n.1 RESISTO Newsletter | December 2019

n.2 RESISTO Newsletter | April 2020

n.3 RESISTO Newsletter | November 2020

“TARGETING, SECURITY. Integrating cyber and physical security to protect critical communication infrastructure”

Magazine: Platinum | Edition: March 2020

“RESISTO: Resilience Enhancement and Risk Control Platform for Communication Infrastructure Operators”

Magazine: POLARIS Innovation Journal | Edition: 41 – February 2020

Authors: E. Aonzo, A. Neri, Leonardo – Cyber Security Division

“RESISTO: Improving the Resilience of a Telecommunication Infrastructure | ECSI workshop”

Bruno Saccomanno,  Leonardo SpA

“RESISTO: project and architecture | BRUSSELS Community of Users”

Alberto Neri,  Leonardo SpA

“RESISTO Technical Objectives | ATENA workshop”

prof. Stefano Panzieri, Università Roma Tre

“The RESISTO project in a nutshell | ROME Kick-off meeting”

Federico Frosali,  Leonardo SpA

“Anatomy of a Cyber  Attack”

Ioan Constantin, cybersecurity expert at Orange Romania

“Needles and Haystacks”

Ioan Constantin, cybersecurity expert at Orange Romania

“Threat Hunting. Using Machine Learning & Threat Intelligence”

Cristian Paţachia,Orange Romania Development & Innovation Manager

“Security and Resilience Challenges for the Critical Infrastructures of the Communications Sector”

Federica Battisti, Marco Carli, Federica Pascucci, Mirjam Fehling-Kaschek, Rodoula Makri, Maria Belesioti, Ioannis Chochliouros, Ioan Constatin, Xiao-Si Wang; Cyber-Physical Threat Intelligence for Critical Infrastructures Security, 17 September, 2020

—————–

Abstract: This chapter introduces the main challenges for critical infrastructures in the communication sector. Specifically, the chapter will review the current threats that arise upon cyber and physical systems interconnection. At the same time, security strategies exploiting both the features (cyber and physical) of critical infrastructures will be introduced.

“RESISTO – RESIlience enhancement and risk control platform for communication infraSTructure Operators”

Alberto Neri, Alessandro Neri; Cyber-Physical Threat Intelligence for Critical Infrastructures Security, 17 September, 2020

“Manage Security on 5G communication networks: the Software Defined Security paradigm”

Luca Baldini, Marco Carli, Giuseppe Celozzi, Federico Colangelo, Alessandro Neri, Cosimo Zotti; Cyber-Physical Threat Intelligence for Critical Infrastructures Security, 17 September, 2020

———

Abstract: This chapter is devoted to the description of the interaction between the new communication system (the 5G framework) and the emerging security paradigm, known as Software Defined Security. It can be considered as a new security model to be applied for the management of communication networks, in which security aspects are implemented, controlled, and managed at software level. The main objective is providing a clear-cut, understandable and upgradable security model, in which novel algorithms and solutions can be integrated and optimized.

“Resilience analysis and quantification for Critical Infrastructures”

N. Miller, M. Fehling-Kaschek, G. Haab, K. Faist, A. Stolz, I. Håring; Cyber-Physical Threat Intelligence for Critical Infrastructures Security, 17 September, 2020

———

Abstract: The resilience analysis performed in RESISTO follows an enhanced risk and resilience management process based on the ISO-31000 standard [1]. The main inputs needed for the resilience quantification are gathered at separate steps of the management process: a precise understanding of the system context and the system itself including all subsystems and components and their interconnections; a collection of all relevant system functions to quantify the loss of performance due to a disruptive event; a comprehensive list of potential threats and hazards including information about their effect on the system; a list of critical combinations of system performance functions and threats taking account of relevant resilience dimensions [2] not explicitly covered by the risk and resilience management process; a risk and resilience quantification of combinations found to be critical taking into account risk and resilience evaluation criteria; and finally a list of potential counter actions and mitigation strategies for the listed threats.

“CISIApro Critical Infrastructures Modeling Technique for an Effective Decision Making Support”

Chiara Foglietta, Stefano Panzieri; Cyber-Physical Threat Intelligence for Critical Infrastructures Security, 17 September, 2020

———

Abstract: Modeling critical infrastructure interdependencies is mandatory to assess the consequences of adverse events such as natural disasters, failures and also cyber attacks. However, interdependencies can be exploited during the recovery phase for increasing the effect of the countermeasures. In this chapter, we present CISIApro 2.0 an agent-based simulator that assesses the consequences of negative events on interconnected infrastructures, describes as devices and services. The output of CISIApro 2.0 is the set of possible devices and services which are affected by an adverse event. The simulator has been tested using a telecommunication network.

“Modern innovative detectors of physical threats for Critical Infrastructures”

Rodoula Makri, Panos Karaivazoglou, Alexandros Kyritsis, Michael Skitsas, Nikolaos Koutras, Javier Valera, Jose Manuel Sanchez; Cyber-Physical Threat Intelligence for Critical Infrastructures Security, 17 September, 2020

———

Abstract: Nowadays, the types of threats against Critical Infrastructures are becoming more sophisticated imposing the use of equally modern detection measures. The involved aspects are too important when considering both direct physical threats and physical threats that enable malicious impact to the cyber domain as well. The Chapter begins with an overview of the current situation in Critical Infrastructures in terms of detecting physical threats, attacks or hazards and continues by introducing modern detecting techniques covering a wider range of threats. These vary from systems with sensors for airborne threats along with audio and visual analytics up to using the wireless networks themselves as sensing systems by exploiting their networking features.

“Resilience Enhancement of Communication Infrastructures”

Sylvia Bach, Mirjam Fehling-Kaschek, and Sara Baldoni; EGU General Assembly 2020, 06 May, 2020

—————–

Abstract: The Horizon2020 project RESISTO (Resilience enhancement and risk control platform for communication infrastructure operators) aims to reduce the risk as well as the impact of an anomalous incident for the telecommunication infrastructure. Incidents here can be natural hazards such as floods, earthquakes etc., but also cyber attacks, physical attacks or a combination of the latter two.
The approach uses a short-term control loop (STCL) that detects anomalies via various sensors or factors: internal remote sensors such as cameras, external sensing such as weather data, social media data mining, etc.. By doing so, the STCL is a risk predictor, but it also predicts effects of countermeasures and simulates short-term effects of failure with respect to performance degradation. This real-time risk and resilience assessment and the integrated interdependency analysis (among virtual and physical domains) lead to an effective Decision Support System (DSS) that detects critical situations and supports their management. […] READ MORE

“Threat Classification in current communication infrastructures”

I. Constantin, C. Patachia, A. Avadanei, L. Nitescu and C. Patrascu; 11th International Conference on Electronics, Computers and Artificial Intelligence (ECAI), 27-29 June, 2019

—————–

Abstract: Telecommunications networks are essential for the day-to-day running of all nations businesses and public services, but concerns have been raised in recent years over their security. Private businesses, government agencies and other bodies are dependent on telephone and internet services provided by telecommunications (telecoms) networks to carry out daily operations. Telecoms networks also provide services integral to the health and social life of the population. In this respect, telecoms have been recognized as one of the main critical national infrastructure sectors – since they are pivotal infrastructures to the functioning of a state or country. Telecommunications networks face a range of physical and cyber threats that may be malicious, non-deliberate or naturally occurring. While there is no mandated security and resilience standard for telecommunications, current resilience mainly includes investing in duplicates of infrastructure (i.e. disaster centers, double networks) and installing back-up power supplies.

“A Systematic Tabular Approach for Risk and Resilience Assessment and Improvement in the Telecommunication Industry”

M. Fehling-Kaschek, K. Faist, N. Miller, J. Finger, I. Häring, M. Carli, F. Battisti, R. Makri, G. Celozzi, G. Amato, M. Belesioti and E. Sfakianakis; 29th European Safety and Reliability Conference (ESREL), 22 – 26 September 2019.

—————–

Abstract: The economic and social well-being of citizens depends on the reliable functioning of critical infrastructures, and in particular, the provision of a reliable telecommunication system. Integrated risk and resilience analysis and improvement processes have been proposed and adopted to critical infrastructure systems. However, fast, tabular, and in operational contexts realizable implementations are still lacking. The paper proposes a set of interlinked tables for a fast, semi-quantitative implementation of such a process. The sequence and structure of the tables is chosen to capture the relevant input for the risk and resilience analysis and management process. Pulling from previous literature, four main constituents are identified and implemented as separate tables: system components, system functions, threats and mitigation options. The linkage between the tables and their contents, including minimum consistency requirements are expected to be sufficient for a successful implementation of the resilience analysis and management process. The linkage allows for direct computation of the correlations between the four constituents, e.g. system components with system functions, system functions with potential disruptions to identify critical combinations and threats with potential counter measures. Furthermore, quantification options and potential counter measures for the critical combinations can be inferred. Sample entries are given for the telecommunication infrastructure and the advantages of the approach are discussed.

“A New Security Approach in Telecom Infrastructures: The RESISTO Concept”

M. Belesioti, R. Makri, M. Fehling-Kaschek, M. Carli, A. Kostopoulos, I. P. Chochliouros, A. Neri and F. Frosali; 15th International Conference on Distributed Computing in Sensor Systems (DCOSS), 29-31 May 2019

—————–

Abstract: Communications play a fundamental role in the economic and social well-being of the citizens and on operations of most of the critical infrastructures (CIs). Extreme weather events, natural disasters and criminal attacks represent a challenge due to their increase in frequency and intensity requiring smarter resilience of the Communication CIs, which are extremely vulnerable due to the ever-increasing complexity of the architecture also in light of the evolution towards 5G, the extensive use of programmable platforms and exponential growth of connected devices. In this paper, we present the aim of RESISTO H2020 EU-funded project, which constitutes an innovative solution for Communication CIs holistic situation awareness and enhanced resilience.

“Enhancing Critical Infrastructure Protection: The RESISTO Concept”

M. Belesioti, I. Chochliouros, F. Frosali and R. Makri; European Conference on Networks and Communications 2018 – 5G and beyond (EuCNC), 18-21 Jube, 2018

“Technical approach to resilience for sustainable infrastructure systems”

I. Häring, M. von Ramin, K. Fischer, G. Vogelbacher, K. Faist, J. Finger, M. Fehling-Kaschek, J. Schäfer, A. Stolz, K. Ross, B. Scharte, T. Leismann and S. Hiermaier; 2-nd International Workshop on Resilience (IWR), 31 october – 2 November 2018

“5GTANGO: A Beyond-MANO Service Platform”

C. Parada , J. Bonnet , E. Fotopoulou , A. Zafeiropoulos, E. Kapassa, M. Touloupou, D. Kyriazis, R. Vilalta, R. Muñoz, R. Casellas, R. Martínez and G. Xilouris; European Conference on Networks and Communications (EuCNC), 18-21 June 2018

—————–

Abstract: Unlike previous generations, 5G will be more than just a mobile network. 5G will have broader coverage, including humans, but also cars, robots, and things in general; and will target verticals like eHealth, Automotive, or Industry 4.0, just name a few. To deal with this, 5G will need to be faster, more efficient, reliable, flexible, agile, and, at the same time, cost less. For this to be possible, 5G has to engage with the best-of-breed of the emerging technologies, where NFV is definitely in the top list. ETSI NFV is today in an advanced stage of standardization. In particular, many MANO platforms are today available, with different levels of development, varying on the number of features and maturity levels. In this context, this paper describes the 5GTANGO Service Platform, an open source MANO framework currently under development in the scope of the 5GTANGO H2020 project, and whose main developments started in a previous H2020 project named SONATA. In particular, some features that go beyond the state-of-the-art are approached, either considering standardization or implementations available. Those features are Policy, SLA and Slicing.