Proje Geliştirme ve
Koordinasyon Birimi

2015-06-12 Portugal: Security Decision Support for Computer Systems

Security Decision Support for Computer Systems

Description of the project offered: 
This project is based on the development of a web platform to centralize, structure and facilitate the visualization of network and operating system (OS) information and discovery of threats.
The network/OS activities are collected through software sensors that are installed at key locations on the monitored network. With these information it shall be possible to automatically quantify and qualify the activity (infer the degree of danger to the system and the systems compromised).

This project foresee the development of a visualization sensor that is able to capture the real computer's activity without being detectable by the user of the virtual machine (virtual machine introspection), a network sensor based, an intelligent algorithm based on patterns and a web based dashboard.

This will allow to create a geo-distributed network of machines and collectively learn from the attacks and more importantly help detect and resolve zero day exploits.

The idea with this project is to transform this network monitoring system in a global network, allowing the user of the product to monitor their real critical systems in real time and ensure that the information regarding the attack will be shared with other machines. This will allow for a machine in Germany to learn and prepare for problems that were discovered in another geography.

It will also be important to develop an intelligent system based on patterns that can quickly identify activities with few false positives.
Project proposer:   Mario Ulisses Costa (Portugal)
Partner role:  Project participant 
Partner organisation:  Small or medium-sized enterprise (SME)
Call for proposal title:  Digital Security: Cybersecurity, Privacy and Trust 
Call for proposal identifier:  H2020-DS-2015-1