Agency: Cordis | Branch: H2020 | Program: RIA | Phase: ICT-07-2014 | Award Amount: 4.19M | Year: 2015
Although cloud computing offers many benefits, security issues such as confidentiality and privacy are still major concerns to those intending to migrate to the cloud. Traditional cloud security has been based on assurance to customers that cloud providers follow sound security practices. As a result, current security mechanisms are commonly located within the cloud platform, hence compelling customers to trust cloud providers. However, customers might be reluctant to outsource sensitive data due to lack of control over data storage and management. To reach its full potential, cloud computing needs solid security mechanisms that enhance trust in cloud computing by allowing cloud customers to have a greater control over the security and privacy of their data. Moreover, it is also necessary to consider countermeasures to ensure that vulnerabilities or attacks do not have a negative impact on cloud security and that applications continue to operate and provide a good level of service even during an attack. The main objective of CLARUS is to enhance trust in cloud computing services by developing a secure framework for the storage and processing of data outsourced to the cloud that allows end users to monitor, audit and retain control of the stored data without impairing the functionality and cost-saving benefits of cloud services. The CLARUS solution will provide the end user with a dedicated proxy located in a trusted domain implementing security and privacy features towards the cloud provider. The proxy is intended to be deployed within the client computer, in a server within the users domain, in an edge device (e.g. a router), or in any other location trusted by the user. CLARUS will also provide a set of security auditing services enabling the user to supervise the security operations performed by the CLARUS framework as well as other trust-enhancing features.
Agency: Cordis | Branch: H2020 | Program: IA | Phase: DS-02-2014 | Award Amount: 5.21M | Year: 2015
Industry needs alternatives to textual passwords for access control. While tokens can still be stolen or transferred to other persons, biometrics technology can provide reliable, cost-effective and user-friendly solutions. The proliferation of smart services calls for unsupervised authentication at a distance. Being natural, non-intrusive and readily compatible with smart and mobile devices, automatic speaker verification (ASV) is an appealing solution. Even so, todays state-of-the-art ASV systems lack robustness to environmental variability and are vulnerable to spoofing. Concerns regarding interoperability, scalability and privacy also form barriers to exploitation. While embracing standards, in addition to a privacy and interoperability-by-design ethos, OCTAVE will integrate commercial-grade and new, hybrid ASV systems with the latest environmental robustness and anti-spoofing technologies to deliver a scalable, trusted biometric authentication service (TBAS). While simultaneously relieving end-users from the inconvenience of dealing with textual passwords, the OCTAVE platform will reduce the economic and practical burdens related to password loss and recovery. The TBAS will support single (text-dependent, text-prompted and text-independent) in addition to hybrid operating modes. The delegation of authentication to a single, yet distributed TBAS, will increase trust and privacy, avoid single points of failure and allow for rapid breach notification and remediation. Solutions will be installed in data-sensitive and mission-critical services and validated in two real commercial trials: banking services and physical access within a critical airport infrastructure. Flexibility will support wider exploitation in future applications in, for example, customer care, telephone banking, e-commerce, logical and physical access control. OCTAVE will thus fuel new opportunities for commercial services making use of electronic identification and authentication.
Agency: Cordis | Branch: H2020 | Program: MSCA-RISE | Phase: MSCA-RISE-2015 | Award Amount: 2.02M | Year: 2016
Forensics is a well-established science that aims at applying various disciplines to the law, both civil and criminal, in order to solve questions related to crime. It is mainly concerned with proving and investigating infringements, identifying perpetrators and describing modus operandi. Biometrics, on the other hand, is a relatively new science that aims at measuring and analysing a persons unique characteristics, both behavioural and physical. It is mainly concerned with the development of technological solutions to extract and evaluate a persons biometric data mainly for verification and identification purposes. The potential of applying biometrics to forensics comes natural as several forensic questions rely on identifying, or verifying the identity, of people allegedly involved in crime. Although these two scientific communities have operated in relative isolation over the past couple of decades, forensic biometrics have been successfully applied through the development automatic fingerprint identification systems (AFIS), and most recently, through the development of face recognition systems. The potential of forensics biometrics, however, can be extended to other biometric traits, such as iris and gait analysis. This proposal also aims at consolidating the integration of multimedia forensics into the forensic science. Multimedia forensics is concerned with the development of scientific methods to extract, analyse and categorize digital evidence derived from multimedia sources, such as imaging devices. For example, developing technologies to identify, categorise and classify the source of images and video, as well as to authenticate and verify the integrity of their content. Since the enabling technologies in multimedia forensics are similar to those used for identification and verification purposes in biometric forensics, the integration of these areas is seamless.
Agency: Cordis | Branch: H2020 | Program: RIA | Phase: MG-3.5a-2014 | Award Amount: 6.00M | Year: 2015
Cooperative intelligent transport system (C-ITS) applications rely on knowledge of the geographical positions of vehicles. Unfortunately, satellite-based positioning systems (e.g., GPS and Galileo) are unable to provide sufficiently accurate position information for many important applications and in certain challenging but common environments (e.g., urban canyons and tunnels). This project addresses this problem by combining traditional satellite systems with an innovative use of on-board sensing and infrastructure-based wireless communication technologies (e.g., Wi-Fi, ITS-G5, UWB tracking, Zigbee, Bluetooth, LTE...) to produce advanced, highly-accurate positioning technologies for C-ITS. The results will be integrated into the facilities layer of ETSI C-ITS architecture and will thereby become available for all C-ITS applications, including those targeting the challenging use cases Traffic Safety of Vulnerable Users and Autonomous Driving/platooning. The project will therefore go beyond ego- and infra-structure-based positioning by incorporating them as building blocks to develop an enhanced European-wide positioning service platform based on enhanced Local Dynamic Maps and built on open European standards. Proof-of-concept systems developed in the project will combine infrastructure devices, reference vehicles, communication between road users and offline processing, and will be evaluated under real conditions at TASS test site in Helmond, with the objective of assessing its capabilities to provide high precision positioning to C-ITS applications. When possible, codes and prototypes will be fully open-source and made available to the larger research community as well as to the automotive industry at the end of the project. All achievements will be published in top-tier events further guaranteeing an open-access to all technical publications produced. The project also aims at a strong commitment to bringing the developed solutions to standardization bodies
Agency: Cordis | Branch: H2020 | Program: RIA | Phase: ICT-32-2014 | Award Amount: 6.47M | Year: 2015
The current trend for data placement shows a steady shift towards the cloud. The advent of cloud storage and computation services however comes at the expense of data security and user privacy. To remedy this, customers nowadays call for end-to-end security whereby only end-users and authorized parties have access to their data and no-one else. This is especially true after the outbreak of data breaches and global surveillance programs last year. In the TREDISEC project, we address this problem and we develop systems and techniques which make the cloud a secure and efficient heaven to store data. We plan to step away from a myriad of disconnected security protocols or cryptographic algorithms, and to converge on a single framework where all objectives are met. More specifically, TREDISEC addresses the confidentiality and integrity of outsourced data in the presence of a powerful attacker who controls the entire network. In addition, our proposed security primitives support data compression and data deduplication, while providing the necessary means for cloud providers to efficiently search and process encrypted data. By doing so, TREDISEC aims at creating technology that will impact existing businesses and will generate new profitable business opportunities long after the project is concluded.
Agency: Cordis | Branch: H2020 | Program: IA | Phase: ICT-12-2015 | Award Amount: 855.04K | Year: 2016
Q4HEALTH project is an innovation action focused on the optimization of real time video for emergency services over LTE. The project is implemented as a set of experiments conducted over the FIRE platforms PerformLTE and OpenAirInterface. The motivation is to study video performance in scenarios with wearable live video for first responders, improving its response on LTE-A with a particular innovation focus on 3GPP release 12. To achieve this goal six different experiments will be performed focused on resolving a set of six challenges identified as well as addressing a range of KPIs Q4HEALTH faces different challenges, the inability of applications to negotiate a QoS agreement with the network, the delays introduced on live video, the appropriate scheduling algorithms on the access nodes, the service availability on indoor scenarios and the communication between geographically correlated entities. These challenges will be approached from different perspectives, the applications that will be extended to provide information regarding the type of traffic as well as their traffic requirements to the EPC and the scheduler in the RAN; the radio access where different scheduling strategies will be explored for emergency video; and the core network where mechanism to perform QoS reservation, techniques for seamless mobility between heterogeneous access technologies and SDN techniques to improve communication will be studied. Q4HEALTH has defined 20 KPIs and these will be formulated at the start as a baseline and at the end of the project we will measure the KPIs on an integrated optimized experiment in order to validate the project success. Q4HEALTH will participate in the EIT KIC as well as FIRE and 5GPPP events in order to disseminate our results in to the wider innovation ecosystem. All the project results and extensions will be showcased to maximize the exposures to other companies that might also exploit the outcomes of the project.
Agency: Cordis | Branch: H2020 | Program: RIA | Phase: BES-06-2015 | Award Amount: 4.98M | Year: 2016
The goal of the PROTECT project is an enhanced biometric-based person identification system that works robustly across a range of border crossing types and that has strong user-centric features. The system will be deployed in Automated Border Control (ABC) areas supporting border guards to facilitate smooth and non-intrusive rapid crossing by travellers based on deployment of the next generation of biometric identification detection methods. The ability for the system to efficiently process low-risk travellers, combined with increased levels of accuracy, security and privacy standards and enabling border guards to concentrate resource on higher-risk travellers, are central ambitions of the project. To achieve these goals, a multi-biometric enrollment and verification system is envisaged, taking into account current and next-generation e-Passport chips, mobile equipment and person identification on the move. Research will be undertaken into optimization of currently deployed biometric modalities, application of emerging biometrics (including contactless finger vein, speaker recognition and angthropometrics), multi-modal biometrics and counter-spoofing, for border control scenarios. An integral part of the project is collection and dissemination of new border-realistic biometric datasets, and systematic evaluation of the developed biometric methods including vulnerability and privacy assessment. The PROTECT project is strongly user-driven and demonstration of the developed biometric system will be conducted at two different border crossing sites. Finally, the PROTECT project will make contributions to facilitating border crossing of bona-fide non-EU citizens as well as evolving standards in biometric systems.
Agency: Cordis | Branch: H2020 | Program: RIA | Phase: ICT-14-2014 | Award Amount: 6.02M | Year: 2015
The exponential growth of mobile traffic, drastically increasing of network complexity, and the strong need for inter-network coordination of wireless network resources call for breakthroughs in control, coordination and flexible spectrum management in 5G heterogeneous radio access networks. The COHERENT project aims to address these problems by researching, developing and validating a novel control framework for future mobile networks. The key innovation of COHERENT is to develop a unified programmable control framework to coordinate the underlying heterogeneous mobile networks as a whole. The COHERENT control framework has two unique features to deal with the insufficiency of current control solutions for inter-network coordination. First, theories and methods to abstract the low layer network states and behaviors of different underlying mobile networks are developed, which provides a simplified but sufficient abstracted network view for network-wide control and resource coordination. Network abstraction will significantly reduce the signaling overhead, making scalable network-wide control solutions feasible, and enable more flexible spectrum management, which are key for the success of 5G networks. Second, based on the abstracted network view, common interfaces and software-development kits will be developed to enable programmability in controlling and coordinating heterogeneous mobile networks. The programmable control will provide operators a flexible and cost efficient way to implement new control functions and thus to support new services. The innovative impact of the COHERENT project is in enabling a unified control and coordination framework for heterogeneous mobile networks by combining innovative approaches on abstraction of low layers in underlying mobile networks, software defined networking, and flexible spectrum management. COHERENT will build a true proof-of-concept prototype to demonstrate the applicability and benefits of its approach.
SPOTLIGHT - Single Point Of aTtachment communications empowered by cLoud computing and bIG data analytics running on-top of massively distributed and loosely-coupled Heterogeneous mobile data neTworks
Agency: Cordis | Branch: H2020 | Program: MSCA-ITN-ETN | Phase: MSCA-ITN-2016 | Award Amount: 3.81M | Year: 2017
To handle the unprecedented demand for mobile data traffic, different vendors, operators and research programmes have aimed to develop radio access technologies (RATs) that boost physical-layer link capacity, utilize millimeter wave radio, or further densify network topology. Notable steps have also been made towards shifting baseband processing from the (currently) ultra dense network edge to a central location where coordinated resource management will be performed. Nonetheless, the todays mobile network ecosystem includes vastly heterogeneous, evidently overlapping (in coverage) and fully isolated (in operation) attachment points that still handle most of the functions necessary for mobile data communications independently. Aiming to meet and surpass the requirements set for the 5G-and-Beyond mobile data network, in SPOTLIGHT we will create a fully-integrated and multi-disciplinary network of Early Stage Researchers (ESRs) that will analyze, design, and optimize the performance of a disruptive new mobile network architecture: the SPOTLIGHT architecture. This architecture promises to break performance limitations present to the currently loosely inter-connected, resource-fragmented and isolated in operation mobile network ecosystem, by transforming the currently loosely-coupled multitude of heterogeneous and multi-layered RATs to a flat coalition of massively distributed antenna sub-systems that are optimally orchestrated by a cloud-empowered network core. Our primary aim will be to support for the first time self-including yet ultra-reliable radio communications at the edge network. To further reduce response time and enhance network resilience, all functions necessary for mobile communications will be subject of i) massive parallelization in cloud platforms at the network core and ii) big data analysis running on-top of a virtual pool of shared energy, radio, computing and storage resources at the network.
Agency: Cordis | Branch: H2020 | Program: RIA | Phase: EUJ-01-2016 | Award Amount: 2.25M | Year: 2016
5G!Pagoda represents the next evolution step in softwarized networks as supported by NFV, SDN and aimed at by the 5G network evolution. The top objectives of 5G!Pagoda are i) the development of a scalable 5G slicing architecture towards supporting specialized network slices composed on multi-vendor network functions, through the development of ii) a scalable network slice management and orchestration framework for distributed, edge dominated network infrastructures, and convergent software functionality for iii) lightweight control plane and iv) data plane programmability and their integration, customization, composition and run-time management towards different markets in Europe and Japan. 5G!Pagoda will develop a coherent architecture enabling research and standardization coordination between Europe and Japan. The proposed developments integrate with a common SDN/NFV based architecture and will additionally provide punctual and highly important developments of the software network architecture. The developments address the next steps of the evolution beyond the immediate NFV standardization and developments, enabling the graceful integration within end-to-end network slices of various highly customized software components, remotely controlling the data path, with specific network function flexibility and network function placement support and easy to manage through a convergent set of scalable orchestration APIs. Besides the technological aspects, 5G!Pagoda will develop a coherent proof of concept with two playground nodes, one in Japan and one in Europe, using a uniform network orchestration and a set of in-slice software features enabling the transparent exchange of knowledge and practical implemented components for dynamic deployment and execution of virtual network functions and applications. The testbed will allow practical demonstration of the functionality and will enable the development of an aligned 5G-oriented standardization roadmap for Japan and Europe