H2020 ATENA (Advanced Tools to assEss and mitigate the criticality of ICT compoNents and their dependencies over Critical InfrAstructures)
Description
Over recent years, IACS (Industrial and Automation Control Systems) and SCADA (Supervisory Control and Data Acquisition) systems adopted in Critical Infrastructures (CI), such as smart grids, water, oil and gas distribution networks, have become more complex due to the increasing number of interconnected distributed devices, sensors and actuators, often widely dispersed in the field, and the larger amount of information exchanged among system components. Such systems need to be flexibly and securely configured, monitored, and managed to prevent the in-creasing of risks due to both operational errors and cyber-attacks, including intrusions and malware that could compromise their operations or even result in disasters. With the emergence of the Internet of Things (IoT) generation of IACS, the boundaries of the protected infrastructures are growing well beyond the single or aggregated-plant, mono-operator vision. Instead of monolithic systems, deployed on geographically constrained spaces, these systems are characterize by a considerable degree of capillarity, being dispersed over wide geographic areas, with increasingly small coverage as they progress towards periphery. This poses new challenges because, as the boundaries of the IACS expand towards households, they in-volve several other operators, such as telecommunications or utility providers, in a scenario that naturally demands the introduction of multi-tenancy mechanisms. The new ICT paradigms, where virtualization is playing an important role (e.g., Software Defined Network-ing/Network Function Virtualization – SDN/NFV, Infrastructure as a service and Software as a service – IaaS, SaaS), provide interesting new features for flexibly and efficiently managing, monitoring and controlling devices and data traffic. Unfortunately, with the OT/IT convergence, OT (Operation Technologies) will benefit of the new features coming from IT, but will also inherit IT new threats that potentially can impact CIs. Therefore, in such in-creasingly sophisticated and networked scenarios, the current approach to Cyber Security for IACSs has to be im-proved with new tools and models capable to protect the whole value chain of a CI. To keep pace of escalating risk levels, while preserving efficient and flexible management of CIs, ATENA project aims at leveraging the outcomes from previous European Research activities, particularly from CockpitCI and MICIE EU projects and pushes at innovating them by exploiting advanced features of ICT and Cyber Security, to be tailored and validated in selected Use Cases, in order to be adopted at operational industrial maturity level. Within this aim, the project not only proposes an innovative and modernised logical framework with design improvements of role, operation, architecture, and security components for IACSs, exploiting also Software Defined Networking and Software Defined Security paradigms, but recommends equipment and algorithms devoted to patch already existing IACSs without the disruption of current services.Researchers
Paulo Simões (coordinator)
Nuno Antunes
João P. Vilela
Vasco Pereira
Marilia Curado
Filipe Caldeira
Tiago Cruz
Jorge Granjal
Jorge Sá Silva
Edmundo Monteiro
Fernando Boavida
Pedro Manuel Henriques da Cunha Abreu
Nuno Antunes
João P. Vilela
Vasco Pereira
Marilia Curado
Filipe Caldeira
Tiago Cruz
Jorge Granjal
Jorge Sá Silva
Edmundo Monteiro
Fernando Boavida
Pedro Manuel Henriques da Cunha Abreu
Partners
Leonardo, Sapienza SL, IEC, CREOS, SWDE, itrust, Multitel, ENEA, IBS, CRAT, University du Luxembourg, University of Roma Tre, University of CoïmbraKeywords
Critical Infrastructure SecurityStart Date
2016-05-01End Date
2019-05-01Journal Articles
2020
(1 publication)2019
(2 publications)- João Henriques and Caldeira, F. and Tiago Cruz and Simões, P. , "On the Use of Ontology Data for Protecting Critical Infrastructures", Journal of Information Warfare - ISSN 1445-3312 (print) / ISSN 1445-3347 (online), vol. 17, pp. 38-55, 2019
- Rosa, L. and Freitas, M.B.d. and Mazo, S. and Edmundo Monteiro and Tiago Cruz and Simões, P. , "A Comprehensive Security Analysis of a SCADA Protocol: from OSINT to Mitigation", IEEE Access (Open Access), 2019
2018
(5 publications)- Barbatsalou, K. and Tiago Cruz and Simões, P. and Edmundo Monteiro , "Current and Future Trends in Mobile Device Forensics: A Survey", ACM Computing Surveys, vol. 51, pp. 46, 2018
- C.Foglietta, . and Masucci, D. and Palazzo, C. and Santini, R. and Panzieri, S. and Rosa, L. and Tiago Cruz and Lev, L. , "From Detecting Cyber-Attacks to Mitigating Risk Within a Hybrid Environment", IEEE Systems Journal , 2018
- Adamsky, F. and Aubigny, M. and Battisti, F. and Carli, M. and Cimorelli, F. and Tiago Cruz and Giorgio, A.d. and C.Foglietta, . and Galli, A. and Giuseppi, A. and Liberati, F. and Neri, A. and Panzieri, S. and Pascucci, F. and Proença, J. and Pucci, P. and Rosa, L. and Soua, R. , "Integrated Protection of Industrial Control Systems from Cyber-attacks: the ATENA Approach", International Journal of Critical Infrastructure Protection - Elsevier, 2018
- Barbatsalou, K. and Tiago Cruz and Simões, P. and Edmundo Monteiro , "Mobile Forensic Data Analysis: Suspicious Pattern Detection in Mobile Evidence", IEEE Access (Open Access), vol. 6, pp. 59705-59727, 2018
- Graveto, V. and Rosa, L. and Tiago Cruz and Simões, P. , "A Stealth Monitoring Mechanism for Cyber-Physical Systems", International Journal of Critical Infrastructure Protection, 2018
2016
(2 publications)- Tiago Cruz and Simões, P. and Edmundo Monteiro , "Virtualizing Programmable Logic Controllers: towards a convergent approach", IEEE Embedded Systems Letters, ISSN (print): 1943-0663, ISSN (Electronic): 1943-0671 , 2016
- Tiago Cruz and Queiroz, R. and J. Proenca and Simões, P. and Edmundo Monteiro , "Leveraging Virtualization Technologies to Improve SCADA ICS Security", Journal of Information Warfare. Vol. 15, No. 3 (2016), pp. 81-100 - ISSN 1445-3312 (print)/ISSN 1445-334, vol. 15, 2016
Conference Articles
2019
(2 publications)- Craveiro, A. and Oliveira, A. and Proença, J. and Tiago Cruz and Simões, P. , "A Framework for Improved Home Network Security", in 18th European Conference on Cyber Warfare and Security (ECCWS 2019), Coimbra, Portugal, 4-5 July 2019, 2019
- Martins, N. and Cruz, J.M. and Tiago Cruz and Pedro Henriques Abreu , "Analysing the Footprint of Classifiers in Adversarial Denial of Service Contexts", in in Proc of 19th EPIA Conference on Artificial Intelligence, Vila Real, Portugal, September 3rd-6th, 2019, 2019
2018
(3 publications)- João Henriques and Caldeira, F. and Tiago Cruz and Simões, P. , "On the Use of Ontology Data for Protecting Critical Infrastructures", in in Proc. of ECCWS 2018 - 17th European Conference on Cyber Warfare and Security (Publishers: ACPI, UK). ISBN: 978-1-911218-85-2, 2018
- Frazão, I. and Pedro Henriques Abreu and Tiago Cruz and Araújo, H. and Simões, P. , "Denial of Service Attacks: Detecting the frailties of machine learning algorithms in the Classication Process", in 13th International Conference on Critical Information Infrastructures Security (CRITIS 2018), ed. Springer, Kaunas, Lithuania, September 24-26, 2018, Springer series on Security and Cryptology , 2018
- Freitas, M. and Rosa, L. and Tiago Cruz and Simões, P. , "SDN-enabled virtual data diode", in 4th ESORICS Workshop On The Security Of Industrial Control Systems & Of Cyber-Physical Systems (CyberICPS 2018) , 2018
2017
(4 publications)- J. Proenca and Tiago Cruz and Simões, P. and Gaspar, G. and Parreira, B. and Laranjeira, A. and Bastos, F. , "Building an NFV-Based vRGW: lessons learned", in 14th IEEE Consumer Communications and Networking Conference (CCNC 2017), 2017
- Rosa, L. and Tiago Cruz and Simões, P. and Edmundo Monteiro and Lev, L. , "Attacking SCADA systems: a practical perspective", in IFIP/IEEE International Symposium on Integrated Network Management 2017, 2017
- Rosa, L. and J. Proenca and João Henriques and Graveto, V. and Tiago Cruz and Simões, P. and Caldeira, F. and Edmundo Monteiro , "An evolved security architecture for distributed Industrial Automation and Control Systems", in In Proc. of 16th European Conference on Cyber Warfare and Security (ECCWS 2017). ISBN: 978-1-911218-43-2, 2017
- Konstantia Barbatsalou, Konstantia Barmpatsalou and Tiago Cruz and Edmundo Monteiro and Simões, P. , "Fuzzy System-based Suspicious Pattern Detection in Mobile Forensic Evidence ", in Digital Forensics and Cyber Crime. 9th EAI International Conference on Digital Forensics & Cyber Crime, ICDF2C 2017. Lecture Notes of the Institute for Computer Sciences, Social Informatics and Telecommunications Engineering, , 2017