Project Objectives

–Define solutions enabling proposal of reactions and means to assess impact of countermeasures before their enforcement on the information system security and on the services running above.

 

–Extend the detection part provided by the SIEM solutions with reaction capabilities and support mechanisms helping the security operators to make enlightened decisions in a dynamic situation.

 

–Enable large-scale modelling of information systems and networks, efficient alert correlation, quantitative evaluation of simulation results for decision support, study of the combination of multiple attacks and countermeasures, development of novel visual analytics technologies for the identification and prediction of very complex patterns of abnormal situation in the network, effective deployment of the selected countermeasures, and trust and security in future Internets.