To detect insider attacks, existing security information and event management systems (SIEM) need to be developed significantly. To this end, the project partners in the project DREI are researching an organization-internal, distributed security center to detect insider attacks.
It also examines the legal compliance and effectiveness of the measures under realistic conditions. For this security center, procedures are developed that serve the privacy-friendly capture and storage of security events. They should have the ability to disclose identities, as needed, and detect anomalies that lead to the disclosure of innate perpetrator activities.
This is done on the basis of anonymised or pseudonymous data as well as the analysis of legal data protection requirements. From this test criteria are derived, which are evaluated in the project for their safety.
On the event of the adoption of the draft regulation laying down measures for a high common level of cybersecurity at the institutions, bodies, offices and agencies of the Union, the AI4HealthSec project kicked off a process to provide its opinion.
Cyberwatching.eu has received funding from the European Union’s Horizon 2020 research and innovation programme under grant agreement No 740129. The content of this website does not represent the opinion of the European Commission, and the European Commission is not responsible for any use that might be made of such content. Privacy Policy | Disclaimer / Terms and Conditions of Use