Presentation is loading. Please wait.

Presentation is loading. Please wait.

Security Considerations in M2M Communications

Published byCarsten Kuntz Modified over 6 years ago

Similar presentations

Presentation on theme: "Security Considerations in M2M Communications"— Presentation transcript:

1 Security Considerations in M2M Communications
Applied Research Issues & Projects in the Austrian Institute of Technology (AIT) Dr. Markus Tauber Project Manager, ICT Security, Future Networks and Services, Safety & Security Department | |

2 How we address research topics in projects Running Coming Planned
Overview Who we are and what we do Organisation Department Research topics How we address research topics in projects Running Coming Planned Get involved: User and Advisory Board

3 49,54% 50,46% Austrian Institute of Technology (AIT) ~ 1.100 Employees
Federal Ministry for Transport, Innovation and Technology Federation of Austrian Industries 50,46% 49,54% Austrian Institute of Technology (AIT) Health & Environment Safety & Security Energy Mobility Foresight & Policy Development Seibersdorf Labor GmbH Nuclear Engineering Seibersdorf IV: 3500 members ~ Employees Budget: 120 Mio. € Business Model 40:30:30

4 AIT R&D Program – Safety & Security Department
Model based testing system safety System Safety Highly Reliable Software and Systems (HRS) Secure and reliable Systems ICT Security Future Networks and Services (FNS) Cybercrime & Cyberwar System Safety Highly Reliable Software and System– Safety Highly Reliable Soft- and Hardware ICT – Security Future Networks and Services eGovernment secure smart grids secure cloud computing critical infrastructure Data Safety Digital Memory Engineering (DME) Archive & Availability Infrastructure Security Intelligent Vision Systems (IVS) Surveillance & Protection Data Safety Digital Memory Engineering – Safety management of large and komplex Data eGovernment,.. Infrastructure Security Intelligent Vision Systems – Security 3D vision high performance vision multi-camera networks public safety information safety 4 pillars for Safety & Security in the Electronic Universe

5 Research Programme ICT Security
Research goals: Development of methodologies and tools for Secure System Design Application-oriented research in the areas embedded Systems, M2M, eGovernment, Critical Infrastructures, Smart Grids, eHealth, etc. Examples: Evaluation of MS SDL or other standard RAM in a M2M context Development of new CC Protection Profiles – and automation of its evaluation (tool chains) We are working on tools for managing the complexity of implementing efficient security mechanisms!

6 Techn. (Application) Topics
Governmental Telecommunication Traffic Control Critical Infrastructure CCTV Cloud M2M Smart-* E-health E-Government Automatisation WLAN Automotive

7 „The Cloud“ A Method to abstract over physical hardware Flexibility
Scalability Redundancy Uniform Security Measures cloudstdio.h #include <cloudstdio.h> #define Nbr of CPUs dynamic main() { cloudprintf("Hello World "); } „Single Point of Failure“ Origin of „Failure” is hard to isolate (per Definition)

8 M2M and the Cloud Application domains:
ATM CCTV Smart-Meter Smart-Home Smart-Health Smart-Cities Limited local compute capacities Global view required ILNP ….. ILNP …. source: smekal.at

9 Example: CCTV @ ATM & Cloud
Search performance e.g. „Man with red ski mask“ Techn. challenges due to modular architecture (Outsourcing) Legal challenges reg. data protection & SLA Bank CitySec TelCom TenSys CloudCorp ATM Operator Security Service Provider Telecom Operator Tenant System Mgmt Cloud Mgmt Provider

10 AIT – ICT Security Projects
National and international research project examples: Architectural security analysis Risk-Management Data protection M2M, Smart-*, Cloud, CI

11 10 Partner from Austria, Finland, Germany, Greece, Spain and the UK
Overview 10 Partner from Austria, Finland, Germany, Greece, Spain and the UK Project budget 4.8 Mio, partially funded by EC FP7 Project runtime – User driven Topics Combination of technical and legal aspects regarding log gathering (SLA management, data protection) Novel risk assessment methods regarding CI & Cloud Understand Cloud behaviour („monitoring“, forensic analysis, anomaly detection, „root cause analysis“, „resilience“) Guidelines for secure operation of CI in the Cloud & „Service Assurance“ Real life evaluation scenarios © SECCRIT Consortium

12 Smart Grid Security Guidance (SG)²
KIRAS Project runtime 2 years, 11/2012 – 11/2014 Smart Grid security aspects in an Austrian context Partner: AIT Austrian Institute of Technology Technische Universität Wien SECConsult Unternehmensberatung GmbH Siemens AG, Corporate Technology Österreich LINZ STROM GmbH Energie AG Oberösterreich Data GmbH Innsbrucker Kommunalbetriebe AG Energieinstitut an der JKU Linz GmbH Bundesministerium für Inneres Bundesministerium für Landesverteidigung und Sport

13 Arrowhead Arrowhead – Improvement of efficience and flexibility and sustainability in the industrial context via in smart-* and e-mobility and virtual energy markets. AIT’s Focus: Architectural Security Analysis Runtime 4 years, 78 Partner (Austrians: TU Graz, Campus 02 – FH Graz, AIT, Evolaris, AVL, Invineon) Secure ?

14 HyRiM: Hybrid Risk Management for Utility Providers
Development and evaluation of Hybrid Risk Metrics for coupled complex critical infrastructure networks Development of tools and methods for risk assessment for utility providers in the face of novel threads (e.g.: Advanced Persistent Threats) Definition of security architectures for utility providers for e.g. BYOD scenarios Partners Elective Cooperative of Alginet

15 SPARKS – Smart Grid Protection Against Cyber Attacks – EU FP7
Research Topics Analysing, Modelling and Simulating Smart Grid Cyber security Vulnerabilities and Threats Developing a Reference Security Architecture for Smart Grids Research and Development of Security Mechanisms and Tools Economic Analysis and Quantification Legal and Privacy Related Aspects and Policy Recommendations Demonstration of Project Results in Simulated and Real Testbed Environments Partner AIT, Energie-Institut Linz GmbH (AT) EVB - EVB Energy Solutions, a Diehl company, AISEC - Fraunhofer AISEC, IABG, SWW – Stadtwerke Wunsiedel (DE) KTH Kungliga Tekniska högskolan (SE) L+G - Landis + Gyr (CH), RSA, the Security Division of EMC (CH/IE) CSIT - Queen’s University Belfast, Centre for Secure IT (UK) UTRC United Technologies Research Center (IE)

16 User and Advisory Board (UAB)
Most AIT projects include opportunities to get involved via a UAB, which provide: Information in annual workshops Proactive information regarding research outputs Direct channel to researches to steer research direction Dr. Markus Tauber Project Manager, ICT Security, Future Networks and Services, Safety & Security Department | |

Download ppt "Security Considerations in M2M Communications"

Similar presentations

ICT research priorities and recommendations for strategy development in the WBC Ulrike Kunze / PT-DLR, Germany Consultation session on recommendations.

ICT research priorities and recommendations for strategy development in the WBC Ulrike Kunze / PT-DLR, Germany Consultation session on recommendations.
Department of Electronic Engineering Challenges & Proposals INFSO Information Day Research Networking Test-beds 26/27 May 2005,

Department of Electronic Engineering Challenges & Proposals INFSO Information Day Research Networking Test-beds 26/27 May 2005,
LEIT (ICT7 + ICT8): Cloud strategy - Cloud R&I: Heterogeneous cloud infrastructures, federated cloud networking; cloud innovation platforms; - PCP for.

LEIT (ICT7 + ICT8): Cloud strategy - Cloud R&I: Heterogeneous cloud infrastructures, federated cloud networking; cloud innovation platforms; - PCP for.
Lessons learned from FP7 proposals and projects SMI2G 2014 Andrea Nowak Deputy Head of Department Safety&Security AIT - Austrian Institute of Technology.

Lessons learned from FP7 proposals and projects SMI2G 2014 Andrea Nowak Deputy Head of Department Safety&Security AIT - Austrian Institute of Technology.
CIRAS PROJECT OVERVIEW

CIRAS PROJECT OVERVIEW
Smart Grid - Cyber Security Small Rural Electric George Gamble Black & Veatch

Smart Grid - Cyber Security Small Rural Electric George Gamble Black & Veatch
IRRIIS – Integrated Risk Reduction of Information-based Infrastructure Systems Workshop - Middleware Improved Technology for Interdependent Critical Infrastructures.

IRRIIS – Integrated Risk Reduction of Information-based Infrastructure Systems Workshop - Middleware Improved Technology for Interdependent Critical Infrastructures.
Framework for Improving Critical Infrastructure Cybersecurity Overview and Status Executive Order 13636 “Improving Critical Infrastructure Cybersecurity”

Framework for Improving Critical Infrastructure Cybersecurity Overview and Status Executive Order “Improving Critical Infrastructure Cybersecurity”
Giandonato CAGGIANO ENISA MANAGEMENT BOARD REPRESENTATIVE LEGAL ADVISER ON EUROPEAN AFFAIRS OF THE MINISTRY OF COMMUNICATIONS U. OF ROMA TRE LAW FACULTY.

Giandonato CAGGIANO ENISA MANAGEMENT BOARD REPRESENTATIVE LEGAL ADVISER ON EUROPEAN AFFAIRS OF THE MINISTRY OF COMMUNICATIONS U. OF ROMA TRE LAW FACULTY.
Strengthening the Strategic Cooperation between the EU and Western Balkan Region in the field of ICT Research Regional ICT R&D priorities, Jelena Pantelic,

Strengthening the Strategic Cooperation between the EU and Western Balkan Region in the field of ICT Research Regional ICT R&D priorities, Jelena Pantelic,
© Siemens AG, CT SE 1, Dr. A. Ulrich 09.09.2015 C O R P O R A T E T E C H N O L O G Y Research at Siemens CT SE Software & Engineering Development Techniques.

© Siemens AG, CT SE 1, Dr. A. Ulrich C O R P O R A T E T E C H N O L O G Y Research at Siemens CT SE Software & Engineering Development Techniques.
ICT for Enterprise Networking ICT for Enterprise Networking WP 2005-2006 Opportunities in the 5th Call Alain JAUME IST Programme. DG INFSO/ D5.

ICT for Enterprise Networking ICT for Enterprise Networking WP Opportunities in the 5th Call Alain JAUME IST Programme. DG INFSO/ D5.
Security and Risk Management for Smart Grids Dr. Lucie Langer Safety & Security Department AIT Austrian Institute of Technology December 7, 2012 Athens,

Security and Risk Management for Smart Grids Dr. Lucie Langer Safety & Security Department AIT Austrian Institute of Technology December 7, 2012 Athens,
Assurance Case Approach TECNALIA Inspiring Business Novara November, 2013 TRIAL WS.

Assurance Case Approach TECNALIA Inspiring Business Novara November, 2013 TRIAL WS.
SECURE –FORCE Project Christodoulos Keratidis Atlantis Consulting S.A. 1 st SEE-INNOVATION Know How Event Skopje, 14-15 December 2006.

SECURE –FORCE Project Christodoulos Keratidis Atlantis Consulting S.A. 1 st SEE-INNOVATION Know How Event Skopje, December 2006.
Whitacre College of Engineering Panel Interdisciplinary Cybersecurity Education Texas Tech University NSF-SFS Workshop on Educational Initiatives in Cybersecurity.

Whitacre College of Engineering Panel Interdisciplinary Cybersecurity Education Texas Tech University NSF-SFS Workshop on Educational Initiatives in Cybersecurity.
DOCUMENT #:GSC15-PLEN-53 FOR:Presentation SOURCE:ETSI AGENDA ITEM:PLEN 6.11 CONTACT(S):Emmanuel Darmois, Board Member Marylin Arndt, TC M2M chair Smart.

DOCUMENT #:GSC15-PLEN-53 FOR:Presentation SOURCE:ETSI AGENDA ITEM:PLEN 6.11 CONTACT(S):Emmanuel Darmois, Board Member Marylin Arndt, TC M2M chair Smart.
CSIAC is a DoD Information Analysis Center (IAC) sponsored by the Defense Technical Information Center (DTIC) Presentation to: Insider Threat SOAR Workshop.

CSIAC is a DoD Information Analysis Center (IAC) sponsored by the Defense Technical Information Center (DTIC) Presentation to: Insider Threat SOAR Workshop.
Secure Societies 2014 Working programme University of ULSTER (UU), United Kingdom University of ULSTER (UU), United Kingdom Prof. Hui Wang, Dr. Jun Liu,

Secure Societies 2014 Working programme University of ULSTER (UU), United Kingdom University of ULSTER (UU), United Kingdom Prof. Hui Wang, Dr. Jun Liu,
Presentation of projects’ ideas. 1. Madrid Network “A public-private network which aim is to contibute actively to position Madrid Region in the top.

Presentation of projects’ ideas. 1. Madrid Network “A public-private network which aim is to contibute actively to position Madrid Region in the top.

Similar presentations

Ads by Google