ANASTACIA

Advanced Networked Agents for Security and Trust Assessment in CPS/IoT Architectures

www.anastacia-h2020.eu

The heterogeneous, distributed, and dynamically evolving nature of Cyber Physical Systems (CPS) based on Internet of Things (IoT) and virtualised cloud architectures introduces new and unexpected risks that cannot be solved by current state-of-the-art security solutions.

For this, new paradigms and methods are required in order i) to build security into the ICT system at the outset, ii) to adapt to changing security conditions, iii) to reduce the need to fix flaws after deploying the system, and iv) to provide the assurance that the ICT system is secure and trustworthy at all times..

The main objective of the ANASTACIA  project is to address these concerns by researching, developing and demonstrating a holistic solution enabling trust and security by-design for cyber Cyber physical Physical systems Systems (CPS) based on IoT and cloud architectures.

To this end, ANASTACIA will develop a trustworthy-by-design security framework which will address all the phases of the ICT Systems Development Lifecycle (SDL) and will be able to take autonomous decisions through the use of new networking technologies such as Software Defined Networking (SDN) and Network Function Virtualisation (NFV) and intelligent and dynamic security enforcement and monitoring methodologies and tools.

The ANASTACIA framework will include:

  • a security development paradigm based on the compliance to security best practices and the use of the security components and enablers (this will provide assisted security design, development and deployment cycles to assure security-by-design);
  • a suite of distributed trust and security components and enablers, that are able to dynamically orchestrate and deploy user security policies and risk-assessed resilient actions within complex and dynamic CPS and IoT architectures (online monitoring and testing techniques will allow more automated adaptation of the system to mitigate new and unexpected security vulnerabilities);
  • a holistic Dynamic Security and Privacy Seal, combining security and privacy standards and real time monitoring and online testing (this will provide quantitative and qualitative run-time evaluation of privacy risks and security levels, which can be easily understood and controlled by the final users).

The ultimate challenge of ANASTACIA is to provide a solution for addressing the increasing vulnerability of today's ICTs, based on smart, highly connected and dynamic CPS, by leveraging the same dynamic distributed and connected environment to enact smart security planning, enforcement and monitoring strategies.

The overarching vision of ANASTACIA is the development of a trustworthy-by-design autonomic security framework that allows testing, validating and optimizing security, from design to deployment and maintenance. The framework relies on diverse enablers to dynamically orchestrate and deploy user security preferences, facilitate the deployment of local agents, and enforce security in heterogeneous scenarios including those based on SDN/NFV and Internet-of-Things (IoT) networks. ANASTACIA will facilitate the testing and vulnerability analysis of the deployed components with simple and user-friendly security policy tools.

The ANASTACIA framework consists of a set of planes:

  • the data plane that establishes network communication between ANASTACIA components;
  • the control plane that manages the resource usage and real-time operation of the services;
  • the autonomic plane that enforces security mechanisms and real-time reconfiguration and adaptation of the services;
  • the user plane that provides interfaces and tools to end-users for policy definition, service monitoring and management; and
  • the seal management plane that combines security and privacy standards with real time monitoring.

The ANASTACIA framework provides self-protection, self-healing and self-repair capabilities through novel enablers and components. It is able to dynamically orchestrate and deploy security policies and actions that can be instantiated on local agents. Thus, security can be enforced in different kinds of devices and heterogeneous networks, e.g., IoT- or SDN/NFV- based networks. The ANASTACIA framework is designed in full compliance to SDN/NFV standards as specified by ETSI NFV and OFN SDN, respectively.

SOFTECO SISMAT SRL

THALES COMMUNICATIONS & SECURITY SAS

OY L M ERICSSON AB

ATOS SPAIN SA

UNITED TECHNOLOGIES RESEARCH CENTRE IRELAND, LIMITED

UNIVERSIDAD DE MURCIA

MONTIMAGE EURL

CONSIGLIO NAZIONALE DELLE RICERCHE

AALTO-KORKEAKOULUSAATIO

GIOUMPITEK MELETI SCHEDIASMOS YLOPOIISI KAI POLISI ERGON PLIROFORIKIS ETAIREIA PERIORISMENIS EFTHYNIS

MANDAT INTERNATIONAL ALIAS FONDATION POUR LA COOPERATION INTERNATIONALE

ODIN SOLUTIONS S.L.

DEVICE GATEWAY SA

ARCHIMEDE SOLUTIONS SARL

Under construction
Under construction
Under construction

Marco Boero


Stefano Bianchi

Know how - eWork

Synopsis

Programme
Horizon 2020

Call
H2020-DS-LEIT-2016

Topic
DS-01-2016 - Assurance and Certification for Trustworthy and Secure ICT systems, services and components

Grant agreement
N° 731558

Start date
January 2017

Duration
36 months

Coordinator
Softeco Sismat

Flyer

Not available yet, sorry!