FISHY: Leveraging state-of-the-art solutions to resilient complex ICT systems
The FISHY project provides end-to-end protection of the whole infrastructure linked to a supply chain.
In doing so, it covers the complete cybersecurity cycle from monitoring and detection to mitigation and response, aiming at a close-to-automated approach for those responses. In order to implement the proposed FISHY platform, the project leverages innovative technologies and concepts like the dynamic reconfiguration of networks, distributed ledgers, intent-based networking, SDN or NFV.
There are three main areas of innovation:
- Intent-based resilience orchestration to advance network automation, orchestration, and control functionalities while maintaining friendly user interaction;
- Security Assurance and Certification Management, focusing on the creation, updating, and exploiting of current evidence-based evaluation and certification strategies for the assurance posture of ICT systems, and
- Intrusion detection systems, focus on using supervised and unsupervised machine learning algorithms to detect known attacks as well as Zero-Day attacks.
The FISHY project can make a difference to potential end-users by guaranteeing data security; ensuring data sharing with external entities and cybersecurity of IoT devices, as well as edge and cloud infrastructures; easing management of evidence produced by monitoring and assistance with compliance to certification standards; automating response to cyber incidents; and with a front-end designed to support the specific needs inherent to heterogeneous and diverse supply chain scenarios also supporting the hybrid model, within a modular architecture.
Key assets: contributing to the European open source software initiatives
FISHY will contribute to making a leap forward regarding the state-of-the-art of protection of supply chains against cyber incidents. The project is very rich considering the number of research areas open and its application potential, as well as the prospective market envisioned for them.
SMEs will push for affordable solutions with flexible business models and pricing schemas.
The EC is very focused on the societal aspect, for which FISHY is clearly relevant, diminishing the consequences of cyber incidents in business, especially SMEs with fewer resources, avoiding closing down businesses, and protecting their reputation. Finally, FISHY contributes to the protection of critical infrastructures, on which the welfare of citizens heavily depends.
"FISHY proposes a modular, extensible, adaptable and evidence-based programmable framework that, leveraging innovative technologies, can flexibly orchestrate the whole set of ICT systems and security controls within a supply chain." Xavi Masip (UPC, Professor, FISHY Technical Coordinator).
Here are the key assets of the FISHY project, contributing to the European open source software initiatives:
- A standardised API for network infrastructure abstraction;
- A set of extensions for xOpera, a lightweight orchestrator compatible with the OASIS TOSCA standard; these extensions enable intent-based orchestration of security devices, services and appliances;
- a blockchain-based solution enabling proper authentication of edge devices specifically designed for mobile scenarios and highly constrained devices;
- Predictive Maintenance Tool (PMEM), an AI-assisted tool that suggests maintenance actions to mitigate potential attack effects based on data analytics and predictive models;
- The intent-based resilience orchestrator (IRO), an AI/ML-based tool responsible for mapping high-level intents given by a user into configured policies that can be run by a lower-level system controller;
- The Trust Monitor, a component that enables the remote attestation procedure of one or more (virtual or physical) nodes, allowing to detect if a platform has been tampered with and
- a framework for evaluation of InfSec, which will include a metrics taxonomy addressing all types of information (security, performance, environmental, and operational) and a model for establishing relationships with attacks, aiming at providing automatic security assessment.
Learn more about the FISHY project and stay tuned for their latest updates.
The SWForum.eu is glad to feature the FISHY project as our featured Project Spotlight from 18-22 July 2022.