Project Details
Layman's description
Have you considered what would happen if our power grid, hospitals and similar would be attacked? Blackouts, such as in Ukraine in 2015/16 or ransomware attacks on hospitals that can even lead to death of patients.
With the digitalization, Cybersecurity has become more relevant. Cybersecurity is a cat-and mouse game, with the attacker having a clear advantage. Traditional defenses are not enough to defend against attacks. The challenge becomes even greater when dealing with legacy systems, such as industrial control or medical networks, which run critical infrastructure but rely on outdated, insecure protocols. These systems are notoriously difficult to protect, because the focus is on availability, and the systems need to be running 24/7.
This is where cyber defense deception comes in – a strategy that turns the tables on attackers and puts them at a disadvantage by misleading them. Cyber deception, instead of just detecting or blocking threats, traps or confuses attackers. This is done by creating fake systems or hiding the real. This project explores how cyber deception can be enhanced and applied to protect legacy systems. One key innovation is the concept of gentle deception, a tailored approach to securing legacy networks without disrupting their operations, meaning they continue to be available. Another part is cyber-psychology. The goal is to use their own cognitive biases against them, to lure and slow down an attacker.
By advancing cyber deception, this research offers a new line of defense against cyber threats for vulnerable legacy systems. The goal is to shape practical applications. Ultimately, this work contributes to a smarter, more adaptive cybersecurity strategy, where defenders do not just react to threats but actively outmaneuver attackers.
With the digitalization, Cybersecurity has become more relevant. Cybersecurity is a cat-and mouse game, with the attacker having a clear advantage. Traditional defenses are not enough to defend against attacks. The challenge becomes even greater when dealing with legacy systems, such as industrial control or medical networks, which run critical infrastructure but rely on outdated, insecure protocols. These systems are notoriously difficult to protect, because the focus is on availability, and the systems need to be running 24/7.
This is where cyber defense deception comes in – a strategy that turns the tables on attackers and puts them at a disadvantage by misleading them. Cyber deception, instead of just detecting or blocking threats, traps or confuses attackers. This is done by creating fake systems or hiding the real. This project explores how cyber deception can be enhanced and applied to protect legacy systems. One key innovation is the concept of gentle deception, a tailored approach to securing legacy networks without disrupting their operations, meaning they continue to be available. Another part is cyber-psychology. The goal is to use their own cognitive biases against them, to lure and slow down an attacker.
By advancing cyber deception, this research offers a new line of defense against cyber threats for vulnerable legacy systems. The goal is to shape practical applications. Ultimately, this work contributes to a smarter, more adaptive cybersecurity strategy, where defenders do not just react to threats but actively outmaneuver attackers.
| Status | Active |
|---|---|
| Effective start/end date | 15/10/2024 → 14/10/2027 |
Fingerprint
Explore the research topics touched on by this project. These labels are generated based on the underlying awards/grants. Together they form a unique fingerprint.