Objectif "The vast majority of research in computer security is dedicated to the design of detection, protection, and prevention solutions. While these techniques play a critical role to increase the security and privacy of our digital infrastructure, it is enough to look at the news to understand that it is not a matter of ""if"" a computer system will be compromised, but only a matter of ""when"". It is a well known fact that there is no 100% secure system, and that there is no practical way to prevent attackers with enough resources from breaking into sensitive targets. Therefore, it is extremely important to develop automated techniques to timely and precisely analyze computer security incidents and compromised systems. Unfortunately, the area of incident response received very little research attention, and it is still largely considered an art more than a science because of its lack of a proper theoretical and scientific background. The objective of BITCRUMBS is to rethink the Incident Response (IR) field from its foundations by proposing a more scientific and comprehensive approach to the analysis of compromised systems. BITCRUMBS will achieve this goal in three steps: (1) by introducing a new systematic approach to precisely measure the effectiveness and accuracy of IR techniques and their resilience to evasion and forgery; (2) by designing and implementing new automated techniques to cope with advanced threats and the analysis of IoT devices; and (3) by proposing a novel forensics-by-design development methodology and a set of guidelines for the design of future systems and software. To provide the right context for these new techniques and show the impact of the project in different fields and scenarios, BITCRUMBS plans to address its objectives using real case studies borrowed from two differentdomains: traditional computer software, and embedded systems." Champ scientifique natural sciencescomputer and information sciencesinternetinternet of thingsnatural sciencescomputer and information sciencessoftwarenatural sciencescomputer and information sciencescomputer security Mots‑clés incident response computer forensics embedded systems security Programme(s) H2020-EU.1.1. - EXCELLENT SCIENCE - European Research Council (ERC) Main Programme Thème(s) ERC-2017-COG - ERC Consolidator Grant Appel à propositions ERC-2017-COG Voir d’autres projets de cet appel Régime de financement ERC-COG - Consolidator Grant Institution d’accueil EURECOM GIE Contribution nette de l'UE € 1 991 504,00 Adresse ROUTE DES CHAPPES 450 CAMPUS SOPHIA ANTIPOLIS 06410 Biot France Voir sur la carte Région Provence-Alpes-Côte d’Azur Provence-Alpes-Côte d’Azur Alpes-Maritimes Type d’activité Higher or Secondary Education Establishments Liens Contacter l’organisation Opens in new window Site web Opens in new window Participation aux programmes de R&I de l'UE Opens in new window Réseau de collaboration HORIZON Opens in new window Coût total € 1 991 504,00 Bénéficiaires (1) Trier par ordre alphabétique Trier par contribution nette de l'UE Tout développer Tout réduire EURECOM GIE France Contribution nette de l'UE € 1 991 504,00 Adresse ROUTE DES CHAPPES 450 CAMPUS SOPHIA ANTIPOLIS 06410 Biot Voir sur la carte Région Provence-Alpes-Côte d’Azur Provence-Alpes-Côte d’Azur Alpes-Maritimes Type d’activité Higher or Secondary Education Establishments Liens Contacter l’organisation Opens in new window Site web Opens in new window Participation aux programmes de R&I de l'UE Opens in new window Réseau de collaboration HORIZON Opens in new window Coût total € 1 991 504,00