City-level Cyber-Secure Multimodal Transport Ecosystem
CitySCAPE will explore all different cybersecurity dimensions of multimodal transport. These dimensions will drive a characterization of the cyber-threats in the ICT multimodal transport, extended to the close-by power and financial sector. Innovative software tools will be introduced to estimate the cyber-threats propagation in the system.
Traditional security controls and assurance arguments are no longer sufficient to support the emerging needs and applications of multimodal transport systems. This has allowed threats and security incidents to disrupt various aspects of transportation. As a result, the enormous potential of the multimodal ecosystem, such as more efficient transportation, is now at risk due to the growing vulnerability of the system’s cybersecurity.
Objectives
CitySCAPE is an initiative that examines the multi-modal transport ecosystem and its interplay with other critical sectors, such as energy and banking, in compliance with the NIS Directive. It employs innovative risk analysis techniques and software solutions to create an interoperable toolkit that can be seamlessly integrated into any multimodal transport system. This toolkit enables collaborative analysis of persistent security and privacy threats, forecasts potential cyber-security incidents, counteracts probable cyber-attack entry points, assesses the impact in both technical and financial terms, and provides informative notifications to CERT/CSIRT. The proposed solution will undergo validation through regional-level pilots in Tallinn, Estonia, and Genoa, Italy, using carefully selected use-cases identified by the transport operators. The findings will shape training sessions for expert and non-expert audiences, and will also contribute to standardization efforts for security labeling protocols.
Read more HERE
Duration and partners
Duration: September, 2020 to August, 2023
Partners: All partners can be found HERE
Funding
Funding source: This project has received funding from the European Union’s Horizon 2020 research and innovation programme under grant agreement no 883321.
Budget: 5M €
Final results of the project
The CitySCAPE project provides security teams with the ability to effectively detect and respond to potential threats to modular transport systems. Its use of proven solutions and advanced analytical techniques, combined with specifically developed component, make it a powerful tool for ensuring the safety and security of critical infrastructure.
The interconnections were implemented between each component to ensure that security teams can seamlessly access the tools for incident investigations and response, and dynamically update data related to decision-making and security posture to adopt.
Cityscape developed architecture is complex and contains several heteroclite components, ranging from IT servers to autonomous vehicles. It is a hybrid architecture with both physical and virtualized equipment.
The virtualization solution mainly used is the CyberRange provided by ACS; it emulates virtual machines and offers integrated automation actions and VPN capabilities. Its key features are the following:
Representative system modelling
- Import or create virtual machines to create IT and/or OT environment
- Manage large scale infrastructure composed of hundreds of machines
- Hybrid network by connecting physical device
Live-traffic generator
- Animate the representative system
- Emulation generating both network & endpoints logs
Advanced Scenario Engine
- Orchestrate complex chain of events
- Operates autonomously
Cyber-attacks library
- Launch cyber-attack directly from the management interface
Import VM
- Compatible with standard virtualisation technologies
- Integrate machines template in libraries so it can be re-used easily
Configuration & Management of IT stock
- Topological view of VM & physical equipment
- VM & network monitoring from the administration
- Screen deport and/or command console to access each machine
- Centralising software updates for machines deployed in different workspaces
Topologies back-up and deployment
- Capitalise on modelling work by creating reusable topologies et roll them out on the fly
Automatic network configuration
- One click network configuration from the graphical interface
- First level of configuration available from the GUI
Collaborative workspace
- One or many users can work in a same work zone
- Light client accessible from all user machines
Isolated work zone
- Fully isolated from IT
- No risk of contamination or collision between project teams
Share the work
- Topologies and scenario can be exported and imported
- Users on a same CyberRange can share resources (components, attacks, life-traffic, topologies, scenario)
Each partner has his own testing environment connected to the CyberRange through openVPN.
The role of FinEst Centre for Smart Cities
Tallinn usecase and pilot technical setup including implementation of CitySCAPE-specific logging functionality and data interfaces. Implementation of self-driving shuttle pilot for attack and cybersecurity tests, including attack emulation scripts according to vulnerability analysis. Conducting testing jointly with Tallinn city. TalTech will provide the cloning of the two modules comprising the CPaaS, i.e. the remote control centre and fleet management module of the automated shuttles and relevant interfaces with existing components of the Tallinn multimodal ticketing system.
The following WPs and Tasks are led by FinEst Centre:
- WP6 – Data handling and CitySCAPE solution integration
- Task 3.2 – System requirements elicitation
- Task 4.2 – Interfaces implementation and ecosystem set-up
- Task 6.3 – Integration of CitySCAPE stack to multimodal transport
