CyberSEAS (Cyber Securing Energy dAta Services) ambition is to improve the resilience of energy supply chains, protecting them from disruptions that exploit the enhanced interactions and extended involvement models of stakeholders and consumers in complex attack scenarios, characterised by the presence of legacy systems and the increasing connectivity of data feeds. It has 3 strategic objectives: 1) countering the cyber risks related to highest impact attacks against EPES; 2) protecting consumers against personal data breaches and attacks; and 3) increasing the security of the Energy Common Data Space. All three objectives are equally important, since cyber-criminals are shifting tactics to favour multi-stage attacks in which stealing sensitive data is a precondition for the real attack, and enables them to maximise damage and profits (while traditionally infrastructure cyber-attacks used to be direct attacks to the machinery and typically targeted control systems, not data). Threat actors, especially large ones such as nation states, also carry out complex attacks that leverage supply chain dependencies, and this trend continues to grow, as highlighted in the July 2020 analysis by the Atlantic Council. Likewise, with the transition to scenarios where users are proactively involved, prosumer data is becoming more and more sensitive. To achieve these objectives, CyberSEAS delivers an open and extendable ecosystem of 30 customisable security solutions providing effective support for key activities, and in particular: risk assessment; interaction with end devices; secure development and deployment; real-time security monitoring; skills improvement and awareness; certification, governance and cooperation. CyberSEAS solutions are validated through experimental campaigns consisting of 100+ attack scenarios, tested in 3 labs before moving out to one of 6 piloting infrastructures across 6 European countries. Out of the 30 solutions, 20 will reach TRL8+ and 10 TRL7.

Europe is facing unprecedented challenges, such as the health, migration, economic, climate, energy, and political crises, leading to a sharp increase in emergency public spending and relaxation of due diligence checks. This has resulted in a rise in corruption and fraudulent activities, which have significant negative impacts on the European economy, society, environment, and democracy. Despite emerging technology’s potential to become a powerful tool in the fight against corruption and fraud, the public sector has been slow to adopt digitalization, resulting in data NOT being shared, harmonized, or properly analysed, making evidence-based decision-making almost impossible. Governments are slowly adopting new approaches to ensure a more data-driven, transparent, and accountable public governance, but several fundamental data-related issues remain unresolved. With a team of 9 excellent research institutions and universities, 12 technology, business, and standards, developing companies, 7 public end users, and 3 domain-relevant, industry-exposed NGOs, CEDAR will: (1) Identify, collect, fuse, harmonise, and protect complex data sources to generate and share 10+ high-quality, high-value datasets relevant for a more transparent and accountable public governance in Europe. (2) Develop interoperable and secure connectors and APIs to utilise and enrich 6+ Common European Data Spaces. (3) Develop innovative and scalable technologies for effective big data management and Machine Learning (ML) operations. (4) Deliver robust big data analytics and ML to facilitate human-centric and evidence-based decision-making in public administration. (4) Validate the new datasets and technologies (TRL5) in the context of fighting corruption, thus aligning with the EU strategic priorities: digitalisation, economy, democracy. (5) Actively promote results across Europe to ensure their adoption and longevity, and to generate positive, direct, tangible, and immediate impacts.

ORION will (a) improve coordination between border, customs and security controls through the development of novel, ground-breaking technologies to streamline processes and enhance communication between various control points; (b) optimize resource allocation for border checks in a dynamic manner, reducing wait times and hassle for travellers while maintaining high security standards; (c) enhance threat detection capabilities of border authorities in challenging operational environments such as on roll-on-roll-off ferries where vehicles and passengers are in continuous movement; (d) enforce interoperability with existing databases and tools and legacy systems used by different EU MSs; (e) improve energy efficiency and reduce the environmental impact of the border passing operations minimizing the waiting queues and reducing traffic congestion in these border crossings points and (f) ensure strong ethical and legal compliance of the developed technologies in order to protect travellers’ personal data. Its innovative framework will be demonstrated in 4 diverse yet complementary use cases, i.e., targeting passenger and vehicle verification during (a) embarkment and (b) disembarkment from roll-on-roll-off (Ro-Ro) ferries, (c) enhanced risk assessment and resource allocation at land border check points and (d) improved security for passengers travelling by train.

EU Critical Infrastructures (CIs) are increasingly at risk from cyber-physical attacks and natural hazards. Research and emerging solutions focus on the protection of individual CIs, however, the interrelationships between Cis has become more complex for example in smart cities and managing the impacts of cascading effects and enabling rapid recovery is becoming more pertinent and highly challenging. PRECINCT aims to connect private and public CI stakeholders in a geographical area to a common cyber-physical security management approach which will yield a protected territory for citizens and infrastructures, a ‘PRECINCT’ that can be replicated efficiently for a safer Europe and will deliver: 1. A PRECINCT Framework Specification for systematic CIs security and resilience management fulfilling industry requirements. 2. A Cross-Facility collaborative cyber-physical Security and Resilience management Infrastructure enabling CI stakeholder communities to create AI-enabled PRECINCT Ecosystems and enhanced resilience support services. 3. A vulnerability assessment tool that uses Serious Games to identify potential vulnerabilities to cascading effects and to quantify resilience enhancement measures. 4. PRECINCT’s Digital Twins to represent the CIs network topology and metadata profiles, applying closed-loop Machine Learning techniques to detect violations and provide optimised response and mitigation measures and automated forensics. 5. Smart PRECINCT Ecosystems, deployed in four large-scale Living Labs and Transferability Validation Demonstrators, will provide measurement-based evidence of the targeted advantages and will realize Digital Twins corresponding to the CIs located therein, include active participation of emergency services and city administrations with results feeding back to the Digital Twins developments. 6. Sustainability related outputs including Capacity Building, Dissemination, Exploitation, Resilience Strategy, Policy/Standardisation recommendations

InfraStress addresses cyber-physical (C/P) security of Sensitive Industrial Plants and Sites (SIPS) Critical Infrastructures (CI) and improves resilience and protection capabilities of SIPS exposed to large scale, combined, C/P threats and hazards, and guarantee continuity of operations, while minimizing cascading effects in the infrastructure itself, the environment, other CIs, and citizens in vicinity, at reasonable cost. In fact, InfraStress will develop TRL4+ solutions from preceding research and innovation towards TRL7 level producing maximum adoption of the proposed methods and solutions. Addressing the current fragmentation of available security solutions and technology, InfraStress will provide an integrated framework including cyber and physical threat detection, integrated C/P Situational Awareness, Threat Intelligence, and an innovative methodology for resilience assessment – all tailored to each site. InfraStress adopts a user-driven approach carried out through: a) delivery of usable and user-friendly Services and Applications for C/P protection and resilience; b) technical activities driven by and receiving active input from end users, i.e. SIPS and relevant stakeholders; c) a comprehensive set of 5 real-world Pilots and Evaluation activities to be carried out by User partners. InfraStress matches key impacts not only in response to the Work Programme Call but also at Strategic, Socio-economic and Market levels. In fact InfraStress was conceived since the beginning with a strong business vision in mind and will carry out effective exploitation actions ensureing successful go-to-market. Tailored activities are also planned to rise a a culture of participatory security to involve all stakeholders including companies, workers, public authorities, citizens and civil society. InfraStress involves 27 partners of excellence from 11 countries with very cross-cutting and complementary competences and excellent track records, including 5 SIPS operators.