PROTECTIVE, EU project to boost cyber-security, commences pilot operation verification


The European project PROTECTIVE has started verification of a system for automated cyber-security information sharing. The information exchange involves three national research and education networks: CESNET (Czech Republic), PSNC (Poland) and RoEduNet (Romania).

The objective of the first pilot operation is to test and assess the designed system. The greatest attention is paid to the system installation process in an organisation environment, connection of information sources and subsequent data connection among the nodes (so-called PROTECTIVE nodes), resulting in the desired automated sharing of security information.

Only basic data processing occurs in this phase. An emphasis is put on their statistical evaluation, visualisation and, most importantly, verification of their utility in the security process within the organisation. Advanced processing techniques, such as automated correlation of data from multiple sources, assessment of risks for a particular network or service, and prioritisation of messages based on various criteria, are planned for future phases of the project.

“The CESNET Association is involved mainly in the design of a system architecture for information sharing and intelligent data processing, and in the design of superstructure components for data and information processing. Another role of ours is testing of the system developed in the CESNET e-infrastructure environment and in the sphere of influence and responsibility of the accredited CESNET-CERTS security team. In the first pilot verification of the system functionality, we are one of the three entities that have implemented the PROTECTIVE system in their environment and become involved in the information exchange,” says Andrea Kropáčová, project coordinator on behalf of CESNET.

The CESNET Association has integrated the system among its current security tools and services. It engages the information that it receives thanks to the system in the incident handling process assured by the CESNET-CERTS security team. The information is validated there, its significance is evaluated and it is further processed.

“We perceive the system as a very useful service that could make the work of security teams more effective. At the same time, it should contribute new and interesting data and information to the security area,” Andrea Kropáčová adds.

Cyberattacks are one of the greatest threats today. Governments and institutions are therefore exerting considerable efforts for protection against them, frequently on an international basis. One activity of this type is the European project PROTECTIVE (Proactive Risk management through Improved Cyber Situational Awareness), which was launched in September 2016 and is to end in August 2019. It is a part of the EU Horizon 2020 framework programme for research and innovation. The PROTECTIVE project consortium is composed of three national research and education networks, including the CESNET e-infrastructure, and three additional academic institutions and four commercial partners from eight countries. The main objective of the project is to raise organisations’ level of information about the risk of cyber-security attacks by establishing a system for collection and processing of security-related data and information within an organisation and, last but not least, by sharing relevant information among the involved entities.

Sssaas

More details regarding the PROTECTIVE project can be found at: protective-h2020.eu/

 
Inapoi la lista