C3ISP mission is to define a collaborative and confidential information sharing, analysis and protection framework as a service for cyber security management. C3ISP innovation is the possibility to share information in a flexible and controllable manner inside a collaborative multi-domain environment to improve detection of cyber threats and response capabilities, still preserving the confidentiality of the shared information. C3ISP paradigm is collect, analyse, inform, and react. In order to achieve the aforementioned goals, the project aims to create an efficient and flexible framework for secure data analytics where data access and data analytics operations are regulated by multi-stakeholders data sharing agreements. In particular, C3ISP will: • facilitate the definition, analysis, management, enforcement and dissolution of data sharing agreements; going from high level descriptions (close to natural language) to system enforceable data usage policies; • consider the most appropriate data protection techniques used in the analytics infrastructure, from data centric policy enforcement mechanisms to homomorphic encryption techniques that enable to work directly on encrypted data (considering also intermediate solutions as anonymization techniques); • address key challenges for compliant sharing of cyber security related information. By taking a “compliance by design” approach, the project places an early emphasis on understanding and incorporating regulatory requirements into the data sharing agreements. • validate the framework through four Pilots covering several relevant areas as enterprise security, governmental CERTS, Internet Service Providers (ISPs) and, in particular, for SMEs interested in holistic cyber protection solutions (including managed security services). The project Consortium combines strong industry players with research institutions that will deliver high quality innovation; it also includes SMEs and digital innovation promoters.

E-CORRIDOR aims at providing a flexible, secure and privacy aware framework allowing confidential, distributed and edge enabled security services, as threat analysis and prevention as well as privacy aware seamless access mechanism in multi-modal transport systems. Cyber attacks influence is growing in our everyday life, indeed the targets become our mobiles devices, our bank accounts or our new electric and autonomous vehicles. The need for protection of the cyber world which often has a significant convergence with the physical one, requires that both cyber and safety aspects must be managed together. Increased amount of information (and collaboration) allow for better prediction and management of cyber attacks. However, when sharing information, one wishes to retain control of the information, even when this information is shared for prediction of vulnerabilities of just for accessing systems (e.g. a transport one). There is the need and the opportunity to unleash the power of sharing. E-CORRIDOR’s mission is to define a framework for multi-modal transport systems, which provides secure advanced services for passengers and transport operators. The framework includes collaborative privacy-aware edge-enabled information sharing, analysis and protection as a service. The project plans to show the applicability of this framework in at least two domains: (i) collaborative and confidential cyber threat management and (ii) seamless access mechanism in multimodal transport systems.

Cyber threats are the most significant and growing risk for public administrations (PA). However, technological, organisational and structural issues hamper the ability, especially for local PAs (LPAs) to improve their cyber security level. Budget constraints and evolving legal, ethical, societal and privacy regulations render the situation even more complex. COMPACT’s goal is to empower local LPAs to become the main actors of their cyber-resilience improvement process. COMPACT’s objectives are to 1) increase awareness, skills and protection; 2) foster information exchange between European LPAs; 3) link LPAs to major EU initiatives, including the newly created cyber-security private-public partnership. COMPACT innovates at technological level and at process level – an important dimension in engaging LPA employees in the improvement of cyber-resilience. At technological level, COMPACT innovates in real time security monitoring, security awareness training, information sharing, cyber-security gamification, risk assessment, and threat intelligence. At process level, COMPACT adapts the Plan-Do-Check-Act cycle for LPAs to do iterative removal of security bottlenecks and achieve compliance to EN ISO/IEC 27001 and BS ISO/IEC 27005. COMPACT delivers an integrated platform with 4 types of tools/services – 1) risk assessment, 2) education, 3) monitoring, and 4) knowledge sharing – characterized by a high degree of usability by non IT experts and automation. It protects LPAs’ investments by interoperating with market solutions from major vendors. It eases deployment and adoption by being both cloud-enabled (i.e. it addresses cloud specific issues) and cloud-ready (i.e. it can be deployed – if users wish– on the cloud). COMPACT validates its results through 5 challenging use cases provided by 5 users in 4 European countries. 90% of COMPACT solutions will achieve TRL7 and the residual part TRL6.

Communications play a fundamental role in the economic and social well-being of the citizens and on operations of most of the CIs. Thus they are a primary target for criminals having a multiplier effect on the power of attacks and providing enormous resonance and gains. Also extreme weather events and natural disasters represents a challenge due to their increase in frequency and intensity requiring smarter resilience of the Communication CIs, which are extremely vulnerable due to the ever-increasing complexity of the architecture also in light of the evolution towards 5G, the extensive use of programmable platforms and exponential growth of connected devices. The fact that most enterprises still manage physical and cyber security independently represents a further challenge. RESISTO platform is an innovative solution for Communication CIs holistic situation awareness and enhanced resilience (aligned with ECSO objectives). Based on an Integrated Risk and Resilience analysis management and improvement process availing all resilience cycle phases (prepare, prevent, detect, absorb, etc.) and technical resilience capabilities (sense, model, infer, act, adopt), RESISTO implements an innovative Decision Support System to protect communication infrastructures from combined cyber-physical threats exploiting the Software Defined Security model on a suite of state of the art cyber/physical security components (Blockchain, Machine Learning, IoT security, Airborne threat detection, holistic audio-video analytics) and services (Responsible Disclosure Framework) for detection and reaction in presence of attacks or natural disasters. Through RESISTO Communications Operators, will be able to implement a set of mitigation actions and countermeasures that significantly reduce the impact of negative events in terms of performance losses, social consequences, and cascading effects in particular by bouncing efficiently back to original and forward to operational states of operation.

In the domain of Cybersecurity Research and innovation, European scientists hold pioneering positions in fields such as cryptography, formal methods, or secure components. Yet this excellence on focused domains does not translate into larger-scale, system-level advantages. Too often, scattered and small teams fall short of critical mass capabilities, despite demonstrating world-class talent and results. Europe’s strength is in its diversity, but that strength is only materialised if we cooperate, combine, and develop common lines of research. Given today’s societal challenges, this has become more than an advantage – an urgent necessity. Various approaches are being developed to enhance collaboration at many levels. Europe’s framework programs have sprung projects in cybersecurity over the past thirty years, encouraging international cooperation and funding support actions. More recently, the Cybersecurity PPP has brought together public institutions and industrial actors around common roadmaps and projects. While encouraging, these efforts have highlighted the need to break the mould, to step up investments and intensify coordination. The SPARTA proposal brings together a unique set of actors at the intersection of scientific excellence, technological innovation, and societal sciences in cybersecurity. Strongly guided by concrete and risky challenges, it will setup unique collaboration means, leading the way in building transformative capabilities and forming world-leading expertise centres. Through innovative governance, ambitious demonstration cases, and active community engagement, SPARTA aims at re-thinking the way cybersecurity research is performed in Europe across domains and expertise, from foundations to applications, in academia and industry.