CRitical Infrastructure Security AnaLysIS (CRISALIS)
Research Project, 2012 – 2015

The CRISALIS project aims at providing new means to secure critical infrastructure environments from targeted attacks, carried out by resourceful and motivated individuals. The recent discovery of a malware called Stuxnet, show that these threats are already a reality. Their success in infiltrating Critical Infrastructure environments is calling attention on the ineffectiveness of standard security mechanisms at detecting them. Stuxnet is believed to have been operating undetected for almost one year leveraging multiple vulnerabilities that were previously unknown, and has been discovered only as a consequence to an operational anomaly that triggered the attention of the field operators. This fact clearly shows that our methods to find vulnerabilities and detect ongoing or successful attacks in critical infrastructure environments are not sufficient.CRISALIS focuses on these two aspects: detection of vulnerabilities and attacks in critical infrastructure environments. We focus on two different, yet interlinked, use cases that are typical for the power grid infrastructure: control systems based on SCADA protocols and the Advanced Metering Infrastructure. CRISALIS leverages the unique characteristics of critical infrastructure environments to produce novel practical mechanisms and techniques for their security assessment and protection. This is achieved by pursuing three main research objectives:(i) Providing new methodologies and techniques to secure critical infrastructure systems(ii) Providing new tools to detect intrusions(iii) Developing new, more effective, techniques to analyse infected systems.Particular attention is paid to ensure the practical implementation of these techniques in real-world environments, and to minimize the impact on operations, goals which are attainable thanks to the direct involvement in the process of end users and device manufacturers who provide expertise and realistic test environments to validate the proposed methodologies.

Participants

Magnus Almgren (contact)

Chalmers, Computer Science and Engineering (Chalmers), Networks and Systems (Chalmers)

Zhang Fu

Chalmers, Computer Science and Engineering (Chalmers), Networks and Systems (Chalmers)

Vincenzo Massimiliano Gulisano

Chalmers, Computer Science and Engineering (Chalmers), Networks and Systems (Chalmers)

Marina Papatriantafilou

Chalmers, Computer Science and Engineering (Chalmers), Networks and Systems (Chalmers)

Valentin Tudor

Chalmers, Computer Science and Engineering (Chalmers), Networks and Systems (Chalmers)

Collaborations

EURECOM

Sophia Antipolis, France

Enel

Rome, Italy

Liander

Arnhem, Netherlands

Security Matters

Enschede, Netherlands

Siemens

Munich, Germany

Symantec Limited

Dublin 4, Ireland

University of Twente

Enschede, Netherlands

Funding

European Commission (EC)

Project ID: EC/FP7/285477
Funding Chalmers participation during 2012–2015

Related Areas of Advance and Infrastructure

Information and Communication Technology

Areas of Advance

Sustainable development

Driving Forces

Energy

Areas of Advance

More information

Latest update

9/2/2020 1