Opportunities for HSD Partners to Participate in Global EPIC Projects
In 2017, the inaugural meeting of the Global Ecosystem of Ecosystems Partnership in Innovation and Cybersecurity (Global EPIC) took place. 14 Global ecosystems, including The Hague Security Delta, decided to start working together on co-creating and adopting world-changing solutions to high-impact cyber security challenges, both current and emergent. They do this by building a global community that will collaborate on projects and share expertise through an expanding network of diverse organisations.
We would like HSD partners to become actively involved, because there are some interesting opportunities. Therefore we want to share the current project proposals within Global EPIC open to HSD Partners:
- 1. GCR Cybersecurity Operations Center
- 2. J-Tool: Open Source web AI platform for content analytics
- 3. Know Your Customer Once
HSD partners that would like to get more information about these opportunities can contact Bert Feskens.
1. GCR
1. GCR Cybersecurity Operations Center
This GCR open source project is focused on delivering an easy to deploy open source cybersecurity monitoring solution for small to medium enterprises. The project goal is a push-button install of the platform software necessary to support a professional-level Cybersecurity Operations Center (CSOC) solution suitable for use by managed service providers focused on small businesses, or medium sized enterprise IT departments. The project assets will include: software, documentation, and training materials. The software will configure, integrate and enhance existing open source software cybersecurity projects, including: Apache Metron, Dionaea, Cowrie, OSSEC and others.
Integration of cybersecurity sensors is a priority for the project to reduce labour and complexity associated with deploying open source security operations center solutions. The project includes a remotely managed honeypot device (GCR Canary) that is suitable for use as a sensor for passive intrusion detection in SME environments.
The project will include CSOC Operational Playbook templates suitable for use by manager service providers or IT department staff responsible for operating the CSOC. Online training materials will be provided for SME employees to help address employee security awareness.
Benefits
Commercial CSOC software is expensive (in terms of operations, professional services and fees) to license, install, configure and sustain. This project is focused on removing the barriers to adoption and use of a CSOC by IT managed service providers focused on offering affordable security services to small and medium businesses; as well as the IT department of medium businesses who wish to deploy a corporate CSOC. We believe that a critical mass of open source components are available as of 2017 to allow such a project to be successfully undertaken.
We are looking for co-creation partners for the following:
- CSOC testing and testing automation
- CSOC platform and infrastructure security audits
- CSOC security analysts to support operations
- Amazon deployment automation scripts
- Canary-based Dionaea honeypot software enhancements
- CSOC operations run book/playbook documentation
- Public facing marketing websites and content to help drive adoption
2. J-Tool
2. J-Tool: Open Source web AI platform for content analytics
The J-tool uses topic modelling to explore relationships across papers. Results are displayed in an interactive web portal. To date, the J-tool has been used to analyse all the articles in the TIM Review (timreview.ca). This is an open source project and, currently, users can apply the tool to the Tim Review.
The J-tool supports the:
- Analysis of papers in the TIM Review using topic modelling
- Visual exploration of relationships between papers
- Examination of topic trends over time
- Application of the AuthorAudit facility to examine author contributions
- Determination of how often a paper has been viewed
- Exportation of citations in BibTex or TIS format
Benefits
Topic modelling is used to discover abstract topics that occur in a collection of papers and surfaces hidden semantic structures in the collection. More generally, topic modelling has been used to understand data structures in genetics, images and networks.
We are looking for co-creation partners in the following:
- Improving user experience
- Integration with other data repositories and feeds
- Integration with other A.I. techniques
- End user feedback and testing
3. Know your customers at once
3. Know Your Customer Once
All 14 founding keystone organisations of Global EPIC have recognised that to enable the future, securely – digital trust is a key requirement. CSIT would like to build a prototype that would explore how ledger technology may support the concept of decentralised identity management where the citizen is fully in control of their identity. A great many of the world population are currently excluded from digital services with globally 1.1 billion people living without a digital identity (ID 2020). In the west numerous organisations repeatedly perform know your customer (KYC) checks on the same users to establish identity and secure service.
Approach
With available ledger technology we plan to explore the KYC challenge as presented in the global banking sector. We would like to conduct a feasibility study to identify the technical challenged of running a KYC application on ledger technology.
The project - Know Your Customer (KYC) Once - is a feasibility study to explore the technical constraints associated with Blockchain based decentralized identity systems.
Identify the technical challenges (for e.g. password/private-key management, claim-information management) associated with hosting an application on a decentralized identity network;
- The entry-barriers for mass adoption.
- The economics of the model.
Benefits
It is anticipated that the outcome and recommendations of this analysis may include, but would not be limited to:
Recommendations pertaining to increasing cybersecurity knowledge across the Global EPIC partners.