Cybersecurity

1

• Cybersecurity
• Research Activities of the Joint Research Centre
• Neil Mitchison, Robin Urry, Marc Wilikens
• Joint Research Centre
• http//dsa-isis.jrc.it

2
JRC Institutes
3
Objectives

• Become a technical point of reference for EU
  Institutions on Internet applications and their
  impact on the Citizen
• JRC Mission scientific and technical
  underpinning of EU policies
• Support EU policies in a number of focus areas
• Raise profile of technology issues
• Promote technology validation and common
  evaluation criteria
• Complement the implementation of EU RD (IST
  programme)
• Develop working methods with customers
• knowledge integration
• technology trials demonstrators
• knowledge dissemination

4
Technical Domains

• Internet content filtering
• Web tools for knowledge access and integration
• Smart card infrastructure
• Dependability of complex information
  infrastructures
• Privacy Enhancing Technologies
• Out-of-court dispute settlement
• Cybercrime

5
Resources

• 20 staff
• TRINIDAD, a laboratory for interoperable trust
  issues
• smart card infrastructure, Privacy and Web
  filtering technologies
• GIST, an advanced toolkit for developing
  interactive Web database systems
• XML databases, Java, open source platforms
• Business modelling tools (UML)
• (outsourced) JAVA/Web programming services
• SCAs DRIVE (Trust), SODA (Web mapping)

6
Internet content filtering

• Objective To foster a better understanding of
  the process of benchmarking filtering software
  and services used to protect children from
  harmful or undesirable content on the Internet.
• In particular the study will seek to define the
  evaluation criteria that might be employed in
  specific benchmarking exercises
• DG Infso, also general policy DGs (EAC and
  SANCO)
• Project Phases
• Definition of filtering software evaluation
  process
• Validation of process with industry and consumer
  groups
• Trials of benchmarking process on commercial
  filtering software
• Further information http//efilter.jrc.it

7
TRINIDAD Smart Card infrastructure

• Smart Card Infrastructure for Web-centric
  Applications
• easy and secure access to Internet applications.
• SCA, eEurope and Smart card charter.
• client hardware, software components at
  Web-browser side
• appropriate technology to develop and test smart
  card aware web applications.
• Use of JavaCardsTM technology and OpenCard
  standard
• A concept demonstrator has been developed for
  user identification and authentication integrated
  in a web-based healthcare application

8
Privacy Enhancing Technologies

• Infso but other DGs (mainly Entr and Markt)
  involvement
• Completed 1st phase of work
• International Workshop May 2000
• Investigating privacy technologies for user
  empowerment
• Conducting 2nd Phase
• Investigating technology requirements for user
  privacy management in commercial sector
• Development of an electronic Privacy forum
  http//dsa-isis.jrc.it/Privacy
• Reference implementation of the P3P standard
  (W3C)
• Follow up Workshop and Conference as part of
  eEurope

9
Out-of-court dispute settlement

• Promoting effective redress for consumers(EU
  policy)
• ADR technology demonstrator
• Challenges
• interoperability - data, systems, business
  processes
• interaction with knowledge sources
• accessability (including transparency, language)
• security and confidentiality
• evidence collection, presentation, and analysis
• E-confidence forum http//econfidence.jrc.it

10
Cybercrime

• EU Forum on Computer-Related Crime
• technical support
• interactive website
• Evidence of cybercrime
• OSILIA project Open Source Intelligence Library
  on Internet Abusegt incident information is not
  publicly available
• Feasibility study for sharing of anonymised
  information
• Exploratory StudyCyber Abuse and the Role of
  Evidence in E-Business