The SANCUS project involves 15 Partners from 8 European countries, and aims to design and develop an analySis software scheme of uNiform statistiCal sampling, aUdit and defence proceSses (SANCUS – an Roman god of trust). The main idea draws on formalising the logic of expressing (for the first time) the notions of cyber security and digital privacy by means of final formulas and fuse them into optimisation strategies to acquire the truly optimum defence recommendation in dynamic manner, i.e. with respect to the runtime changes of the telecommunications network environment. In this respect, SANCUS will dimension new inclusive Key Performance Indicator metric, namely, the security‐vs‐privacy‐vs‐reliability efficiency trade‐off,
The SANCUS project has established the following set of specific and measurable objectives:
Objective #1: To identify and classify the technical requirements and the EU SELP policy aspects for designing, developing and integrating the proposed system platform and the intended engines, mechanisms and tools.
Objective #2: To design and verify new method of automated firmware security validation (FiV) and testing based on wide-ranging pipeline of analysers and samplers for maximising the surface of vulnerability and risk discovery.
Objective #3: To design and develop new method of automated code integrity verification (CiV) by combining taint, fuzzing and symbolic execution analysis for improving security assessment accuracy, efficiency and searching speed.
Objective #4: To design and develop new method of automated network security validation and verification (SiD) focusing on open-source network development environments based on Docker and Kubernetes technologies.
Objective #5: To design and develop new network attack configuration and emulation tool (AcE) using state-of-the-art AI/ML techniques for emulating complex cyber-attacks and generating traffic in container environments.
Objective #6: To propose revolutionary MiU modelling of the IoT unit for expressing the trade-off between cyber security, digital privacy and QoS reliability by means of final formulas using utility, probability and fitness function theories.
Objective #7: To design game implicit optimisation (GiO) approach for maximising the security-vs-privacy-vs-reliability efficiency subject to the outcomes of Objectives #2-#6 using effective duality-free solution methods
Objective #8: To design and establish operational cloud‐native network testbed prototype platform that integrates the enabling 5G technologies and the engines, mechanisms, tools, solutions developed in Objectives #2 to #7.
Objective #9: To test and demonstrate the effectiveness, efficiency and complexity of the developed system network and each of its engines, mechanisms and tools by performing thorough testing using specific use case scenarios.
Objective #10: To communicate and disseminate the project outcomes, exploit business planning of the outcomes, and contribute specific project outcomes to relevant standardisation bodies.
