Objective "The vast majority of research in computer security is dedicated to the design of detection, protection, and prevention solutions. While these techniques play a critical role to increase the security and privacy of our digital infrastructure, it is enough to look at the news to understand that it is not a matter of ""if"" a computer system will be compromised, but only a matter of ""when"". It is a well known fact that there is no 100% secure system, and that there is no practical way to prevent attackers with enough resources from breaking into sensitive targets. Therefore, it is extremely important to develop automated techniques to timely and precisely analyze computer security incidents and compromised systems. Unfortunately, the area of incident response received very little research attention, and it is still largely considered an art more than a science because of its lack of a proper theoretical and scientific background. The objective of BITCRUMBS is to rethink the Incident Response (IR) field from its foundations by proposing a more scientific and comprehensive approach to the analysis of compromised systems. BITCRUMBS will achieve this goal in three steps: (1) by introducing a new systematic approach to precisely measure the effectiveness and accuracy of IR techniques and their resilience to evasion and forgery; (2) by designing and implementing new automated techniques to cope with advanced threats and the analysis of IoT devices; and (3) by proposing a novel forensics-by-design development methodology and a set of guidelines for the design of future systems and software. To provide the right context for these new techniques and show the impact of the project in different fields and scenarios, BITCRUMBS plans to address its objectives using real case studies borrowed from two differentdomains: traditional computer software, and embedded systems." Fields of science natural sciencescomputer and information sciencesinternetinternet of thingsnatural sciencescomputer and information sciencessoftwarenatural sciencescomputer and information sciencescomputer security Keywords incident response computer forensics embedded systems security Programme(s) H2020-EU.1.1. - EXCELLENT SCIENCE - European Research Council (ERC) Main Programme Topic(s) ERC-2017-COG - ERC Consolidator Grant Call for proposal ERC-2017-COG See other projects for this call Funding Scheme ERC-COG - Consolidator Grant Host institution EURECOM GIE Net EU contribution € 1 991 504,00 Address ROUTE DES CHAPPES 450 CAMPUS SOPHIA ANTIPOLIS 06410 Biot France See on map Region Provence-Alpes-Côte d’Azur Provence-Alpes-Côte d’Azur Alpes-Maritimes Activity type Higher or Secondary Education Establishments Links Contact the organisation Opens in new window Website Opens in new window Participation in EU R&I programmes Opens in new window HORIZON collaboration network Opens in new window Total cost € 1 991 504,00 Beneficiaries (1) Sort alphabetically Sort by Net EU contribution Expand all Collapse all EURECOM GIE France Net EU contribution € 1 991 504,00 Address ROUTE DES CHAPPES 450 CAMPUS SOPHIA ANTIPOLIS 06410 Biot See on map Region Provence-Alpes-Côte d’Azur Provence-Alpes-Côte d’Azur Alpes-Maritimes Activity type Higher or Secondary Education Establishments Links Contact the organisation Opens in new window Website Opens in new window Participation in EU R&I programmes Opens in new window HORIZON collaboration network Opens in new window Total cost € 1 991 504,00