FORESIGHT

Advanced cyber-security simulation platform for preparedness training in Aviation, Naval and Power-grid environments

Critical infrastructures (CIIs) and Information and Communication Technology (ICT) systems face a rise of cyber security threats, both in scale and sophistication. These cyber-attacks are expected to have a growing negative economic and societal impact in the next decade and should therefore be considered as global risks. Furthermore, as the number of cyber-threats and ingenuity of attackers is growing, more highly skilled cyber-security professionals are needed by the industry. To this end, cyber-security education and training are becoming more and more relevant, as potentially the only way in which such cyber-incidents can be prevented and handled adequately.

The FORESIGHT project aims to develop a federated cyber-range solution to enhance the preparedness of cyber-security professionals at all levels and advance their skills towards preventing, detecting, reacting and mitigating sophisticated cyber-attacks. This is achieved by delivering an ecosystem of networked realistic training and simulation platforms that collaboratively bring unique cyber-security aspects from the aviation, smart grid and naval domains. The proposed platform will extend the capabilities of existing cyber-ranges and will allow the creation of complex cross-domain/hybrid scenarios to be built jointly with the IoT domain.

Emphasis is given on the design and implementation of realistic and dynamic scenarios that are based on identified and forecasted trends of cyber-attacks and vulnerabilities extracted from cyber-threat intelligence gathered from the dark web; this will enable cyber-security professionals to rapidly adapt to an evolving threat landscape.

The development of advanced risk analysis and econometric models will prove to be valuable in estimating the impact of cyber-risks, selecting the most appropriate and affordable security measures, and minimising the cost and time to recover from cyber-attacks. Innovative training curricula, guiding cyber-security professionals to implement and combine security measures using new technologies and established learning methodologies, will be created and employed for training needs; they will be linked to professional certification programs and be supported by learning platforms.

Aside from the development of skills, the project aims at a holistic approach to cyber-threat management with the ultimate goal of cultivating a strong security culture. As such, the project puts considerable emphasis on research and development (i.e. research on cyber-threats, development of novel ideas, etc) as the key to increasing training dynamics and awareness methods for exceeding the rate of evolution of cyber-attackers.

PUBLICATIONS

  1. C. Iliou, T. Kostoulas, T. Tsikrika, V. Katos, S. Vrochidis, and I. Kompatsiaris, “Web Bot Detection Evasion Using Deep Reinforcement Learning”, In Proceedings of the 17th International Conference on Availability, Reliability and Security (ARES 2022), ACM, 23-26 Aug, 2022, DOI:10.1145/3538969.3538994. OPEN ACCESS
  2. A. Papoutsis, C. Iliou, D. Kavallieros, T. Tsikrika, S. Vrochidis, I. Kompatsiaris, "Host-based Cyber Attack Pattern Identification on Honeypot Logs Using Association Rule Learning". In Proceedings of the 2022 IEEE International Conference on Cyber Security and Resilience, Virtual Conference, 27-29 July, 2022, pp. 50-55, DOI:10.1109/CSR54599.2022.9850317.   OPEN ACCESS
  3. A. Spyros, A. Papoutsis, I. Koritsas, N. Mengidis, C. Iliou, D. Kavallieros, T. Tsikrika, S. Vrochidis, I. Kompatsiaris, "Towards Continuous Enrichment of Cyber Threat Intelligence: A Study on a Honeypot Dataset". Ιn Proceedings of the 2022 IEEE International Conference on Cyber Security and Resilience (CSR), 27-29 July, 2022, pp. 267-272, DOI:10.1109/CSR54599.2022.9850295. OPEN ACCESS
  4. C. Iliou, T. Kostoulas, T. Tsikrika, V. Katos, S. Vrochidis, and I. Kompatsiaris, "Web Bot Detection Evasion Using Generative Adversarial Networks", In Proceedings of the 2021 IEEE International Conference on Cyber Security and Resilience, IEEE, 26-28 July, 2021. DOI:10.1109/CSR51186.2021.9527915. OPEN ACCESS
  5. P. Evangelatos, C. Iliou, T. Mavropoulos, K. Apostolou, T. Tsikrika, S. Vrochidis and I. Kompatsiaris,"Named Entity Recognition in Cyber Threat Intelligence Using Transformer-based Models", in the proceedings of the 2021 IEEE International Conference on Cyber Security and Resilience (IEEE CSR) – Workshops, Virtual Conference, July 26 (Mon) – 28 (Wed), 2021, pp. 348-353, DOI:10.1109/CSR51186.2021.9527981. OPEN ACCESS
  6. P. Panagiotou, C. Iliou, K. Apostolou, T. Tsikrika, S. Vrochidis, P. Chatzimisios, I. Kompatsiaris, "Towards Selecting Informative Content for Cyber Threat Intelligence", In the proceedings of the 2021 IEEE International Conference on Cyber Security and Resilience (IEEE CSR) – Workshops, Virtual Conference, July 26 (Mon) – 28 (Wed), 2021, pp. 354-359, DOI:10.1109/CSR51186.2021.9527909. OPEN ACCESS
  7. E.-C. Davri, E. Darra, I. Monogioudis, A. Grigoriadis, C. Iliou, N. Mengidis, T. Tsikrika, S. Vrochidis, A. Peratikou, H. Gibson, D. Haskovic, D. Kavallieros, E. Chaskos, P. Zhao, S. Shiaeles, N. Savage, B. Akhgar, X. Bellekens, and M. Amine Ben Farah, "Cyber security certification programmes", in the proceedings of the 2021 IEEE International Conference on Cyber Security and Resilience (IEEE CSR) – Workshops, Virtual Conference, July 26 (Mon) – 28 (Wed), 2021, pp. 428-435, DOI:10.1109/CSR51186.2021.9527974.
  8. C. Iliou, T. Kostoulas, T. Tsikrika, V. Katos, S. Vrochidis, I. Kompatsiaris. "Detection of advanced web bots by combining web logs with mouse behavioural biometrics". Digital Threats: Research and Practice (DTRAP), 2021, Volume 2, Issue 3, 3 September 2021, DOI:10.1145/3447815. OPEN ACCESS