A EUROPEAN CYBER RESILIENCE FRAMEWORK WITH ARTIFICIAL INTELLIGENCE-ASSISTED ORCHESTRATION & AUTOMATION FOR BUSINESS CONTINUITY, INCIDENT RESPONSE & INFORMATION EXCHANGE
Challenge
As digital technologies become more pervasive in society and the economy, cybersecurity incidents become more frequent and diversified. ENISA’s Threat Landscape for 2020 has highlighted that during the coming decade “cybersecurity risks will become harder to assess and interpret due to the growing complexity of the threat landscape, adversarial ecosystem and expansion of the attack surface” . It has also reported an increase in sophisticated and targeted attacks in critical domains (e.g., energy, healthcare), and an increased prevalence of hybrid threats, i.e., threats combing both the cyber and the physical domains. Hence, threats in cyberspace endanger the European long- term objectives (e.g., the Digital Single Market that aims to enhance Europe's position as a world leader in the digital economy), and our democracies and freedoms. The importance of preparedness, shared situational awareness, and coordinated incident response are essential not just for effective crisis management and cybersecurity resilience, but also for driving strategic and political decisions that will effectively tackle threats that threaten the well-being of the European Union.
PHOENi2X aims to design, develop, and deliver a Cyber Resilience Framework providing Artificial Intelligence (AI) - assisted orchestration, automation & response capabilities for business continuity and recovery, incident response, and information exchange, tailored to the needs of Operators of Essential Services (OES) and of the EU Member State (MS) National Authorities entrusted with cybersecurity.
Objectives
To provide trustworthy AI-assisted Situational Awareness & Prediction capabilities, with risk impact assessment, facilitating prioritisation, recommendation and adaptation of system response.
To design & develop Resilience Orchestration, Automation and Response mechanisms, encompassing proactive and reactive business continuity, recovery and incident handling tasks.
To offer enhanced Preparedness through a Resilience Cyber Range and Serious Games.
To provide Alerting, Reporting & Information Exchange mechanisms & processes enabling collaboration between private and public critical sector actors at the national and European level.
To integrate, demonstrate, and validate PHOENi2X in the context of 3 Essential Service use cases (Energy, Transport, Health) involving two OES, a provider in the supply chain of an OES, a Telecom Operator and two National Cybersecurity Authorities.
To maximise the project’s impact and results’ uptake, creating an open & sustainable solution.
Our Role
Eunomia Ltd is responsible for the ethics, legal and regulatory aspects, including GDPR compliance, within the project. More specifically, Eunomia Ltd will contribute mainly in the analysis and articulation of the ethics and privacy requirements, ensuring that the envisioned research satisfies all the ethical requirements.