Next Generation Networks (ICIN), 2023, Page(s) 105-112, ISBN 979-8-3503-9804-5
Éditeur: IEEE
DOI: 10.1109/icin56760.2023.10073490

Prediphant: Short Term Heavy User Prediction

Auteurs: Davide Sanvito; Giuseppe Siracusano; Roberto Gonzalez; Roberto Bifulco
Publié dans: IEEE/IET CSNDSP 2022, Numéro 26, 2022, ISBN 978-1-6654-1044-1
Éditeur: IEEE/IET
DOI: 10.1109/csndsp54353.2022.9907909

Model-Driven Network Monitoring Using NetFlow Applied to Threat Detection

Auteurs: Daniel González-Sánchez, Ignacio D. Martinez-Casanueva, Antonio Pastor, Luis Bellido Triana, Cristina Pinar Muñoz Zamarro, Alejandro Antonio Moreno Sancho, David Fernández Cabronero, Diego Lopez
Publié dans: IEEE Netsoft (SecSoft workshop), 2022, Page(s) 450-455, ISBN 978-1-6654-0694-9
Éditeur: IEEE
DOI: 10.1109/netsoft54395.2022.9844107

Re-architecting Traffic Analysis with Neural Network Interface Cards

Auteurs: Giuseppe Siracusano; Salvator Galea; Davide Sanvito; Mohammad Malekzadeh; Gianni Antichi; Paolo Costa; Hamed Haddadi; Roberto Bifulco
Publié dans: USENIX NSDI 2022, Numéro 32, 2022, ISBN 978-1-939133-27-4
Éditeur: USENIX
DOI: 10.5281/zenodo.6446562

Provision of Security-as-a-Service (SecaaS) in Lightweight Scenarios

Auteurs: Antonio López Martínez; Mattia Zago; Manuel Gil Pérez
Publié dans: VII Jornadas Nacionales en Investigación en Ciberseguridad (JNIC), Numéro 12, 2022, Page(s) 327-330, ISBN 978-84-88734-13-6
Éditeur: Fundación Tecnalia Research and Innovation
DOI: 10.5281/zenodo.6856500

PALANTIR: Zero-Trust Architecture for Managed Security Service Provider

Auteurs: Maxime Compastié; Silvia Sisinni; Supreshna Gurung; Carolina Fernández; Ludovic Jacquin; Izidor Mlakar; Valentino Šafran; Antonio Lioy; Ignazio Pedone
Publié dans: Proceedings of the 29th Computer & Electronics Security Application Rendezvous (C&ESAR): Ensuring Trust in a Decentralized World, Numéro 16, 2023, ISSN 1613-0073
Éditeur: CEUR Workshop Proceedings
DOI: 10.5281/zenodo.7545474

PALANTIR demo: leveraging SecaaS model for managing threats in industrial environments

Auteurs: Carolina Fernández, Davide Sanvito, Orestis Kompougias, Valentino Safran, Maxime Compastié, Ignazio Pedone, Antonio López Martínez, Manuel Gil Pérez, Akis Kourtis, George Xylouris, Izidor Mlakar, Stylianos Tsarsitalidis, Dimitrios Klonidis, Daniele Canavese, Vangelis Logothetis, Diego Lopez, Antonio Pastor, Antonio Lioy, Ludovic Jacquin, Supreshna Gurung, Roberto Bifulco, Athanasios Priovolos
Publié dans: IEEE Meditcom, 2022, Page(s) 82-85, ISBN 978-1-6654-9825-8
Éditeur: IEEE
DOI: 10.1109/meditcom55741.2022.9928648

Poster: MUSTARD - Adaptive Behavioral Analysis for Ransomware Detection

Auteurs: Davide Sanvito; Giuseppe Siracusano; Roberto González; Roberto Bifulco
Publié dans: ACM CCS 2022, Numéro 25, 2022, Page(s) 3455–3457, ISBN 978-1-4503-9450-5
Éditeur: ACM
DOI: 10.1145/3548606.3563529

A Model for Automated Cybersecurity Threat Remediation and Sharing

Auteurs: Francesco Settanni; Leonardo Regano; Cataldo Basile; Antonio Lioy
Publié dans: 2023 IEEE 9th International Conference on Network Softwarization (NetSoft), Numéro 20, 2023
Éditeur: IEEE
DOI: 10.1109/NetSoft57336.2023.10175486

PALANTIR: An NFV-Based Security-as-a-Service Approach for Automating Threat Mitigation

Auteurs: Maxime Compastié, Antonio López Martínez, Carolina Fernández, Manuel Gil Pérez, Stylianos Tsarsitalidis, George Xylouris, Izidor Mlakar, Michail Alexandros Kourtis, and Valentino Šafran
Publié dans: "MDPI Sensors, Special Numéro ""Security and Privacy in Cloud Computing Environment""", 2023, ISSN 1424-8220
Éditeur: Multidisciplinary Digital Publishing Institute (MDPI)
DOI: 10.3390/s23031658

A novel architecture to virtualise a hardware-bound trusted platform module

Auteurs: Marco De Benedictis, Ludovic Jacquin, Ignazio Pedone, Andrea Atzeni, Antonio Lioy
Publié dans: Future Generation Computer Systems, 2023, ISSN 0167-739X
Éditeur: Elsevier BV
DOI: 10.1016/j.future.2023.08.012

Data set and machine learning models for the classification of network traffic originators

Auteurs: Canavese, Daniele; Regano, Leonardo; Basile, Cataldo; Ciravegna, Gabriele; Lioy, Antonio
Publié dans: Computers & Electrical Engineering, Numéro 25, 2022, ISSN 2352-3409
Éditeur: Elsevier BV
DOI: 10.1016/j.dib.2022.107968

Adaptive Vulnerability-Based Risk Identification Software with Virtualization Functions for Dynamic Management

Auteurs: A. García Pérez, A. López Martínez, M. Gil Pérez
Publié dans: Journal of Network and Computer Applications, 2023, ISSN 1084-8045
Éditeur: Academic Press
DOI: 10.1016/j.jnca.2023.103728

A comprehensive review of the state of the art on security and privacy issues in Healthcare

Auteurs: Antonio López Martínez, Manuel Gil Pérez, Antonio Ruiz Martínez
Publié dans: ACM Computer Surveys, 2022, ISSN 0360-0300
Éditeur: Association for Computing Machinary, Inc.
DOI: 10.1145/3571156

Encryption-agnostic classifiers of traffic originators and their application to anomaly detection

Auteurs: Canavese, Daniele; Regano, Leonardo; Basile, Cataldo; Ciravegna, Gabriele; Lioy, Antonio
Publié dans: Data in Brief, Numéro 30, 2022, ISSN 0045-7906
Éditeur: Pergamon Press Ltd.
DOI: 10.1016/j.compeleceng.2021.107621

Recherche de données OpenAIRE...

Livrables

Publications

Partager cette page Partager cette page sur les réseaux sociaux

Télécharger Télécharger le contenu de la page