Towards a dependable Information Infrastructure for the EU Andrea SERVIDA Head of Sector European Commission DG Information Society - Unit C/4 B-1049 BRUSSELS

Towards a dependable Information Infrastructure for the EU

Andrea SERVIDAHead of Sector

European CommissionDG Information Society - Unit C/4

B-1049 [email protected]

2

OUTLINE

• The IST Programme

• European activities in information security

• FP6: The policy context

• FP6: The new instruments

• Dependability in FP6: the roadmaps

3

The IST programme

TechnologyTechnologyTechnology

Demonstration KA III

Citizens

KA I KA II

KA IV

Work&

Business

Content&

Skills

Essential Technologies

KeyActions

Future and Emerging TechnologiesFuture and Emerging Technologies

Research NetworkingResearch Networking

Cross Programme

Cross Programme

Clusters

AMBIENT INTELLIGENCE IS THE VISION

4

Towards an “all inclusive knowledge society”

““Ambient Intelligence” tomorrowAmbient Intelligence” tomorrow

“Our surrounding” is the interface

Use all senses, intuitive

Context-based knowledge handling

Infinite bandwidth, convergence, ..

Mobile/Wireless full multimedia

Nano-scale

+ new materials

Wide adoption (eHealth, eLearning, …)

>70% of world-wide population on line

IST todayIST today

• PC based ……………………………

• “Writing and reading”…………….…

• “Word” based information search..…

• Low bandwidth, separate networks….

• Mobile telephony (voice)…………...

• Micro scale………………………….

• Silicon based…………………………

• eServices just emerging…………..…

•Only 5% of global population on-line..

5

Depending on technology

Future objective: Develop a “respectful”, productive, innovative and secure Information Society

How to go about it• Foster a global dialogue on an

Information Society respecting the personal sphere, safeguarding resilience, encouraging innovation, enabling productivity

• Promote the understanding of Interdependencies

• Share vision on how to depend on technology

• Innovative R&D

Today’s issues:pervasiveness, interdependency and intrusiveness

Influencing factors• No attention to compatibility

between technology and human systems

• No thinking in terms of privacy respecting Society

• No coordinated effort to address dependability of information and communication infrastructures

• Unforeseeable R&D development

6

Critical infrastructures- What’s at Stake ?

Critical infrastructures- What’s at Stake ?

Transport

Industry

TelecommunicationsMilitary

C4IPower grid

Civil Defense

FinanceInformation

Infrastructures

Vital humanservices

HackersCyber terrorists Foreign IW agents

Mass Media

Water pumps& sewage

This is a global economic and societal challenge

7

Ethics in the Information Society

Future objective: privacy ethics as a key element of the e-society

How to go about it• Privacy as part of education,

training and public debate• Socioeconomic research into

privacy in the e-society• Privacy compatible products

and systems• Innovative R&D to ensure

personal control of privacy

Today’s issues:poor understanding and awareness of risks to privacy

Influencing factors• Globalization• Growing connectedness• Increasing educated consumer• Growing business interest on

knowing more about customers• Increasing use of digital

identities, virtual persona, etc.

8

Overview of EU Activitiesin Information Security

PolicyFramework

PolicyFramework

DependabilityInitiative


• Joint EU-US task force onR&D for CIP

• Dependability Development Support Initiative

• WG on Information Infrastructure Interdependencies& Vulnerabilities

R&DActivities

R&DActivities

• Trust & Security:76 R&D projects(~80 M€)

• Dependability 16 R&D projects(~28 M€)

• R&D in information security key in FP6

• Legislation on• Information &

network security• Attacks against

information systems

• Data protection in communications

• Copyright management

• eEurope 2005• Cybersecurity Task

Force• Culture of security

• International Fora• WIPO• GBDe• OECD• ...

9

eEurope2002: action on dependability and CERTs

– stocktaking on EU CERTs• 4 meetings with industrial, research & public CERTs• Workshop with MS and experts convened under the Swedish

Presidency• 2 Workshop on Early Warning & Information Systems• 3 projects - EISSP, ECSIRT.NET, TRANSITS - funded from Calls 7&8

– Dependability Development Support Initiative• To support the development of dependability policies across

Europe and across sectoral boundaries• To establish networks of interest, to provide baseline data and to

develop policy roadmaps• Focus is on 3 thematic areas: Public private co-operative models,

early warning, R&D in information assurance

– WG on Information Infrastructure Interdependencies and vulnerabilities - set up in cooperation with the JRC

• 2 technical workshops (2000 and 2001)

10

eEurope 2005

• Policy initiative for Information Society for All

• Builds on the progress made in eEurope 2002– Internet penetration in houses doubled; legal framework for

eCommerce; Telecom framework in place; fastest research backbone network; etc.

• Sets ambitious targets– modern online public services (eGovernment, eHealth and

eLearning)

– a dynamic business environment

enabled by

– widespread availability of broadband at competitive prices

– a secure information infrastructure

11

eEurope 2005: Secure Information Infrastructure: Proposed Actions

• Establish a Cyber Security Task Force (CSTF) - by mid 2003 – supported by Member States and Industry

– centre of competence on security issues

• Develop a ‘culture of security’ - end of 2005– develop best practice and standards

– report on progress issued end 2003

• Secure communication between public servers

12


PolicyFramework

PolicyFramework






R&DActivities

R&DActivities






information systems






13

DEPPY: its numbers

• 4 preparatory Workshops held from 1997 to 1999. More than 50 EU org. plus some USA 15 org. were involved.

• 3 Action Lines in IST WP - in 1999, 2000 and 2001;

• 16 projects are part of DEPPY portfolio for an overall value ~54 million Euro of which 28.4 million Euro is the funding from the Commission;

• ~100 contractors in projects + some 40 members in 1 NoE;

• ~20 PO (including 6 from the JRC) have been involved in defining, building and implementing DEPPY;

• 1 DEPPY Project Workshop - at IC-DSN 2001 in Sweden;

• 1 Web site - deppy.jrc.it;

• 1 study on Complexity and dependability - in collaboration with Washington University;

• 2 Workshops on Interdependencies and vulnerabilities in Information Infrastructures - March 2001 & November 2001;

• 1 EU WG on Interdependencies and vulnerabilities in Information Infrastructure - since June 2001;

14


PolicyFramework

PolicyFramework






R&DActivities

R&DActivities






information systems






15

The EC/USA co-operation

• The EC-US Science & Technology Agreement provides the framework for the co-operation

• EC/USA Workshop of Dependability Experts, April 1999 - “Agenda for Collaboration”

• Joint Task Force on RTD for CIP - EC/US Joint Consultative Group of the S&T Co-operation Agreement - since 1998

• Contacts established with the main funding agencies - i.e. DARPA, NSF, DoE, DoC, etc.

• Joint Session on CIP at the 2nd EU-US Conference, “New vistas for transatlantic S&T collaboration”, June 1999

• 3 Joint Thematic Workshops on CIP (2000) and Information Assurance & Survivability (2001) with DARPA and on Interdependencies (2002) with OSTP and NSF

• 4 Joint Conference Sessions at IST1999, ISW200, IC-DSN2000 and IST2001

• 2 Working Workshops, Helsinki (1999), Düsseldorf (2001)

16

The way forward

• Security policy interests should not put at risk personal and social rights to privacy, intimacy and confidentiality

• In absence of geographic and jurisdictional boundaries over the network, securing ourselves would mean securing our Economy and Society

• In a global and seamless world, a balanced regulatory approach should be developed leveraging co-operation and social and economic responsibility

• More knowledge and technical capability should be gained on systemic issues pertaining dependability of critical systems and infrastructures ...

more research is needed ---> FP6

17

Lisbon Strategy

“EU: Largestknowledge-basedeconomy by 2010”

FP6: The Policy Context

EnlargementEnlargement

The then candidate countries

are full partners in

FP5.

ERA: EuropeanResearch Area

ERA: EuropeanResearch Area

FP6, Eureka, COST, National RTD Programmes… towards a

Single Market for Research

Broadband access, e-business, e-government,

security, skills, e-health, ...

Other policiesOther policies

Single Market, Single Currency, Security of

Europeans, Sustainable Development, ...

18

FP6 and the European Research Area

• Moving to a European level Research Policy• Strengthen co-operation between national and EU

activities• Concentrate and focus effort to add value• Improve links between national and EU policies and

schemes• Prepare for the EU enlargement process• Simplify management and implementation procedures• FP6: an essential tool in support of ERA

“Making a reality of the European Research Area”Commission Communication,October 2000

19

IST in FP6 Introduct ion for Consultation Meetings Series 2001 - sl ide #5

I N T E G R A T IN G E U R O P E A N R E S E A R C H

P R IO R IT Y T H E M A T IC A R E A S A N T IC IP A T IN G S /T N E E D S

R e se a rc h fo r p o lic ysu p p o rt

F ro n tie r re se a rc h ,u n e x p e c te dd e v e lo p m e n ts

S p e c if ic S M E a c tiv itie s

S p e c if ic in te rn a tio n a l c o o p e ra tio n a c tiv itie s

Ge

no

mic

an

d b

iote

ch

no

log

y

for

he

alt

h

Info

rma

tio

n s

oc

iety

te

ch

no

log

ies

Na

no

tec

hn

olo

gie

s, i

nte

llig

en

t m

at.

,

ne

w p

rod

uc

tio

n p

roc

ess

es

Ae

ron

au

tic

s a

nd

sp

ac

e

Fo

od

sa

fety

an

d h

ea

lth

ris

ks

Su

sta

ina

ble

de

ve

lop

me

nt

an

d

glo

ba

l c

ha

ng

e

Cit

ize

ns

an

d g

ov

ern

an

ce

in t

he

kn

ow

led

ge

so

cie

ty

JR C a c tiv itie s

S T R U C T U R IN G T H E E R AS T R E N G T H E N IN G T H E

F O U N D A T IO N S O F E R A

R e se a rc ha n din n o v a tio n

H u m a nre so u rc e s &m o b ility

R e se a rc hin fra s tru c tu re s

S c ie n c e a n dso c ie ty

C o o rd in a tio no f re se a rc ha c tiv itie s

D e v e lo p m e n to f re se a rc h /in n o v a tio np o lic ie s

Commission proposal for FP6Commission proposal for FP6

IST in FP6 Introduct ion for Consultation Meetings Series 2001 - sl ide #5

I N T E G R A T IN G E U R O P E A N R E S E A R C H

P R IO R IT Y T H E M A T IC A R E A S A N T IC IP A T IN G S /T N E E D S

R e se a rc h fo r p o lic ysu p p o rt

F ro n tie r re se a rc h ,u n e x p e c te dd e v e lo p m e n ts

S p e c if ic S M E a c tiv itie s

S p e c if ic in te rn a tio n a l c o o p e ra tio n a c tiv itie s

Ge

no

mic

an

d b

iote

ch

no

log

y

for

he

alt

h

Info

rma

tio

n s

oc

iety

te

ch

no

log

ies

Na

no

tec

hn

olo

gie

s, i

nte

llig

en

t m

at.

,

ne

w p

rod

uc

tio

n p

roc

ess

es

Ae

ron

au

tic

s a

nd

sp

ac

e

Fo

od

sa

fety

an

d h

ea

lth

ris

ks

Su

sta

ina

ble

de

ve

lop

me

nt

an

d

glo

ba

l c

ha

ng

e

Cit

ize

ns

an

d g

ov

ern

an

ce

in t

he

kn

ow

led

ge

so

cie

ty

JR C a c tiv itie s

S T R U C T U R IN G T H E E R AS T R E N G T H E N IN G T H E

F O U N D A T IO N S O F E R A

R e se a rc ha n din n o v a tio n

H u m a nre so u rc e s &m o b ility

R e se a rc hin fra s tru c tu re s

S c ie n c e a n dso c ie ty

C o o rd in a tio no f re se a rc ha c tiv itie s

D e v e lo p m e n to f re se a rc h /in n o v a tio np o lic ie s

Commission proposal for FP6Commission proposal for FP6

Main Areas of FP6 Budget

• Integrating & Strengthening ERA– Genomics 2,255 M€– IST (100 M€ Géant/GRID) 3,625 M€– Nanotechnologies, intelligent

materials, new processes 1,300 M€– Aeronautics and space 1,075 M€– Food quality & safety 685 M€– Sustainable development 2,120 M€– Citizens & governance 225 M€– Anticipation of S&T needs 1,300 M€– JRC non-nuclear research 760 M€

• Structuring ERA– Research & innovation 290 M€

– Human resources 1,580 M€– Research infrastructures

(200 M€ Géant/GRID) 655 M€– Science/Society 80 M€

• Reinforcing the ERA basis– Support to co-ordination 270 M€– Support to policy development 50 M€

13,345

2,605

320

16,270 M€

20

• From “project”-thinking to “initiative”-thinking– new instruments: “Integrated Projects” &

“Networks of Excellence”– more strategic thinking

• Develop Europe-wide approaches– Community funding to help aggregate EU,

Member State & private funded efforts– not just supporting RTD …

• Different way of describing content and calls– a lighter workprogramme, different sequencing

of calls, ...

FP6 is not business as usual!

21

FP6: New InstrumentsIntegrated Projects

• Integrated, goal-oriented R&D: – all elements of technology chain– global resources may involve

public & private funds– flexibility in achieving the goals (eg

subsequent calls)

• Size:– Several M€ or tens of M€– Support including

• R&D, training, technology transfer, dissemination, demonstration

• Participants: – Minimum 3 legal entities: 2 from MAS– Industry-academia collaboration including SMEs

Focused R&D

22

“Monolithic”

• Partners known at outset• Tasks identified• Budget known

• Tasks identified• Budget known• Not all participants in

from the beginning

• Objectives & R&Droadmap known

• Tasks to be completed• Budget & participants

change

Integrated Projectsthree possible implementations

“Incremental”participation

“Incremental”funding

23

FP6: New InstrumentsNetworks of Excellence

• “Virtual” Network of Centres of Excellence – to integrate research effort on a particular topic– defined by Joint Programme of Activities (JPA)– on established or emerging fields

• Size– Several M€/year– Support to JPA (up to 25%)

including• R&D, training, technology transfer, mobility

• Participants: – Minimum 3: Universities, research labs, industrial labs– Special measures for SMEs

66

33

55

1

44

NoE

22

ResearchCentres

24

Integrating activities“Binding”

Partner 2

Partner 4Partner 3

Partner1

Partner 2

Partner 3

Partner 4

RTD activities in Europe before the

NoE(today)

Partner 1

RTD activities in Europe with the

NoE (the JPA)

Partner1

Partner 2

Partner 3

Partner 4

Co-ordinated

The NoE field

NoE - Joint Programme of Activities integrating/shaping research

25

Article 169

• Support to “national” RTD programmes, jointly executed according to Art. 169 of the Amsterdam Treaty

• At the initiative of the MemberStates

• EC funding used to supportjointly executed programmes

• Support to “national” RTD programmes, jointly executed according to Art. 169 of the Amsterdam Treaty

• At the initiative of the MemberStates

• EC funding used to supportjointly executed programmes

26

Anywhere anytime natural and Anywhere anytime natural and enjoyable access to IST services for ALLenjoyable access to IST services for ALL

Miniaturised, Miniaturised, low cost low powerlow cost low power

components & µsytemscomponents & µsytems

Natural interactionsNatural interactionswith ‘ knowledge ’ with ‘ knowledge ’

Pervasive, mobile, Pervasive, mobile, wireless, trustful wireless, trustful

infrastructuresinfrastructures

CommunicationCommunication& networking& networking

SoftwareSoftwareµ, nano & optoµ, nano & opto

electronicselectronicsµ and nanoµ and nano

systemssystemsKnowledge Knowledge technologiestechnologies

interfacesinterfaces

Applied IST for major societal and economic challengesApplied IST for major societal and economic challenges

Trust &Trust &Security Security

IST for societal IST for societal challenges challenges

IST for economic IST for economic challenges challenges

Demanding Demanding applicationsapplications

Spe

cifi

cS

peci

fic

Generic

Generic

inte

grat

ion

inte

grat

ion

Building blocks

Building blocks

Security, privacyIPRs, dependabiltySmart cards,...

E and m business,e and m work,learning

GRIDS forscience, engineeringbusiness and society

Health, eInclusion,mobility, environmentsafety, cultural heritage

•Mobile: beyond 3G•Fixed:All optical•Integrated (IPv6)•Adaptive

•Reliable•Embedded•Distributed•Adaptable

•CMOS : the limit•System-on-Chip•Nano-scale •New materials

•Multidiscplines•New Sensing•Networked•New materials•Nano-scale

•Context based•Semantic based •Agent based•Scaleable

•All senses•Multilingual•Intuitive •‘Surrounding’

27

Dependability is a priority for FP6

• Dependability is a key requirement for Information Society: it embraces all the usual attributes and properties of “critical systems”

• There is a growing policy interest on dependability of information infrastructures and related interdependencies (economic security, protection of assets and IT investments, etc.)

• The IST Advisory Group identified dependability as an important topic - which was reinforced after 9/11

• Focussing on dependability implies stimulating an holistic reflection on our dependency on technology

28

Roadmap Projects Supporting the Transition to FP6

DDSI

AMSD : Overall Dependabilitye-business

embedded

CIP privacy

PAMPAS

mobile privacy & security

AMSDdependa

ble embedd

ed systems

ACIPcritical

infrastruct.

protection

RAPID

Privacy /

Identity

Mgmt

BVNBiometr

ics

RESET

Smart Cards

STORKCrypto

Dependability policy support

Building

Constituency

Derive

Research

Roadmaps

1 Jan. 2003

Identify stakeholders & derive Research Roadmap

OPEN discussion

1 June 2002

Dissemination

April 2002Closure

Call 1-FP6

WG-ALPINEActive LossPrevention

29

Web sites

• IST PROGRAMME– http://www.cordis.lu/ist/

• DEPPY Forum– http://deppy.jrc.it

• Dependability action in eEurope 2002– http://www.cordis.lu/ist/ka2/dependability.html

• Roadmap projects– http://www.cordis.lu/ist/ka2/rmapsecurity.html

Documents

Towards a dependable Information Infrastructure for the EU Andrea SERVIDA Head of Sector European Commission DG Information Society - Unit C/4 B-1049 BRUSSELS