Upload
thomasine-ford
View
214
Download
0
Embed Size (px)
Citation preview
Towards a dependable Information Infrastructure for the EU
Andrea SERVIDAHead of Sector
European CommissionDG Information Society - Unit C/4
B-1049 [email protected]
2
OUTLINE
• The IST Programme
• European activities in information security
• FP6: The policy context
• FP6: The new instruments
• Dependability in FP6: the roadmaps
3
The IST programme
TechnologyTechnologyTechnology
Demonstration KA III
Citizens
KA I KA II
KA IV
Work&
Business
Content&
Skills
Essential Technologies
KeyActions
Future and Emerging TechnologiesFuture and Emerging Technologies
Research NetworkingResearch Networking
Cross Programme
Cross Programme
Clusters
AMBIENT INTELLIGENCE IS THE VISION
4
Towards an “all inclusive knowledge society”
““Ambient Intelligence” tomorrowAmbient Intelligence” tomorrow
“Our surrounding” is the interface
Use all senses, intuitive
Context-based knowledge handling
Infinite bandwidth, convergence, ..
Mobile/Wireless full multimedia
Nano-scale
+ new materials
Wide adoption (eHealth, eLearning, …)
>70% of world-wide population on line
IST todayIST today
• PC based ……………………………
• “Writing and reading”…………….…
• “Word” based information search..…
• Low bandwidth, separate networks….
• Mobile telephony (voice)…………...
• Micro scale………………………….
• Silicon based…………………………
• eServices just emerging…………..…
•Only 5% of global population on-line..
5
Depending on technology
Future objective: Develop a “respectful”, productive, innovative and secure Information Society
How to go about it• Foster a global dialogue on an
Information Society respecting the personal sphere, safeguarding resilience, encouraging innovation, enabling productivity
• Promote the understanding of Interdependencies
• Share vision on how to depend on technology
• Innovative R&D
Today’s issues:pervasiveness, interdependency and intrusiveness
Influencing factors• No attention to compatibility
between technology and human systems
• No thinking in terms of privacy respecting Society
• No coordinated effort to address dependability of information and communication infrastructures
• Unforeseeable R&D development
6
Critical infrastructures- What’s at Stake ?
Critical infrastructures- What’s at Stake ?
Transport
Industry
TelecommunicationsMilitary
C4IPower grid
Civil Defense
FinanceInformation
Infrastructures
Vital humanservices
HackersCyber terrorists Foreign IW agents
Mass Media
Water pumps& sewage
This is a global economic and societal challenge
7
Ethics in the Information Society
Future objective: privacy ethics as a key element of the e-society
How to go about it• Privacy as part of education,
training and public debate• Socioeconomic research into
privacy in the e-society• Privacy compatible products
and systems• Innovative R&D to ensure
personal control of privacy
Today’s issues:poor understanding and awareness of risks to privacy
Influencing factors• Globalization• Growing connectedness• Increasing educated consumer• Growing business interest on
knowing more about customers• Increasing use of digital
identities, virtual persona, etc.
8
Overview of EU Activitiesin Information Security
PolicyFramework
PolicyFramework
DependabilityInitiative
DependabilityInitiative
• Joint EU-US task force onR&D for CIP
• Dependability Development Support Initiative
• WG on Information Infrastructure Interdependencies& Vulnerabilities
R&DActivities
R&DActivities
• Trust & Security:76 R&D projects(~80 M€)
• Dependability 16 R&D projects(~28 M€)
• R&D in information security key in FP6
• Legislation on• Information &
network security• Attacks against
information systems
• Data protection in communications
• Copyright management
• eEurope 2005• Cybersecurity Task
Force• Culture of security
• International Fora• WIPO• GBDe• OECD• ...
9
eEurope2002: action on dependability and CERTs
– stocktaking on EU CERTs• 4 meetings with industrial, research & public CERTs• Workshop with MS and experts convened under the Swedish
Presidency• 2 Workshop on Early Warning & Information Systems• 3 projects - EISSP, ECSIRT.NET, TRANSITS - funded from Calls 7&8
– Dependability Development Support Initiative• To support the development of dependability policies across
Europe and across sectoral boundaries• To establish networks of interest, to provide baseline data and to
develop policy roadmaps• Focus is on 3 thematic areas: Public private co-operative models,
early warning, R&D in information assurance
– WG on Information Infrastructure Interdependencies and vulnerabilities - set up in cooperation with the JRC
• 2 technical workshops (2000 and 2001)
10
eEurope 2005
• Policy initiative for Information Society for All
• Builds on the progress made in eEurope 2002– Internet penetration in houses doubled; legal framework for
eCommerce; Telecom framework in place; fastest research backbone network; etc.
• Sets ambitious targets– modern online public services (eGovernment, eHealth and
eLearning)
– a dynamic business environment
enabled by
– widespread availability of broadband at competitive prices
– a secure information infrastructure
11
eEurope 2005: Secure Information Infrastructure: Proposed Actions
• Establish a Cyber Security Task Force (CSTF) - by mid 2003 – supported by Member States and Industry
– centre of competence on security issues
• Develop a ‘culture of security’ - end of 2005– develop best practice and standards
– report on progress issued end 2003
• Secure communication between public servers
12
Overview of EU Activitiesin Information Security
PolicyFramework
PolicyFramework
DependabilityInitiative
DependabilityInitiative
• Joint EU-US task force onR&D for CIP
• Dependability Development Support Initiative
• WG on Information Infrastructure Interdependencies& Vulnerabilities
R&DActivities
R&DActivities
• Trust & Security:76 R&D projects(~80 M€)
• Dependability 16 R&D projects(~28 M€)
• R&D in information security key in FP6
• Legislation on• Information &
network security• Attacks against
information systems
• Data protection in communications
• Copyright management
• eEurope 2005• Cybersecurity Task
Force• Culture of security
• International Fora• WIPO• GBDe• OECD• ...
13
DEPPY: its numbers
• 4 preparatory Workshops held from 1997 to 1999. More than 50 EU org. plus some USA 15 org. were involved.
• 3 Action Lines in IST WP - in 1999, 2000 and 2001;
• 16 projects are part of DEPPY portfolio for an overall value ~54 million Euro of which 28.4 million Euro is the funding from the Commission;
• ~100 contractors in projects + some 40 members in 1 NoE;
• ~20 PO (including 6 from the JRC) have been involved in defining, building and implementing DEPPY;
• 1 DEPPY Project Workshop - at IC-DSN 2001 in Sweden;
• 1 Web site - deppy.jrc.it;
• 1 study on Complexity and dependability - in collaboration with Washington University;
• 2 Workshops on Interdependencies and vulnerabilities in Information Infrastructures - March 2001 & November 2001;
• 1 EU WG on Interdependencies and vulnerabilities in Information Infrastructure - since June 2001;
14
Overview of EU Activitiesin Information Security
PolicyFramework
PolicyFramework
DependabilityInitiative
DependabilityInitiative
• Joint EU-US task force onR&D for CIP
• Dependability Development Support Initiative
• WG on Information Infrastructure Interdependencies& Vulnerabilities
R&DActivities
R&DActivities
• Trust & Security:76 R&D projects(~80 M€)
• Dependability 16 R&D projects(~28 M€)
• R&D in information security key in FP6
• Legislation on• Information &
network security• Attacks against
information systems
• Data protection in communications
• Copyright management
• eEurope 2005• Cybersecurity Task
Force• Culture of security
• International Fora• WIPO• GBDe• OECD• ...
15
The EC/USA co-operation
• The EC-US Science & Technology Agreement provides the framework for the co-operation
• EC/USA Workshop of Dependability Experts, April 1999 - “Agenda for Collaboration”
• Joint Task Force on RTD for CIP - EC/US Joint Consultative Group of the S&T Co-operation Agreement - since 1998
• Contacts established with the main funding agencies - i.e. DARPA, NSF, DoE, DoC, etc.
• Joint Session on CIP at the 2nd EU-US Conference, “New vistas for transatlantic S&T collaboration”, June 1999
• 3 Joint Thematic Workshops on CIP (2000) and Information Assurance & Survivability (2001) with DARPA and on Interdependencies (2002) with OSTP and NSF
• 4 Joint Conference Sessions at IST1999, ISW200, IC-DSN2000 and IST2001
• 2 Working Workshops, Helsinki (1999), Düsseldorf (2001)
16
The way forward
• Security policy interests should not put at risk personal and social rights to privacy, intimacy and confidentiality
• In absence of geographic and jurisdictional boundaries over the network, securing ourselves would mean securing our Economy and Society
• In a global and seamless world, a balanced regulatory approach should be developed leveraging co-operation and social and economic responsibility
• More knowledge and technical capability should be gained on systemic issues pertaining dependability of critical systems and infrastructures ...
more research is needed ---> FP6
17
Lisbon Strategy
“EU: Largestknowledge-basedeconomy by 2010”
FP6: The Policy Context
EnlargementEnlargement
The then candidate countries
are full partners in
FP5.
ERA: EuropeanResearch Area
ERA: EuropeanResearch Area
FP6, Eureka, COST, National RTD Programmes… towards a
Single Market for Research
Broadband access, e-business, e-government,
security, skills, e-health, ...
Other policiesOther policies
Single Market, Single Currency, Security of
Europeans, Sustainable Development, ...
18
FP6 and the European Research Area
• Moving to a European level Research Policy• Strengthen co-operation between national and EU
activities• Concentrate and focus effort to add value• Improve links between national and EU policies and
schemes• Prepare for the EU enlargement process• Simplify management and implementation procedures• FP6: an essential tool in support of ERA
“Making a reality of the European Research Area”Commission Communication,October 2000
19
IST in FP6 Introduct ion for Consultation Meetings Series 2001 - sl ide #5
I N T E G R A T IN G E U R O P E A N R E S E A R C H
P R IO R IT Y T H E M A T IC A R E A S A N T IC IP A T IN G S /T N E E D S
R e se a rc h fo r p o lic ysu p p o rt
F ro n tie r re se a rc h ,u n e x p e c te dd e v e lo p m e n ts
S p e c if ic S M E a c tiv itie s
S p e c if ic in te rn a tio n a l c o o p e ra tio n a c tiv itie s
Ge
no
mic
an
d b
iote
ch
no
log
y
for
he
alt
h
Info
rma
tio
n s
oc
iety
te
ch
no
log
ies
Na
no
tec
hn
olo
gie
s, i
nte
llig
en
t m
at.
,
ne
w p
rod
uc
tio
n p
roc
ess
es
Ae
ron
au
tic
s a
nd
sp
ac
e
Fo
od
sa
fety
an
d h
ea
lth
ris
ks
Su
sta
ina
ble
de
ve
lop
me
nt
an
d
glo
ba
l c
ha
ng
e
Cit
ize
ns
an
d g
ov
ern
an
ce
in t
he
kn
ow
led
ge
so
cie
ty
JR C a c tiv itie s
S T R U C T U R IN G T H E E R AS T R E N G T H E N IN G T H E
F O U N D A T IO N S O F E R A
R e se a rc ha n din n o v a tio n
H u m a nre so u rc e s &m o b ility
R e se a rc hin fra s tru c tu re s
S c ie n c e a n dso c ie ty
C o o rd in a tio no f re se a rc ha c tiv itie s
D e v e lo p m e n to f re se a rc h /in n o v a tio np o lic ie s
Commission proposal for FP6Commission proposal for FP6
IST in FP6 Introduct ion for Consultation Meetings Series 2001 - sl ide #5
I N T E G R A T IN G E U R O P E A N R E S E A R C H
P R IO R IT Y T H E M A T IC A R E A S A N T IC IP A T IN G S /T N E E D S
R e se a rc h fo r p o lic ysu p p o rt
F ro n tie r re se a rc h ,u n e x p e c te dd e v e lo p m e n ts
S p e c if ic S M E a c tiv itie s
S p e c if ic in te rn a tio n a l c o o p e ra tio n a c tiv itie s
Ge
no
mic
an
d b
iote
ch
no
log
y
for
he
alt
h
Info
rma
tio
n s
oc
iety
te
ch
no
log
ies
Na
no
tec
hn
olo
gie
s, i
nte
llig
en
t m
at.
,
ne
w p
rod
uc
tio
n p
roc
ess
es
Ae
ron
au
tic
s a
nd
sp
ac
e
Fo
od
sa
fety
an
d h
ea
lth
ris
ks
Su
sta
ina
ble
de
ve
lop
me
nt
an
d
glo
ba
l c
ha
ng
e
Cit
ize
ns
an
d g
ov
ern
an
ce
in t
he
kn
ow
led
ge
so
cie
ty
JR C a c tiv itie s
S T R U C T U R IN G T H E E R AS T R E N G T H E N IN G T H E
F O U N D A T IO N S O F E R A
R e se a rc ha n din n o v a tio n
H u m a nre so u rc e s &m o b ility
R e se a rc hin fra s tru c tu re s
S c ie n c e a n dso c ie ty
C o o rd in a tio no f re se a rc ha c tiv itie s
D e v e lo p m e n to f re se a rc h /in n o v a tio np o lic ie s
Commission proposal for FP6Commission proposal for FP6
Main Areas of FP6 Budget
• Integrating & Strengthening ERA– Genomics 2,255 M€– IST (100 M€ Géant/GRID) 3,625 M€– Nanotechnologies, intelligent
materials, new processes 1,300 M€– Aeronautics and space 1,075 M€– Food quality & safety 685 M€– Sustainable development 2,120 M€– Citizens & governance 225 M€– Anticipation of S&T needs 1,300 M€– JRC non-nuclear research 760 M€
• Structuring ERA– Research & innovation 290 M€
– Human resources 1,580 M€– Research infrastructures
(200 M€ Géant/GRID) 655 M€– Science/Society 80 M€
• Reinforcing the ERA basis– Support to co-ordination 270 M€– Support to policy development 50 M€
13,345
2,605
320
16,270 M€
20
• From “project”-thinking to “initiative”-thinking– new instruments: “Integrated Projects” &
“Networks of Excellence”– more strategic thinking
• Develop Europe-wide approaches– Community funding to help aggregate EU,
Member State & private funded efforts– not just supporting RTD …
• Different way of describing content and calls– a lighter workprogramme, different sequencing
of calls, ...
FP6 is not business as usual!
21
FP6: New InstrumentsIntegrated Projects
• Integrated, goal-oriented R&D: – all elements of technology chain– global resources may involve
public & private funds– flexibility in achieving the goals (eg
subsequent calls)
• Size:– Several M€ or tens of M€– Support including
• R&D, training, technology transfer, dissemination, demonstration
• Participants: – Minimum 3 legal entities: 2 from MAS– Industry-academia collaboration including SMEs
Focused R&D
22
“Monolithic”
• Partners known at outset• Tasks identified• Budget known
• Tasks identified• Budget known• Not all participants in
from the beginning
• Objectives & R&Droadmap known
• Tasks to be completed• Budget & participants
change
Integrated Projectsthree possible implementations
“Incremental”participation
“Incremental”funding
23
FP6: New InstrumentsNetworks of Excellence
• “Virtual” Network of Centres of Excellence – to integrate research effort on a particular topic– defined by Joint Programme of Activities (JPA)– on established or emerging fields
• Size– Several M€/year– Support to JPA (up to 25%)
including• R&D, training, technology transfer, mobility
• Participants: – Minimum 3: Universities, research labs, industrial labs– Special measures for SMEs
66
33
55
1
44
NoE
22
ResearchCentres
24
Integrating activities“Binding”
Partner 2
Partner 4Partner 3
Partner1
Partner 2
Partner 3
Partner 4
RTD activities in Europe before the
NoE(today)
Partner 1
RTD activities in Europe with the
NoE (the JPA)
Partner1
Partner 2
Partner 3
Partner 4
Co-ordinated
The NoE field
NoE - Joint Programme of Activities integrating/shaping research
25
Article 169
• Support to “national” RTD programmes, jointly executed according to Art. 169 of the Amsterdam Treaty
• At the initiative of the MemberStates
• EC funding used to supportjointly executed programmes
• Support to “national” RTD programmes, jointly executed according to Art. 169 of the Amsterdam Treaty
• At the initiative of the MemberStates
• EC funding used to supportjointly executed programmes
26
Anywhere anytime natural and Anywhere anytime natural and enjoyable access to IST services for ALLenjoyable access to IST services for ALL
Miniaturised, Miniaturised, low cost low powerlow cost low power
components & µsytemscomponents & µsytems
Natural interactionsNatural interactionswith ‘ knowledge ’ with ‘ knowledge ’
Pervasive, mobile, Pervasive, mobile, wireless, trustful wireless, trustful
infrastructuresinfrastructures
CommunicationCommunication& networking& networking
SoftwareSoftwareµ, nano & optoµ, nano & opto
electronicselectronicsµ and nanoµ and nano
systemssystemsKnowledge Knowledge technologiestechnologies
interfacesinterfaces
Applied IST for major societal and economic challengesApplied IST for major societal and economic challenges
Trust &Trust &Security Security
IST for societal IST for societal challenges challenges
IST for economic IST for economic challenges challenges
Demanding Demanding applicationsapplications
Spe
cifi
cS
peci
fic
Generic
Generic
inte
grat
ion
inte
grat
ion
Building blocks
Building blocks
Security, privacyIPRs, dependabiltySmart cards,...
E and m business,e and m work,learning
GRIDS forscience, engineeringbusiness and society
Health, eInclusion,mobility, environmentsafety, cultural heritage
•Mobile: beyond 3G•Fixed:All optical•Integrated (IPv6)•Adaptive
•Reliable•Embedded•Distributed•Adaptable
•CMOS : the limit•System-on-Chip•Nano-scale •New materials
•Multidiscplines•New Sensing•Networked•New materials•Nano-scale
•Context based•Semantic based •Agent based•Scaleable
•All senses•Multilingual•Intuitive •‘Surrounding’
27
Dependability is a priority for FP6
• Dependability is a key requirement for Information Society: it embraces all the usual attributes and properties of “critical systems”
• There is a growing policy interest on dependability of information infrastructures and related interdependencies (economic security, protection of assets and IT investments, etc.)
• The IST Advisory Group identified dependability as an important topic - which was reinforced after 9/11
• Focussing on dependability implies stimulating an holistic reflection on our dependency on technology
28
Roadmap Projects Supporting the Transition to FP6
DDSI
AMSD : Overall Dependabilitye-business
embedded
CIP privacy
PAMPAS
mobile privacy & security
AMSDdependa
ble embedd
ed systems
ACIPcritical
infrastruct.
protection
RAPID
Privacy /
Identity
Mgmt
BVNBiometr
ics
RESET
Smart Cards
STORKCrypto
Dependability policy support
Building
Constituency
Derive
Research
Roadmaps
1 Jan. 2003
Identify stakeholders & derive Research Roadmap
OPEN discussion
1 June 2002
Dissemination
April 2002Closure
Call 1-FP6
WG-ALPINEActive LossPrevention