PROJECT TITLE

SANCUS: analysis software scheme of uniform statistical sampling, audit and defence processes

ABOUT THIS PROJECT

SANCUS project aims at supporting the EU mission of protecting the next generation of Information and Communications Technology (ICT) networks by proposing an analysis software scheme of uniform statistical sampling, audit and defense processes. SANCUS provides a platform for measuring network cybersecurity and privacy performance explicitly, flexibly, automatically and agnostically. In order to realise the heterogeneity of the security and privacy levels across the system network and its supply chain, the proposed scheme combines unique modelling of the Internet of Things units, cutting‐edge methods for automated firmware and software validation and verification, and innovative Artificial Intelligence-driven game techniques for the automated optimisation of the control and trust of digital services.

The project effectuates its concept by a synergistic amalgamation of three emerging topics of research:

• the formalisation of the logic towards standardising the highly abstracted notions of cybersecurity and privacy as network performance measures by introducing a new inclusive Key Performance Indicator (KPI) metric, namely, the security‐vs‐privacy‐vs‐reliability efficiency trade‐off,
• the design and development of automated security validation and verification solutions using new analysis methods with improved accuracy and efficiency for extracting ground‐truth risk evidence from both the code‐ and network‐level perspectives, and
• the establishment of intelligent game-theoretic decision‐making frameworks to facilitate automated cybersecurity optimisation and truly optimal defence recommendations subject to risks and vulnerabilities assessments in firmware, applications, network architectures and ICT deployment environments.

Extended evaluations of the project outcomes are considered by means of developing a contemporary network testbed prototype built on the latest 5G and cloud‐native system setting. The SANCUS scheme is delivered as an integrated software suite, while three pilot use cases demonstrate the scheme performance across the Firmware, Virtualisation and Management software layers.

8BELLS ROLE

8BELLS contributes by identifying and classifying security concerns in the OEM supply chain, and also by studying the various connectivity approaches in the scope of 5G cloud-native system network. Furthermore, 8BELLS contributes to the digital security in the cloud-native core services and also to the final integration, validation and demonstration of the project outcomes.