Strengthening Cybersecurity in Europe: The CYDERCO Project

In an era where cyber threats are becoming increasingly sophisticated and pervasive, the need for robust cybersecurity measures has never been more critical. The European Union is taking significant steps to enhance its cybersecurity infrastructure, and one of the most promising initiatives is the CYDERCO project. Coordinated by Eviden, a leading business in digital transformation under the Atos Group, this three-year project aims to bolster the capabilities of Security Operations Centers (SOCs) across Europe.

Overview of the CYDERCO Project

Launched on October 1, 2023, and set to run for 36 months, the CYDERCO project is co-funded by the European Commission and the European Cybersecurity Competence Centre (ECCC). With a total budget of €2,881,082, the project aims to develop, test, and validate a comprehensive platform designed to enhance the detection and response capabilities of SOCs. This initiative is particularly relevant for both private and national entities tasked with safeguarding network and information systems against cyber threats.

The project is a collaborative effort involving a consortium of four partners: Eviden in Romania, Atos in Spain, the Instituto Superior de Engenharia do Porto (ISEP), and the Romanian National Cybersecurity Directorate (DNSC). This diverse partnership brings together a wealth of expertise from industry leaders and academic institutions, ensuring a well-rounded approach to tackling cybersecurity challenges.

Objectives and Features of the CYDERCO Platform

At the heart of the CYDERCO project is the development of a platform that provides SOCs with critical information about threat actors, their tactics, techniques, and procedures (TTPs), as well as indicators of compromise (IoCs). By improving collaboration and efficiency, the platform aims to empower SOCs to respond proactively to cyber threats.

Key Features

1. Data Analytics Platform: This feature will enable SOCs to detect, investigate, and respond to cybersecurity threats swiftly and effectively. Built using modern technologies, the platform will be stable, scalable, and responsive to the evolving threat landscape.

2. Network Traffic Analysis (NTA): NTA will monitor network activity to identify malicious activities, such as malware or abnormal traffic patterns, which are common indicators of cyber threats.

3. Host Intrusion Detection Service (HIDS): This extended host-based intrusion detection system will support multiple platforms, including Linux, Windows, and Mac. It will provide advanced detection capabilities to identify malicious activities like rootkits and malware.

4. AI-Driven Analytics: Traditional Security Information and Event Management (SIEM) solutions often struggle to detect complex or unknown attacks. By leveraging artificial intelligence for data analysis, the CYDERCO platform will enhance detection capabilities and defend against next-generation cyberattacks.

Threat Intelligence Capabilities

Eviden will also coordinate the platform’s threat intelligence capabilities, which include:

• Threat Intelligence Sharing: This feature will facilitate secure data sharing and event synchronization among various entities, enhancing collective cybersecurity efforts.

• Threat Intelligence Enrichment: By correlating threat intelligence, the platform will help identify relationships between various threat elements, such as malware and attack campaigns.

• Sighting Support: This proactive feature will alert organizations when specific indicators are detected on their systems, allowing SOC teams to respond more effectively to potential threats.

• Rapid Distribution: The platform will support the swift deployment of signatures and countermeasures across different entities, ensuring that security measures are up-to-date and effective.

Expert Insights

The significance of the CYDERCO project is underscored by the insights of key stakeholders involved in the initiative. Alex Rusandu, BDS Global Product Director and CyberSec Services External Funding Head at Eviden, emphasized the company’s commitment to leveraging its expertise in incident response and threat intelligence to meet the specific requirements of the project.

Dan Cîmpean, Director of the Romanian National Cyber Security Directorate, highlighted the project’s potential to enhance cybersecurity resilience within the EU, fostering collaboration between public and private sectors. Isabel Praça, Coordinator Professor at ISEP, noted that CYDERCO builds on previous H2020 projects, aiming for high maturity in solutions developed for SOC analysts.

Rodrigo Diaz Rodriguez, Head of the Cybersecurity Laboratory at Atos Spain, expressed confidence that CYDERCO will mark a significant advancement in fortifying cybersecurity resilience within the EU, promoting a collaborative ecosystem between various stakeholders.

Conclusion

As cyber threats continue to evolve, the CYDERCO project represents a proactive approach to enhancing cybersecurity across Europe. By developing a platform that empowers SOCs with critical intelligence and advanced detection capabilities, the project aims to create a more resilient digital landscape. With the collaboration of industry leaders and academic institutions, CYDERCO is poised to make a lasting impact on the cybersecurity ecosystem in the European Union.

For more information about the CYDERCO project, visit Eviden’s official page.