Community Research and Development Information Service - CORDIS

Periodic Report Summary 3 - ZONESEC (Towards a EU framework for the security of Widezones)

Project Context and Objectives:
ZONeSEC aims to address the needs of Widezones surveillance by defining a new European-wide framework, which will extend beyond a sole technical proposition. Driven by the need to yield a holistic and uniform approach, ZONeSEC redefines the issue of security of Widezones by taking into consideration issues pertaining to costs, complexity, vulnerability, societal acceptance and ethics.
ZONeSEC performs all needed research, development, integration and awareness raising work to yield a holistic system:
• By adopting a Total Security Approach, merging and balancing all relevant aspects in the design of an innovative Widezone surveillance system.
• To put in place a scalable framework and congruent prototype that guarantee the seamless and cost-efficient surveillance of Widezones – irrespective of their type – enhancing to that effect the security of these broad areas beyond the mere surveillance of critical infrastructures.
• To introduce a ground-breaking approach (DirectSIM) in simulating the behavior of important sub-systems, threats and human entities. The resulting environment was used for the early design and testing of the ZONeSEC components cost-efficiency while it could also be exploited for the realistic training of surveillance operators.
• To support with its valuable functions a total Early Detection and Situational Awareness mechanism that assists authorities and operators in the prevention of illicit activities even in the most complex, remote or demanding localized spaces.
• To dynamically assess how an activity might evolve into a threat for the well-being of the protected Widezone, fusing different information data which establishes an active and dynamic surveillance framework instead of the current passive and static one.
• To improve the sensor base and sensor intelligence for high quality input for the systems information fusion and processing framework, to detect various kinds of illicit pattern of activity, reducing the rate of false alarms.
• To provide a new EU trendsetting benchmark for Widezones surveillance systems, by delivering a highly usable and on-line toolkit that will provide references, consultation and guidance services for the protection of infrastructure spreading across Widezones (EU-WSRT).
• To set a cornerstone for the standardization of equipment, network architecture, processes and methodologies for Widezones surveillance purposes on an EU level addressing the cross-cultural issues emerging from the diversity of normative frameworks, contexts of implementation etc. ZONeSEC aims at providing pre-normative standards through modern dual path standardization process: Standardization Organizations committees and workshop agreement/industrial specifications group.
• To provide recommendations on policies development aiming at harmonizing the European, National and Regional regulatory packages applicable to the protection of critical infrastructures in Widezones.
• To safeguard the societal acceptance of the proposed framework by adhering to the recommendations and expectations of the Societal Impact Expert Working Group.
• To set-up visible demonstrations of an innovative and a Unique Reference Surveillance System for the protection of Widezones in realistic situations.
• To support civil protection authorities in the formation and validation of proper safety procedures for the mitigation of the effects of illicit activities towards a Widezone. (esp. parts of the protected infrastructure that are close to metropolitan or urban, semi-urban areas)
The ZONeSEC methodology brings the stakeholders in the spotlight of all envisaged systems development; from the collection of user requirements, to the iterative development and validation of the system’s technical specifications & the performance of pilot demonstrations and integrity tests, the involved user groups– infrastructure operators, citizens, first responders, crisis managers, resource/infrastructure managers, and public agencies - being integral cogs in the process.
Project Results:
With respect to the Project Management activities of ZONeSEC project, in overall these are running in a sufficiently smooth manner. Most deliverables are of high quality while some delays that occurred did not affect at any point the implementation of the project. Monitoring activities are followed in order to ensure the achievement of project objectives in a qualitative way. The technical plan has been executed substantially in line with the description of work. An amendment was initiated due to the withdrawal of one of our end-users (GASUINIE) while a new one (DESFA) from the same Critical Infrastructure sector (gas sector) was entered to replace the former one.
The Surveillance of Widezones activities have been also performed as planned within project period 2 and can be summarized as follows:
• Refinement and further elaboration of the User Requirements (URs) and System Requirements (SRs)
• Recording of the AS-IS situation and identification of needs of the new beneficiary DESFA.
• Definition of the main principles of a common security management framework, applicable to a wide range of Widezones and critical infrastructure sectors.
• Elaboration on the SeMS and Risk Assessment methodologies. In particular for the SeMS tool the development of a SeMS assessment questionnaire that includes approximately 400-500 questions has been finalized. For the Risk Assessment Toll the parameters included in risk evaluation feasibility, target attractiveness, vulnerability and consequences were further refined. Fault Tree Analysis is being applied for risk estimation in a more quantitative way. The Risk Assessment methodology was applied for DEFSA OIP scenario.
• Organization and execution of a dedicated session “Security in Critical Infrastructures” during the end-users workshop (Athens, 19 October 2017), aiming at the evaluation and validation, by an extended end-user group, of ZONeSEC URs, Security Management Framework, SeMS and Risk Assessment methodologies. Positive feedback received from this event, indicates compliance of the ZONeSEC security framework with the expectations of end-user and serves as a means of validation.
• Broadly accepted methodological approach by an extended group of representatives/experts from various Widezone sectors, including oil and gas, motorway, energy, and telecommunication sectors, as well as other stakeholders/ bodies (e.g. (e.g. European Union Agency for Network and Information Security - ENISA, Centre for Security Studies - KEMEA, Department of Labour Inspection in Cyprus).
• Finalization of the use cases and KPIs. D2.2 ready for peer review.

For the Modular Sensing Platforms – Ground Systems the expected activities for the months M25-M36 o have been successfully fulfilled, most of the tasks (including the one for the development of the new sensing solutions and the one for ZONeSEC Security Clusters) have finished during this period. All these tasks have been progressing on a good track, and the results of them (novel Capillaries and Security Clusters) have been indeed tested in the meantime in On site integration pilot (OIP) that took place in Attikes Diadromes in Athens, Greece while final versions will be shown in DESFA’s premises during the next period. More specifically for the tasks finished in this period, the work has progressed quite well, and based on the preparation of early prototypes the final version of the different systems has finished during this period, and according to the project requirements as it has been shown during the OIPs. Similarly, task about Security Clusters has finished, with a clear roadmap for Security Clusters and a functional version tested and integrated with the rest of the system during On Site Integration Pilot (@Attikes Diadromes). Although the task is officially finished, partners are still pushing forward the developments, as the activity has required strong coordination and many iterations with other activities in the project in order to reach consensus and synchronize timings and development. Thanks to that successful cooperation, this task has provided good results even after its official end. Resulting in a clear concept and specification of what a ZONeSEC Security Cluster will provide, a technical design together with new and fully functional version of Security Cluster has been developed in the last months of this period, to be tested during DESFA’s OIP, including several improvements, like a whole distributed SDAIM component being able to trigger alerts from inside the Cluster.To sum up all activities are at its latest stage, and focusing now on the preparation of their systems for the final pilot demonstrations.
Regarding Modular Sensing Platforms – Airborne and Radar Systems the most important goal was the development of the MIMO radar sensor. The radar sensor has been integrated and is working. The radar signal processing has been extended by the functionality of providing velocity information of targets. First measurement campaigns have been conducted and are ongoing. Data is being shared between partners for the integration of the radar sensor into the overall ZONeSEC system.
The R&D, implementation and testing work in Large Scale Surveillance, Detection and Alerts Information Management is in an advanced stage and on track for its successful completion, with successfully implemented data and information fusion components, integrated into a coherent SDAIM sub-system, which was deployed as part of the whole ZONeSEC system and demonstrated during the OIPs at ATTIKES Diadromes, AQUASERV and DESFA. Our outlook for the work in the next period is to integrate the radar frequency bands modality in the low-level data fusion of the SDAIM and to focus on completing the work for the high-level information fusion CEP, and more specifically to support the final project year’s pilot scenarios.
The expected activities of Interoperable communications fabric and uniform data exchanges for M25-M36 of this work package were successfully performed. Partners were very active in updating the existing UCM modules and further develop, test and integrate new security capillaries Uniform Communication Modules and legacy systems. The first versions of security capillaries UCM modules were successfully tested during the ATTD OIP (Dec 2017) and AQS OIP (June 2017). The initial version of data model was refined and extended in order to facilitate the “tasking” functionality as well as the “response” functionality, the “enable-disable” functionality, the “status” functionality and “cluster” functionality. Testing sessions have been performed successfully prior to the On-Site Integration Pilot (OIP) at AQS and DESFA with all respective partners (owners of the security capillaries and end-users), in order to validate the communication between the UCM components developed and the security capillaries. All the UCM developments that were scheduled to be validated on ATTD OIP and AQS OIP were ready on time and were successfully tested. The first prototype of the cyber agents and DFI sensor has been developed, the ZONeSEC security services have been integrated into ZONeSEC Core, and data integrity, confidentiality and authenticity at UCM module layer has been tested based on DDS secure networking features.
During this year, the partners involved in Simulation framework for prototyping and improving situational awareness activities successfully researched, developed, and integrated foreseen features to provide the ZONeSEC system with a functional and integrated SIMISAW framework. The addition of new features and refinement of existing ones after each OIP to fulfil end-user expectations has been also performed.
For ZONeSEC Framework Design, Development and Integration activities during this period the main effort has focused on testing and integrating the architecture and all components during second OIP at AQUASERV premises for the first time. In addition, solving bugs and adding new features like Security, scalability, status, sensors ON/OFF, bidirectional orders, clusters (distributed processing) and others for the third and fourth OIPs have been defined and consolidated. Last but not least, integrating and testing architectures and new & improved features in preparation of the third and fourth OIPs were developed. All activities are on track without major issues being detected.
Pilot demonstrations and system validation campaigns are carried out according to the new plan (as per the official amendment). All partners are collaborating well with CPLAN in planning and implementing the on-site integration pilots. In preparation for the fourth and final OIP at DESFA’s premises, considerable progress has been made not only in terms of system performance but also in organizational matters. In particular:
• Successful execution of the second and third OIPs (at ATTD and AQS)
• Evaluation of individual system components at both events (through carousel stations);
• Evaluation of the performance of the system in its different stages of development (at ATTD and at AQS);
• Identification of key lessons for improving both system performance and organisational matters;
• Analysis and implementation of end-user feedback into the technical development process;
• New scenario for the fourth and final OIP at DESFA.

The Acceptance of Surveillance, Adaptive Ethics and Privacy model has significant advances and up until this refereeing period it was delivered most of the planned tasks, milestones and deliverables. To summarise the work of this activity the following performed within this project period 2:
• Literature review: Desk research has been carried out.
• Survey and creation of self-assessment tool: Questionnaires prepared and distributed to partners. Questionnaires returned by partners. First data analysis was carried out
• Ethics, privacy and data protection: Identification of main legal documents and regulations.
• Ethical Board composed, Independent Ethics Expert elected

Standardization and Regulatory Activities during the first half of the 3rd year of the project, have been possible to further elaborate the CWA business plan and examine various standards that can be separately used as a reference to various aspects of the CWA draft. All these preparation marks the beginning of the pre-normative activities that ZONeSEC will pursue with basic objective the development of interoperable solutions through the standardization concept of CWA. The collaboration with a very experienced subcontractor BSI affirms the successful outcome of the CWA procedure. Our better understanding of the exploitation potential of the project will also lead to the formulation of a “cookbook” of best practices for the adaptation of the PCP approach towards the secure technologies for surveillance in wide zones.
The involved partners have already developed a first version of the European Widezones Surveillance Reference Toolkit (EU-WSRT) with the focus during this period especially in the following aspects:
• SeMS Assessment administration, as well as the user section of completing the assessment is finalized and integrated into a common UMBRACO based environment.
• Implementation of the CMS solution is finalized.
• Single Sign On (SSO) solution with Umbraco and backend services of SeMS Assessment tool is realized.
• Critical Infrastructures (CI) Risk Assessment is finalized.
• Inference engine RnD is ongoing at a practical level (CEP) and working towards the finalized version of specification of the tool and its capabilities.

To summarize, the main outcomes of Awareness Raising and Exploitation Activities during this period, these are the following:
• Dissemination has been boosted during the period using many different ways. User base in social media (Linkedin and Tweeter) has been expanded.
• ZONeSEC’s official website is now periodically updated
• Exploitation has been started and already has preliminary drafts. Information for the exploitation documents have been extracted from final users (in the final user conference [M33] and the OIPs carrousels) and from partners.
• A clear strategy for the use of Radio dissemination (already used in other projects of Atos) has been set. The first step for this use will be a future press release created for the fourth OIP.
All activities are on track. No major issues have been found.

Potential Impact:
The proposed solutions in ZONeSEC aim at benefiting the European countries for transnational applications. Widezone infrastructure is shared across countries in Europe and thus it is imperative that ZONeSEC will create a robust and more importantly a scalable system which provides the same level of overview and situation awareness across all involved parties from different countries.
ZONeSEC will achieve this by:
i. Assessing the AS-IS situation, identifying the existing gaps and providing solid solutions to them.
ii. Driving standardization of proposed systems and prototypes.
iii. Defining a common ground for the surveillance of Widezones in different countries and covering diverse application domains for surveillance and security.
iv. Establishing a surveillance system of systems that will interoperate on accessing and delivering flow of information and knowledge for a large number and type of surveillance communities across countries.
v. Test and evaluate its capabilities in a transnational pilot application covering the needs of gas supplies with pipelines shared across PanEuropean countries.
Improving interoperability is also one of the main targets of the project.
The scalability of the system will be guaranteed by a strong backbone service infrastructure with an advanced knowledge base that enables the expansion system’s management of large volumes and heterogeneity of observation data and streams.
For nationally-contained crisis events the ZONeSEC platform will provide a solution that will be able to liaise seamlessly with the existing surveillance systems and infrastructure that are already in place; ZONeSEC will be adapted according to the existing national standards and processes, while at the same time keep an outlook for a pan-European uniform approach.
ZONeSEC will provide a system of systems with choreographed services for best performance across the whole geospace of the Widezones surveillance operations. Multi-national teams and first responders will participate through shared access to monitoring resources, detection and alerts. This increase in efficiency of operations along with the security of the involved personnel will assure the security of the citizens through advanced means of large scale disseminations of alerts.
ZONeSEC will also make use of the modern approaches in the standardization framework by following a double path aiming at pushing the adoption of new standards accommodating the results of ZONeSEC outcome: the conventional process through the Technical Committees of the European Standardization Organizations, namely CEN/CENELEC and ETSI, as well as the industrial-driven approach through the CEN/CENELEC Workshop Agreement and/or ETSI Industrial specifications. This prenormative process has been already demonstrated by the ZONeSEC partners as optimum option for the type of projects like ZONeSEC and it is a guarantee that the “typical never ending promise” of new standardization results, can be certainly achieved within the time frame of the research project by following the proposed approached of ZONeSEC. The ultimate goal is to support the creation of EU wide standards for secure technologies, processes and methodologies associated to monitoring, supervising, controlling Widezones.
ZONeSEC also envisages the creation of a level playing field for the European Industry by means of building on:
i. The accumulated knowledge and delivered results of numerous Research and Development projects.
ii. The deep understanding of the shortcomings and inefficiencies of currently employed systems.
iii. The mapping and ultimately bridging of the significant differentiating factors in the tackling of the Widezones surveillance issue among different countries and industries.
iv. The creation of the EU-WSRT that is a major deliverable of the proposed work.
v. The strong participation of the key Industrial players from the European Market (ATOS, EADS, THALES).
vi. The involvement of a representative set of end-users that bring to ZONeSEC the much needed diversity both in terms of technology, geography and domain of application.
vii. The capacity of leading research institutions from different European countries.
viii. The strong links with the standardizations bodies to ensure the creation of consistent and coherent approaches.
ix. The heavy investment in driving societal, ethical and regulatory research that will guarantee:
a. The acceptance of the proposed framework by the society.
b. Its alignment with the European agenda for the Security of the Citizens.
Finally, ZONeSEC will deliver value in a clearly monetizable manner as well. This will be mainly achieved in two fashions: 1) savings on damages avoided from the early detection of illicit activities and 2) cost savings and economies of scale on infrastructure by defining a common base line for the surveillance of Widezones in theEuropean Union.
ZONeSEC will be able to detect illicit activities that might lead to threatening circumstances, thus minimizing their impact on the economy. Accidents such as that of Natural gas pipeline, Ghislenghien (Belgium) 2004 or LPG pipeline near Ufa (USSR) 1989, can be reasonably expected to be prevented saving both human lives and avoiding disruptions in the local and national economies. Furthermore, ZONeSEC will enable cost savings at a greater scale since the surveillance needs of Widezones will be homogenized across EU-28. This can be seen in a four-fold manner:
i. ZONeSEC’s robust, modular and extensible architecture will allow all potential end-users to easily accommodate the required components, irrespective of the sophistication, size and complexity of their existing systems.
ii. The introduction of the DirectSIM framework from the military domain into civilian applications will provide an unprecedented ability to decision makers, to simulate available systems against different illicit activities and threats in view of assessing their suitability and performance before the any actual procurement.
iii. The harmonization of surveillance procedures and the establishment of a supporting interoperable framework will further promote cost savings especially in a cross-border and transnational perspective.
iv. Ensuring the ZONeSEC will be designed and operated in alignment to the European societal values and code of ethics, will reduce the vandalisation of its components as a result of non-conformance or non-acceptance.
vii. The capacity of leading research institutions from different European countries.
viii. The strong links with the standardizations bodies to ensure the creation of consistent and coherent approaches.
ix. The heavy investment in driving societal, ethical and regulatory research that will guarantee:
a. The acceptance of the proposed framework by the society.
b. Its alignment with the European agenda for the Security of the Citizens.
Finally, ZONeSEC will deliver value in a clearly monetizable manner as well. This will be mainly achieved in two fashions: 1) savings on damages avoided from the early detection of illicit activities and 2) cost savings and economies of scale on infrastructure by defining a common base line for the surveillance of Widezones in theEuropean Union.
ZONeSEC will be able to detect illicit activities that might lead to threatening circumstances, thus minimizing their impact on the economy. Accidents such as that of Natural gas pipeline, Ghislenghien (Belgium) 2004 or LPG pipeline near Ufa (USSR) 1989, can be reasonably expected to be prevented saving both human lives and avoiding disruptions in the local and national economies. Furthermore, ZONeSEC will enable cost savings at a greater scale since the surveillance needs of Widezones will be homogenized across EU-28. This can be seen in a four-fold manner:
i. ZONeSEC’s robust, modular and extensible architecture will allow all potential end-users to easily accommodate the required components, irrespective of the sophistication, size and complexity of their existing systems.
ii. The introduction of the DirectSIM framework from the military domain into civilian applications will provide an unprecedented ability to decision makers, to simulate available systems against different illicit activities and threats in view of assessing their suitability and performance before the any actual procurement.
iii. The harmonization of surveillance procedures and the establishment of a supporting interoperable framework will further promote cost savings especially in a cross-border and transnational perspective.
iv. Ensuring the ZONeSEC will be designed and operated in alignment to the European societal values and code of ethics, will reduce the vandalisation of its components as a result of non-conformance or non-acceptance.

List of Websites:
http://www.zonesec.eu/

Related information

Documents and Publications

Reported by

EXODUS ANONYMOS ETAIREIA PLIROFORIKIS
Greece

Subjects

Safety
Follow us on: RSS Facebook Twitter YouTube Managed by the EU Publications Office Top