Secure critical infrastructures in the cloud
IS_INCLOUD (IPT-2011-0981-39000) is an R&D project partially funded by INNPACTO 2011 Call. The aim of the project is to deploy an Information Security Management System (ISMS) in the cloud. The system will be specified and validated by final users allowing the detection of early alerts related to cyber-attacks over critical infrastructures.
This ISMS system will include a set of tools to analyse all the existing information related to vulnerabilities that could affect not only to a wide range of devices used by the control systems (SCADA and similar) but also to the ICT security devices that manage critical infrastructures.
The innovative feature of the project will be the provision of such system as a cloud service, so that organisations will not need to install their own ISMS, reducing the associated required resources. The system will be hosted by a security service provider with the specific developed infrastructure. The services will fulfil the required security standards (ISO 27001, ISO 27000, S/CMM, etc.).
Decision making in the control and remote systems of critical infrastructures should be done in real time. Therefore, the required protection actions impose several requirements to the tool that supports the ISMS system in order to manage information in real time without interfering with the update of the information used in the decision making process. Thus, it will be possible to detect and diagnose problems and possible vulnerabilities of the control systems without influence over their critical performance.
Coordinated by Ingeniería e Integración Avanzadas (Ingenia), the partners of the consortium are Mondragón Sistemas de la Información, S. Coop (MSI), Vicomtech Foundation (Vicomtech) and Mondragón University (MGEP). Moreover, it should be mentioned that there are already several final users that will validate and exploit the results of the project such as CCN-CERT, Andalucia-CERT and several critical infrastructure managers.
IS_INCLOUD will last for 30 months, starting from the 1st of July 2011.