Governance activities form the backbone of the network, supporting community activities that range from roadmap design to Request for Challenges, from monthly SPARTA Workshops to bi-yearly SPARTA Days. Research programs are continuously spun from strands of the roadmap, led by experts of their fields, and aim at generating concrete and transformative results.
News & Events
Data Breach: the Good, the Bad and the Ugly
22nd Feb 2021Data Breach: the Good, the Bad and the Ugly
On November 26, 2020, the 41st edition of the monthly Cybersecurity Breakfast organized by SECURITYMADEIN.LU welcomed renowned Security Researcher at CIRCL, Alexandre Dulaunoy, to talk about the more and more common “Data Breaches: The dirty business behind the scenes. When your leak becomes the product.”
He started the keynote by explaining the mission of CIRCL in analysing, collecting and handling the data and how data acquired during a breach is becoming a product used and sold by cybercriminals. He also introduced the MISP software, an open-source threat intelligence platform.
What is AIL?
Alexandre underlined the growing need to monitor what cybercriminals are doing, especially on Tor. Hence the creation of AIL, a framework for Analysis of Information Leaks. It is a modular framework to analyse potential information leaks from unstructured data sources like pastes or social networks or unstructured data streams. The primary aim of...
SPARTA and CONCORDIA joined forces to build modern cybersecurity training infrastructures
16th Feb 2021SPARTA Cybersecurity Training and Awareness (WP9) team has proceeded to the final stage of its endeavor to improve the state of cybersecurity training and education in EU. After producing the fundamental framework for identification of skills necessary for cybersecurity work roles (SPARTA CSF ) and its implementation in good-practice curricula , WP9 aims to have practical impact by the deployment of training pilots.
SPARTA activities focus on stronger inclusion of so-called hands-on trainings in labs, a component that is often neglected by cybersecurity study programs. In particular, the team focuses on the exploitation of cyber ranges that allow safe and easy deployment of virtualized infrastructures for the training of cybersecurity abilities.
The SPARTA WP9 embraced the idea of open-source cyber ranges that, compared to commercial products, allow universities to provide students with modern training methods without the need to accept unbearable costs. More importantly, ...
SPARTA PROJECT or how to get privileged access to groundbreaking Cybersecurity innovations and research?
15th Feb 2021On December 10, 2020, SECURITYMADEIN.LU hold a virtual workshop session presenting the European based project, SPARTA and its consortium.
This event presented some key advancements, including the SPARTA Roadmap and Partnerships scheme, as well as demonstrated the breakthrough capabilities developed by its different Programs. The speakers also explained how companies could become associates in this program and get direct access to the latest research and innovation in Cybersecurity.
Bertrand Lathoud, Head of the Cybersecurity Competence Center Luxembourg, opened the discussion introducing the SPARTA project in general.
The EU has now openly acknowledged the need to reinforce its cybersecurity ecosystem, as most of the global suppliers’ champions are not European companies and Cybersecurity is a critical piece of strategic autonomy. They took into account the fact that the Union also has strong assets in the matter, and in particular research and academia fields are al...
2020 is over, what comes now? Interview with Pascal Steichen, CEO of SCEURITYMADEIN.LU.
8th Feb 2021Pascal Steichen is CEO of SECURITYMADEIN.LU, the Cybersecurity Agency for the Luxembourg Economy and Municipalities and the structure behind the main information security initiatives of the Luxembourg government: CASES, CIRCL, C3 and the CYBERSECURITY LUXEMBOURG ecosystem. He is a member of the Luxembourg Cybersecurity Board, lecturer in information security at the University of Luxembourg, president of the CLUSIL and member of the FIC advisory board.
In the video below, Charles-Louis Machuron, Co-Founder of silicon Luxembourg asked Pascal to provide a review and annual evaluation of 2020.
Of course, the Cybersecurity Luxembourg brand, the Cybersecurity Mapping and the Luxembourg Ecosystem, or the four pillars of the agency SECURITYMADEIN.LU were all discussed just like the topic of emerging cybersecurity threats, trends and possible protective measures against them.
Pascal highlighted that the new European Cybersecurity Competence Center and its network will have a pivotal role ...
Federated infrastructure: Hands-on-Labs and Cyberranges
7th Feb 2021On its way to Europe’s Digital Strategic Autonomy, the EU highlights the need to establish a Cybersecurity Competence Network (CCN) that covers public and private sectors, all member states, their critical infrastructures, and their value chains. SPARTA is one of the European Pilots designed to explore, test, and validate the most suitable approaches to establish and maintain such a network.
One of the main pillars of the CCN is to be able to have a high-performance infrastructure with which to interact. One main challenge is to maintain sufficient technical resources to solve complex problems, allowing access to unique assets for experimentation, learning and training with the breadth and depth required by the technological development of cybersecurity solutions.
All the infrastructure proposed by SPARTA is based on the establishment of a distributed assets network (Joint Competence Centre Infrastructure) that, being managed, operated and updated by the members of the network, ca...
The mission of a Joint Competence Centre Infrastructure
31st Jan 2021The mission of a Joint Competence Centre Infrastructure (JCCI) is to promote and make available information about tools, infrastructure, data and learning content to all (and not only) partners and associates of SPARTA. Its objective is to be used to optimize research and innovation in cyber security, creating new services or extending those that are currently provided by third parties, offering learning, training and experimentation resources. Those singular assets can be accessed and used in similar ways to those of a Digital Innovation Hub.
The JCCI is thought like a Marketplace where the SPARTA partners and associate can promote their assets. In this sense, the deployed platform is not designed as a monolithic and static marketplace where the information is stored in a central unit, but the infrastructure is designed as a dynamic solution, in which each partner is in charge to make available its own information about its goals and its assets.
The information in the SPARTA JCC...
Security mechanisms and tools in SPARTA SAFAIR Program
24th Jan 2021The advances in artificial intelligence (AI), concretely in machine learning (ML), have opened the implementation of it in many domains and applications. Among these domains, several critical fields can be found, such as healthcare. Malicious users, called adversaries, could modify the behaviour of these AI systems, obtaining undesired results and even having impact on the society. Thus, the cybersecurity has put attention to the security threats in AI. The SPARTA SAFAIR program seeks to develop defences against attacks to protect AI systems.
To defend the system, it is necessary to know to what kind it is vulnerable. Therefore, the first step is to study the different attacks against AI systems. Among others, there is a widely known attack named adversarial attack, which is one of the most problematic attacks that can suffer a ML model .
Let us imagine that a ML model helps in a hospital to diagnose breast cancer. This model could help the doctor to detect from images if the ...
Threat analysis and model developed in SPARTA SAFAIR Program
19th Jan 2021The current adoption of AI in computer-based systems and indications of its future ubiquitous presence increase the need for identification of threats against AI systems, such as attacks to availability of those systems or to data integrity. The SPARTA SAFAIR program aims to ensure trustworthiness of artificial intelligence (AI) systems, including security, privacy, and reliability. For a better comprehension and knowledge of the threats, the first task of the program is to design and develop threat analysis tools to provide support to the risk assessment and management in AI.
First, there was the need to identify potential security and privacy incidents that may occur to AI systems and attacks against AI components in systems that need to be defended. Thus, in SPARTA SAFAIR program, the first task was to collect all available attacks in the state of the art and to generate an adequate taxonomy to uniquely identify them and general enough to introduce future ones in the system.
Ethical dilemmas related to cybersecurity
10th Dec 2020Authors: Pawlicka A., Pawlicki M., Choras M. (ITTI, Poznan, Poland)
Cybersecurity is the opposite of cybercrime; it deals with protecting people, their money and data. Despite being an undoubtedly positive thing, it causes some major concerns of ethical nature, which emerge and develop along with the development of cyberspace and online services.
Years ago, when cyberspace and the Internet had just started to gain their immense popularity, the main ethical dilemmas mostly concerned the broadly understood privacy of the users. The privacy-related ethical issues emerge at almost every level, starting from the most general, national one. The dilemma here is about striking the balance between securing the country’s assets as a whole and respecting the privacy of citizens; this issue mostly addresses the means of surveillance . Then, there is the level of companies and organizations that process users’ data. Can they be trusted with protecting the data from leaking or being stole...
Innovation governance based on the diversity of factors that Shaped the Development of the SPARTA T-SHARK Program
22nd Nov 2020T-SHARK aims to develop and validate methodological, organisational and technological solutions, thereby extending cybersecurity in order to achieve a comprehensive organisation of security functions that focus on threat prediction and full-spectrum cybersecurity awareness, providing high situational awareness and timely warning of threats. Significantly, T-SHARK and 19 of its partners have focused their primary efforts on the question of delivering full-spectrum cybersecurity awareness with the goal of informing decision and policymakers on broad, long-term issues.
Activities within the Program have been divided into two main streams.
The first deals with several technology-based developments identified by separate partners or joint teams (defined as Sub-cases). These teams engage in information exchange, develop solutions based on data gathering activities and development of visual analytics capabilities that enable the integration of outputs arising from Sub-cases.