network and information security nis platform
play

Network and Information Security (NIS) Platform WG3 Secure ICT - PowerPoint PPT Presentation

Jun 27, 2023 •211 likes •392 views

Network and Information Security (NIS) Platform WG3 Secure ICT Research & Innovation Fabio Martinelli CNR Raul Riesco Granadino INCIBE (Chairs) NIS Platform WG3 Secure ICT Research & Innovation Outline WG3 Main deliverables

  1. Network and Information Security (NIS) Platform WG3 Secure ICT Research & Innovation Fabio Martinelli – CNR Raul Riesco Granadino – INCIBE (Chairs) NIS Platform WG3 Secure ICT Research & Innovation

  2. Outline WG3 Main deliverables • Secure ICT landscape • Business cases and innovation paths • Education and training • Strategic research agenda (SRA) WG3 next steps

  3. WG3 Main deliverables ( Second public version available ) https://resilience.enisa.europa.eu/nis-platform/shared-documents/wg3- documents Technolog logy driv iven (first public release Dec. 2014) (draft version Jan 2015/ first public release March 2015) https://resilience.enisa.europa.eu/nis-platform/wg3-secure-ict-research-and-innovation/shared- spaces/business-cases-and-innovation-paths/business-cases-and-innovation-paths-interim- version/view https://resilience.enisa.europa.eu/nis-platform/wg3-secure-ict-research-and- innovation/shared-spaces/the-strategic-research-agenda-sra/SRA-draft- 2.05.pdf/view (first public release Dec. 2014) https://resilience.enisa.europa.eu/nis-platform/wg3-secure-ict-research- and-innovation/shared-spaces/snapshot-of-education-training-landscape- for-workforce-development/Education-Training.pdf/view

  4. WG3 Steering Committee Strategic Research Agenda (Editors): Pascal Bisson, Thales Fabio Martinelli, CNR, Secure ICT Landscape (Editors): Raúl Riesco Granadino, INCIBE Mari Kert, EOS Area of Interest (AoI) - Leaders: Javier Lopez, U. Malaga Evangelos Markatos, FORTH AoI#1: Citizen Digital Rights and Capabilities Bart Preneel, KU Leuven (individual layer) Kai Rannenberg, Goethe University Gisela Meister, GI-DE Business cases (Editors): Zeta Dooly, WIT AoI#2: Resilient Digital Civilisation (I) Paul Kearney, BT (collective layer) Nick Wainwright, HP Jim Clarke, TSSG Education and training (Editors): Maritta Heisel, U. Duisburg Essen AoI#3: Trustworthy (Hyperconnected) Claire Vishek, INTEL Infrastructures (infrastructure layer ) Steffen Wendzel, U. Bonn Piero Corte, Engineering AoIs Cross analysis leaders: Volkmar Lotz, SAP Neeraj Suri, TU Darmstadt

  5. Work methodology and meetings Work in the Platform is carried out with the following principles in mind: • Be results-oriented and focused on impact • Be of value to the stakeholders • Follow a bottom-up and consensus building approach • Sharing of work load/ownership Several F2F WG3 meetings (usually each 4 months since the end of 2013)

  6. Deliverable: Secure ICT Landscape Structure: Basic technologies Metrics in cybersecurity, Authentication, Authorization and Access Control, System integrity - Antivirus – Goal: Antispyware, Cryptology, Audit and monitoring, Configuration Management and Assurance, Software security and secure software development, Hardware • Describe Current State of the and platform security, Network and mobile security, Cybersecurity threat technologies/ Offensive Art in Cyber Security technologies, Information Sharing technologies, Big Technologies and application data, Data Protection, PET domains Focus on Cloud/Internet of Things (IoT): • Identify the current treats and Models, current approaches and projects, open corresponding short term challenges Research Challenges Application Domains: e-Government, Energy-GRIDS, Smart transport/Automotive, Banking and finance, Smart cities, Telecommunications/ICT services, Dual use technologies, Food, Drinking water and water treatment systems, Agriculture, Cyber security awareness and training

  7. The Strategic Research and Innovation Agenda (SRA) NIS Platform WG3 Secure ICT Research & Innovation

  8. Goal • Define a strategic research and innovation agenda on cyber security • Start from the desired vision states (or Areas of Interest) we wish to achieve in 2020 • Consider not just technological, but also social, legal, business, and educational aspects

  9. SRA’s Areas of Interests ( AoIs) • Several concepts emerged during the meetings: • Citizen and people centric computing • Interconnected and vulnerable society • Privacy, security and civilization • Resilient infrastructure and services heavily depending on ICT • Multi-disciplinary skills, knowledge and awareness • Eventually summarized in 3 main areas of interest: • Individuals ’ Digital Rights and Capabilities ( Individual layer) • Resilient Digital Civilisation ( Collective layer) • Trustworthy (Hyperconnected) Infrastructures ( Infrastructure layer)

  10. Process Each area of interest has been investigated separately for • Identifying challenges, enablers/inhibithors (technical, policy, organizational) and research gaps • Those elements are useful to stakeholders mainly interested to one perspective After a cross analysis has been performed in order identify common emerging themes and possible divergences.

  11. AoI#1 Individuals ’ Digital Rights and Capabilities (Individual layer) Focus on: Scope: Technology: • Secure computing in untrusted platforms • Provision of a secure personal device based “Citizen centric view “ incorporating on a secure core • • Personal Identity Management how to design, manage, and • Sufficiently advanced security and privacy control network and information and communications technologies enablers together with user friendliness • Technologies, that reduce the chances and the • respecting privacy, freedom of impact of users giving up their privacy expression, safety • Policy-based technologies for improving • compliance enhancing technical aspects by • Easing engineering of complex systems social, legal and regulatory From a social, policy, regulatory point of view aspects of security and privacy • Demand and support user friendliness of Individuality includes technical and IT security interfaces • Provide Privacy in a heavily controlled world • respect for citizens and • Control of surveillance consumers • Assurance in the digital world • and transparency (without • Support for open source technology production intrusiveness) to be provided at and evaluation tools all times • Research on “trustworthiness/trust”

  12. AoI#2 – Resilient Digital Civilisation (collective layer) Focus on: Technology • Cryptography with high strength Scope: • Privacy protecting , yet trustworthy identification technologies Ensure trust in the digital • Transparency about who has data at all times form of (social) and knowledge of what it is being used for; institutions/organizations. • New forms of fraud protection for digital currency; • Organizations operate • Cyber forensics that will provide the user with under a whole series of strong security • Secure data channels obligations that include: • Secure shared computation environments • Security and dependability of Critical Information  regulation, contracts, Infrastructure protection (CIIP) societal norms, risk From a social, policy, regulatory point of view management, security, • Balancing the societal needs secure handling of • Stronger coordination and cohesion of the information and respect of stakeholders groups: fundamental rights of the • R&I undertakings and results catch up with customers/citizens . the faster requirements of the industry • Standardization

  13. AoI#3 Trustworthy (Hyperconnected) Infrastructures (Infrastructure layer) Focus on: Scope: • Global Hyperconnected vision, with main ICT as pervasive enabler in a world that is more and focus on: more highly • ICT interconnected • Energy/Smart Grids • • Transportation Provision of cyber security in order to avoid ICT as • Civil administration weaker point in the • Smart Cities security chain • Automotive • Study of the overall • Control systems for water, food relationships among • Healthcare infrastructures • Finance (Cyber Insurance) • …

  14. Common relevant themes (I) Assurance Focus on data Secure execution environments for everybody • • Security Engineering Data protection • • Secure devices for • Architecture and design Data centric policies everybody • Secure Coding and • User empowerment programming • over personal data Trustworthy personal devices eco systems • Testing and Verification • Accountability and • provenance Mobile devices operative • Security metrics system security • Operations on • … • encrypted data intrusion resilient systems • Certification • • Economic value of Human computer interface • Automated certification personal / business data security schemas • … • … • Standards for certification • • Data processing for Secure execution • … security environments • Cyber Insurance • • Highly scalable data Trusted cloud/IoT/network processing for situation services • Risk assessment awareness • Crypto for cloud (e.g. • Cost models • Privacy aware big data homomorphic encryption) • Economic models for analytics as well as for low cyber insurance resources devices • … • … • Secure communication • Secure virtualization • …

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Name: Thomas Flynn ID: 16117743 Course: Information & Network Security MEng Supervisor: Dr.

Name: Thomas Flynn ID: 16117743 Course: Information & Network Security MEng Supervisor: Dr.

Name: Thomas Flynn ID: 16117743 Course: Information & Network Security MEng Supervisor: Dr. Sean McGrath Project Title: Docker Containers Deployed Using Bluemix Containerization platform Platform as a service Integrates Docker Linux OS

470 views • 20 slides
What is network security? Friends and enemies: Alice, Bob, Trudy What is network security?

What is network security? Friends and enemies: Alice, Bob, Trudy What is network security?

Network security Network security Foundations: what is security? cryptography Network Security Network Security authentication message integrity key distribution and certification Security in practice: Srinidhi Varadarajan

332 views • 6 slides
Network Security Network Security Srinidhi Varadarajan Network security Network security

Network Security Network Security Srinidhi Varadarajan Network security Network security

Network Security Network Security Srinidhi Varadarajan Network security Network security Foundations: what is security? cryptography authentication message integrity key distribution and certification Security in practice:

634 views • 36 slides
Solsoft Network Security Change Management Platform Domenick Lionetti VP Sales and Business

Solsoft Network Security Change Management Platform Domenick Lionetti VP Sales and Business

Solsoft Network Security Change Management Platform Domenick Lionetti VP Sales and Business Development AGENDA Todays Netw ork Security Challenges Compliance Issues Customer Use Cases Solsoft Products and Company Summary of Benefits Q

583 views • 29 slides
Security Note: These slides are created using information from. Network Security Essentials by

Security Note: These slides are created using information from. Network Security Essentials by

Security Note: These slides are created using information from. Network Security Essentials by William Stallings Computer Networking, A top-down approach by James F.Kurose and Keith W.Ross Maximum Security by Anonymous Lectures and Notes from

489 views • 38 slides
Delegating Network Security with More Information with More Information {Stanford: [ Jad

Delegating Network Security with More Information with More Information {Stanford: [ Jad

Delegating Network Security with More Information with More Information {Stanford: [ Jad Naous , Ryan Stutsman, David Mazires, Nick McKeown,], MIT CSAIL: [Nickolai Zeldovich]} Context Roberto Alicia

542 views • 33 slides
Security in Malicious Environments: NSF Programs in Information-Theoretic Network Security Phil

Security in Malicious Environments: NSF Programs in Information-Theoretic Network Security Phil

Background Classical Tools Beyond Cryptography NSF Security in Malicious Environments: NSF Programs in Information-Theoretic Network Security Phil Regalia Program Director Directorate for Computer & Information Science & Engineering

552 views • 36 slides
HPE SecureData for Big Data Platform HPE Vertica Big Data Platform HPE Security Data

HPE SecureData for Big Data Platform HPE Vertica Big Data Platform HPE Security Data

HPE SecureData for Big Data Platform HPE Vertica Big Data Platform HPE Security Data Security February 2016 Data Security Impacts Design and Delivery of Big Data Projects Data Security frequently is a leading Role Security Impacts

545 views • 23 slides
Information flow control for the web Prof. Frank PIESSENS Overview The web platform Web

Information flow control for the web Prof. Frank PIESSENS Overview The web platform Web

Information flow control for the web Prof. Frank PIESSENS Overview The web platform Web script security: threats and countermeasures A formal model of web scripts Information flow security Secure multi-execution The

2.25k views • 131 slides
Economics of network security Harald Vranken 1 Economics of network security Note that

Economics of network security Harald Vranken 1 Economics of network security Note that

Advanced Network Security (2019-2020) Economics of network security Harald Vranken 1 Economics of network security Note that network in this lecture means Physical communication network (eg. Internet, telephony, fax, telegraph)

769 views • 49 slides
Security 101 Definition of Information Security Information security is the protection of

Security 101 Definition of Information Security Information security is the protection of

Computing Services Information Security Office Security 101 Definition of Information Security Information security is the protection of information and systems from unauthorized access, disclosure, modification, destruction or disruption. The

469 views • 22 slides
Intro, history, hacking Network Security Lecture 1 Welcome to Network Security Should be able

Intro, history, hacking Network Security Lecture 1 Welcome to Network Security Should be able

Intro, history, hacking Network Security Lecture 1 Welcome to Network Security Should be able to Skills identify design and Ability to analyze the implementation security of networked vulnerabilities in network systems protocols

564 views • 33 slides
N etwork safeguards are the first protec- tion barrier of IT sys- tem resources against

N etwork safeguards are the first protec- tion barrier of IT sys- tem resources against

ISSA Journal | October 2007 ISSA The Global Voice of Information Security The Principles of Network Security Design By Mariusz Stawowski Deployment of an effective and scalable network security system requires proper designing

320 views • 3 slides
CSE543 Computer and Network Security Module: Network Security Professor Patrick McDaniel Fall

CSE543 Computer and Network Security Module: Network Security Professor Patrick McDaniel Fall

CSE543 Computer and Network Security Module: Network Security Professor Patrick McDaniel Fall 204 1 CSE543 - Introduction to Computer and Network Security Page Networking Fundamentally about transmitting information between two (or more)

636 views • 47 slides
Victorian Protective Data Security Framework Victorian Information Security Network - VPS Forum

Victorian Protective Data Security Framework Victorian Information Security Network - VPS Forum

Victorian Protective Data Security Framework Victorian Information Security Network - VPS Forum December 2016 C ommissioner for P rivacy and D ata P rotection Introductions Pr Presenter esenter Commissioner Privacy and Data Protection David

415 views • 20 slides
Victorian Protective Data Security Framework Victorian Information Security Network PARTNERS

Victorian Protective Data Security Framework Victorian Information Security Network PARTNERS

Victorian Protective Data Security Framework Victorian Information Security Network PARTNERS Forum December 2016 C ommissioner for P rivacy and D ata P rotection Introductions Pr Presenter esenter Commissioner Privacy and Data Protection

363 views • 23 slides
Model Citizens Charter for the ULBs of Gujarat Prepared by Urban Management Centre Under the

Model Citizens Charter for the ULBs of Gujarat Prepared by Urban Management Centre Under the

Model Citizens Charter for the ULBs of Gujarat Prepared by Urban Management Centre Under the Performance Assessment System (PAS) Project Prepared by Urban Management Centre (UMC) August 2014 All photographs are by UMC unless otherwise

975 views • 68 slides
through Indigenous Self-Governance in BC, Canada By Elle Sina Raanes Srensen Wetsuweten

through Indigenous Self-Governance in BC, Canada By Elle Sina Raanes Srensen Wetsuweten

Indigenous Sovereignty: Redefining Colonial Perceptions of Sovereignty through Indigenous Self-Governance in BC, Canada By Elle Sina Raanes Srensen Wetsuweten 1) How do settler states assert sovereignty over Indigenous nations,

838 views • 8 slides
Legitimate processing & supervision INFORM DAY Mr. dr. Bart W. Schermer Chief Knowledge

Legitimate processing & supervision INFORM DAY Mr. dr. Bart W. Schermer Chief Knowledge

Legitimate processing & supervision INFORM DAY Mr. dr. Bart W. Schermer Chief Knowledge Officer schermer@considerati.com Principles of the fairness of processing (art. 5 GDPR) a) Processed lawfully, fairly and in a transparent manner ()

797 views • 41 slides
A Deeper Dive: Building Rubrics that Align and Inform Terri Swim, Associate Dean Luke Rodesiler,

A Deeper Dive: Building Rubrics that Align and Inform Terri Swim, Associate Dean Luke Rodesiler,

A Deeper Dive: Building Rubrics that Align and Inform Terri Swim, Associate Dean Luke Rodesiler, Assistant Professor, English/LA Isabel Nunez, Education Studies Dept Chair Map of Indiana with IPFW located Why assess? Have to (required by

489 views • 16 slides
Business Integrity Country Agenda (BICA) Report for Trinidad and Tobago (2018) Presented by Dr.

Business Integrity Country Agenda (BICA) Report for Trinidad and Tobago (2018) Presented by Dr.

Business Integrity Country Agenda (BICA) Report for Trinidad and Tobago (2018) Presented by Dr. Kamla Mungal Director, TTTI Current context of Trinidad and Tobago High levels of corruption T&T Global Competiveness Report 2018 Score:

955 views • 34 slides
PEOPLE FRIENDLY POLICE STATIONS Presentation by: DR. ISH KUMAR Director (Trg), BPR&D on

PEOPLE FRIENDLY POLICE STATIONS Presentation by: DR. ISH KUMAR Director (Trg), BPR&D on

PEOPLE FRIENDLY POLICE STATIONS Presentation by: DR. ISH KUMAR Director (Trg), BPR&D on 24.09.2013 at RPA, Jaipur 1 QUESTIONS TO BE ASKED / ANSWERED (1) Is Indian Police People friendly? (2) Is common man scared of Police? (3) Are Police

638 views • 36 slides
Wrangling in the Wild West! Creating a New Web Presence at UC Santa Cruz Todays Presenters

Wrangling in the Wild West! Creating a New Web Presence at UC Santa Cruz Todays Presenters

Wrangling in the Wild West! Creating a New Web Presence at UC Santa Cruz Todays Presenters Teresa Silva - UCSC Web Migration Lead WCMS Technical Trainer tasilva@ucsc.edu Leslie Geary - UCSC Web Service Manager WCMS Project Manager

534 views • 27 slides
Outdoors and Wellness Committee Meeting Minutes April 25, 2019 Present: Don Miles (co-chair,

Outdoors and Wellness Committee Meeting Minutes April 25, 2019 Present: Don Miles (co-chair,

Outdoors and Wellness Committee Meeting Minutes April 25, 2019 Present: Don Miles (co-chair, Sierra Club), Doug Royston (Mock Turtle), Henry Hernandez (Amerihealth Caritas), Sandra Van Ardenne (HALA), Connor Burbridge (Southside Backyard Gardens

437 views • 16 slides

More recommend