Situation AWare Security Operations Center

Valeria Andreolli

01 November 2013

30 April 2016

EC funded project

SAWSOC aims at bringing a significant advancement in the convergence of physical and logical security, meaning effective cooperation (i.e. a coordinated and results-oriented effort to work together) among previously disjointed functions. Recently some achievements have been made (e.g. SEM and SIM have merged into SIEM, and LACS and PACS have merged into IM), Security Operations Center (SOC) technology has improved significantly, but much is yet to be done.

SAWSOC holistic approach and enhanced awareness technology will allow dependable (i.e. accurate, timely, and trustworthy) detection and diagnosis of attacks. This will ultimately result in the achievement of two goals of paramount importance, and precisely:

  1. Guaranteeing the protection of citizens and assets, and
  2. Improving the perception of security by citizens.

SAWSOC’s design will be driven by three real use cases, with highly diverse requirements. Such use cases collectively form an experimental test-bed perfectly suited for driving the design as well as for validating the development of a platform such as SAWSOC that will support true convergence of physical and logical security technologies, and overcome the fragmentation of security approaches.