MIRANDA - Monitoring, Investigation and Response to cyber-attacks with an Adaptive digital twiN moDel for Agile services over the computing continuum
Durata:
Responsabile scientifico:
Tipo di progetto:
Ente finanziatore:
Codice identificativo progetto:
Ruolo PoliTo:
Abstract
The growing level of interconnectedness of digital services and infrastructures creates tight and recursive security interdependencies between their providers, which are challenging to address due to the fragmentation of cybersecurity operations. This requires each provider to improve the security posture of its suppliers; however, existing practice largely based on human interaction for disclosing vulnerabilities, reporting alerts, and suggesting remediations demonstrates to be largely ineffective and risky. The MIRANDA project aims at operationalising awareness and remediation controls for service supply chains, by addressing feasibility, acceptance, and compliance issues. To this purpose, MIRANDA develops a Cybersecurity Digital Twin (CDT) to model and capture the security posture of such interconnected systems, which is used to detect, hunt, and remediate threats and attacks. The CDT will feature: i) functional and topological representation of digital services; ii) bidirectional control/monitoring data flow with real systems; iii) modelling and behavioural prediction of individual components and whole systems; iv) opaque representation of suppliers’ assets based on confidentiality and privacy requirements. The framework also encompasses the necessary security controls to safely exchange data and controls between providers. On top of the CDT abstraction, MIRANDA builds adaptive and automated processes for threat hunting, detection of lateral movements, and eradication of the root causes of attacks. Validation of individual components and the overall MIRANDA platform will be conducted in three relevant Use Cases, covering different platforms for Smart City services. The purpose will be to demonstrate the adaptability to the evolving context and the effectiveness to stop latest-generation of AI-powered attacks and lateral movements across digital chains. The Project will also consider the new business and operational models that are required to run the platform.
Strutture coinvolte
Partner
- AUSTRIAN INSTITUTE OF TECHNOLOGY GMBH
- C.N.R. - CONSIGLIO NAZIONALE DELLE RICERCHE - Coordinatore
- DIMOS ATHINAION EPICHEIRISI MICHANOGRAFISIS
- LOGSTAIL
- Mindicity s.r.l. S.B.
- NAUKOWA I AKADEMICKA SIEC KOMPUTEROWA - PANSTWOWY INSTYTUT BADAWCZY
- ONE SOURCE CONSULTORIA INFORMATICA LDA
- Plaixus Limited
- POLITECNICO DI TORINO - AMMINISTRAZIONE CENTRALE
- SPACE HELLAS ANONYMI ETAIREIA SYSTIMATA KAI YPIRESIES TILEPIKOINONIONPLIROFORIKIS ASFALEIAS - IDIOTIKI EPICHEIRISI PAROCHIS YPERISION ASFA (SPH)
- SPHYNX ANALYTICS LIMITED
- STELAR SECURITY TECHNOLOGY LAW RESEARCH UG
- UBITECH - GIOUMPITEK MELETI SCHEDIASMOS YLOPOIISI KAI POLISI ERGON PLIROFORIKIS ETAIREIA PERIORISMENIS EFTHYNIS
- WOBCOM GMBH WOLFSBURG FUR TELEKOMMUNIKATION UND DIENSTLEISTUNGEN
Parole chiave
Settori ERC
Budget
Costo totale progetto: | € 7.308.925,00 |
---|---|
Contributo totale progetto: | € 5.990.612,50 |
Costo totale PoliTo: | € 492.500,00 |
Contributo PoliTo: | € 492.500,00 |