Security Oriented Nexus for Intelligent Commodity solutions marketplace

Challenge

The rapid evolution of technologies such as Artificial Intelligence, Big Data, High-Performance Computing, and advanced networking is shaping a new architectural framework for computing infrastructure architectures. This creates a rich environment for the design and deployment of robust security mechanisms capable of providing resilience against cyber threats. Cyber Threat Intelligence (CTI) technologies represent a viable approach for strengthening the cybersecurity posture of modern infrastructures against both current and emerging threats.

However, traditional CTI approaches face significant limitations due to the growing complexity and heterogeneity of today’s computing environments. Operators are often required to deploy and manage multiple solutions to address a diverse and evolving set of security challenges. Even minor variations in system configurations can necessitate different methodologies and tools, making security management increasingly difficult. For example, systems may differ in software and hardware architectures, rely on custom network protocols, or incorporate machine-learning capabilities using proprietary models. Protecting such heterogeneous systems requires operators to assemble and maintain a collection of tools that are compatible with each specific environment.

To address this challenge, SONIC introduces a novel smart marketplace that brings together a wide range of security tools and technologies to assist operators in resolving security issues. Solutions are provided as dockerized images, and the platform intelligently selects and delivers the most compatible images based on the characteristics of the target system.

Beyond enhancing existing CTI capabilities, SONIC’s smart marketplace will complement them with innovative tools and technologies that leverage recent technological advances. This approach will enable a multi-faceted, adaptable solution set that is better aligned with the demands of the modern cyber-threat landscape.

Objectives

To develop and deliver a sophisticated CTI solution integrating mature tools for accurate infrastructure bookkeeping, interoperable integration and automation capabilities with SIEM and SOAR platforms to promptly detect and mitigate incidents via security policy-driven response capabilities.

To develop and deliver an advanced Monitoring and Response solution that leverages AI for behavioural analysis, anomaly detection and accurate affected component identification and neutralisation of emerging attacks.

To develop and deliver a modular malware analysis environment that leverages machine learning in order to identify malicious behaviour through code analysis and system interaction.

To develop and deliver a vulnerability management toolkit that incorporates penetration testing, fuzzing and AI for enhanced efficiency and coverage.

To develop and deliver SONIC Forensic Visualization toolkit for more effective and intuitive incident investigation.

To design, develop and deliver a suite of algorithms for privacy preserving data harnessing.

To implement the SONIC online marketplace, which will be designed to the needs of cybersecurity actors, by hosting the complete set of SONIC technologies and interfacing them in the form of dockerized Network Applications with openness to integrate additional proprietary cybersecurity solutions set by the end-user. The marketplace will also have the capacity to articulate and adapt additional proprietary solutions in the form of Network Applications set by the end-user.

Our Role

Eunomia Ltd will lead the tasks related to ethics and regulatory compliance, with a particular focus on AI-based solutions. Throughout the project lifecycle, Eunomia will ensure regulatory compliance and the integration of ethical AI principles, guaranteeing that all project outputs adhere to relevant EU mandates and directly shaping the project’s marketplace to recommend compliant and ethically sound solutions.