CISSAN

Collective intelligence supported by security aware nodes

CISSAN will build methods and technology for integrating collective security intelligence to IoT networks. CISSAN-powered networks will be able to collaboratively identify tampered and adversarial devices, detect malicious activities, and select effective countermeasures. Higher IoT network resilience will be accompanied by resource efficiency through intelligent distribution of security functionalities across network nodes.

Project duration

1.5.2023 - 31.5.2026

Core fields of research

Information technology and the human in the knowledge society

Research areas

Cybersecurity

Information systems

Faculty

Faculty of Information Technology

Project description

The proliferation of Internet of Things (IoT) with its smart devices has fundamentally changed how different environments, such as homes, offices, factories, smart buildings, and smart grids, are used and operated. However, as stated in the , security is a major concern for IoT networks and environments, where the risks of physical device tampering, injection of malicious devices, and unpatched vulnerabilities are higher than in traditional networks. This is nicely captured in the : “If it’s smart, it’s vulnerable.” Following “when everything is connected, everything must be protected”, CISSAN proposes and implements algorithms for mitigating IoT security threats (good reviews of which can be found in and ) through collective decision-making and with a reduced impact on the limited resources of IoT devices. These algorithms are based on research and innovation in optimizing the distribution of security capabilities and aggregating the intelligence in IoT network nodes. Three industrial use cases, which nowadays heavily rely on the use of IoT, inform the project developments and are used for validating and demonstrating the project results: (i) public transportation; (ii) smart energy grids; (iii) mining and tunnelling operations.

CISSAN researches and implements algorithms for distributed security monitoring, attack detection and response in IoT networks. Such algorithms combine machine learning-based methods, more traditional AI techniques (e.g., decision-making based on formal knowledge representation and expert systems, fuzzy logic-based approaches, or genetic algorithms), and attack-specific rules. Since increasing the level of autonomy in IoT network defence is one of the high goals of the project, we develop mechanisms for collective decision-making by CISSAN “security agents”, which are essentially security functions placed to IoT network nodes. Blockchain-based consensus protocols are one possible type of such mechanisms to be considered in the project. To enable communication between the security agents (collective intelligence traffic), CISSAN prototypes and evaluates a light overlay networking solution. Also, methods and tools are developed for verifying the quality of data sets used in the project for building machine learning models and supporting other data-driven technologies.

IoT devices are usually resource-constrained, and instrumenting each of them with the full set of security functions required for detecting and countering cyberattacks may not be an optimal strategy. Instead, we work to propose network context-aware algorithms for distributing the security functions among the IoT devices, edge devices, and possibly cloud backends to achieve a suitable balance between the network resilience and the resource utilization.

The technical efforts in CISSAN are accompanied by defining and investigating potential business models around the project results and their business impact analysis. We take into account regulatory and compliance considerations, including the ENISA’s work on certification schemes.

The set of methods and interconnected technology components built by CISSAN, which can be viewed as the CISSAN platform, will be used for integrating collective security intelligence to IoT networks.

For a future IoT network at the design stage, the CISSAN platform can serve a foundation to build upon, by selecting CISSAN-powered devices, integrating CISSAN code to native network nodes, edge devices and cloud backend components, and using CISSAN tools for configuring and managing the IoT network security as appropriate. For IoT networks at later stages in their life cycle, the CISSAN results can be used in adaptive ways to bring network resilience improvements with the maximum impact possible. In addition to this, subsets of the CISSAN technology will be exploited by the project partners, their customers and other third-party organizations. For instance, a planning and optimization tool for distributing security functionality across IoT network devices is expected to bring value to several partners in their future applications, while a tool for blockchain-based integrity protection of sensor data and a cloud service for quality verification of such data are planned to be offered in selected markets.

By integrating the full range or suitable subsets of the CISSAN results, we expect the users to achieve significant security improvements in their IoT networks while minimizing the human expert supervision costs (increasing the level of autonomy in IoT network defence) and the resource consumption for running security functions. The reduction in the number of security incidents and the cost of handling those will make IoT networks exploiting CISSAN methods and technology more trustworthy for their stakeholders and users, which is critical from the business point of view. We also expect that CISSAN-powered IoT networks will be better prepared to security reviews and evaluations in the scope of existing and upcoming regulation, certification schemes, and – possibly – cyber insurances, and we consider this a major business benefit.

Partner Organizations

One company. Endless possibilities.

��ڴ�ä�� in Karlskrona is a company responsible for delivering a wide range of quality services such as energy, heating, circular waste management, and connected networks for electricity and the Internet. We also offer archipelago lines for residents and tourists through our own shipping business. We have a key role in sustainable development in Karlskrona, creating balance in how we use the earth's resources, use fossil-free energy, and build a smart, connected city. We do it with our partners and everyone living and working in Karlskrona.

Website

We are a team of very experienced software professionals with a passion for innovation. Our background spans from being lead architects for many of the products you use when making your daily mobile phone calls, to business and product management.

We are long-time trusted partners for Tier-1 network vendors and service providers.

During a client assignment for 5G R&D, we started to think about how to distribute workloads across a fleet of edge computing locations. That challenge became a mission as there are so many aspects to consider. That mission resulted in our ECO solution for which we have applied patent protection.

Website

Project team

Mats Eriksson
Lars-Göran Magnusson

Bittium specializes in the development of reliable, secure communications and connectivity solutions leveraging its over 35-year legacy of expertise in advanced radio communication technologies. Bittium provides innovative products and services, customized solutions based on its product platforms and R&D services. Complementing its communications and connectivity solutions, Bittium offers proven information security solutions for mobile devices and portable computers. Bittium also provides healthcare technology products and services for biosignal measuring in the areas of cardiology and neurology.

Website

Project team

Jari Partanen
Jari Jauhiainen
Jani Tulppo

Blekinge Institute of Technology (BTH) is a renowned academic institution located in Karlskrona, Sweden. With a strong commitment to excellence in education and research, BTH stands as a leading university in the fields of technology, engineering, and innovation.

Founded in 1989, BTH has since established itself as a vibrant and dynamic university, dedicated to providing high-quality education and fostering impactful research that contributes to societal development. BTH offers a wide range of undergraduate and postgraduate programs, attracting students from all around the world.

At BTH, students benefit from a unique learning environment that combines theoretical knowledge with practical applications. The university's emphasis on innovation and entrepreneurship equips students with the skills and mindset needed to tackle complex challenges and excel in their chosen fields. With a low student-to-faculty ratio, BTH ensures personal attention and close guidance, enabling students to thrive academically.

One of BTH's notable strengths is its strong collaboration with industry partners and organizations. Through various research projects and partnerships, students and faculty have the opportunity to apply their knowledge to real-world problems and contribute to cutting-edge advancements. This practical approach not only enhances the relevance of education but also prepares students for successful careers upon graduation.

Research is a key pillar of BTH's mission, and the university is internationally recognized for its contributions in several areas, including sustainable development, digitalization, software engineering, and telecommunications. BTH's research centers and laboratories provide a rich research environment where scholars and students collaborate to address global challenges and create innovative solutions.

Overall, Blekinge Institute of Technology is a dynamic and forward-thinking institution that combines academic excellence, practical relevance, and a supportive learning environment. With its focus on technology, innovation, and sustainable development, BTH continues to shape the future of education and research, empowering students to make a positive impact on society.

Website

Project team

Kurt Tutschku
Jianguo Ding

Blue Science Park's mission is to accelerate innovation and digital transformation in business and society. We are a meeting place and development environment. Here, individuals, companies and organizations gather and collaborate to develop themselves, their businesses and society.

Today we have over 80 members, representing the entire ecosystem – from research and education to producing companies and advanced users. What binds us together is our desire and drive to capture new opportunities, solve problems and take on challenges with the help of innovation and digitization.

In Blue Science Park there is a core team whose task is to catalyze, facilitate and coordinate activities and efforts.

Website

Project team

Anders Ljungman
Jenny Johnsson

Clavister is a specialised Swedish cybersecurity company, protecting customers with mission-critical applications for more than two decades. Founded and headquartered in Örnsköldsvik, Sweden, Clavister pioneered one of the first firewalls and continues to build robust and adaptive cybersecurity solutions since. Empowering a growing ecosystem of partners and resellers, we are serving customers in more than 100 countries with deployments across the public sector, energy, telecom and defence sectors.

Website

Project team

Anders Lidén
Wissam Aoudi
Nawar Aghi

Spanish company with the aim of improving people's relations with entities through SaaS to hold meetings subject to regulations, as well as administrative procedures in a simple, secure and assisted way, from any place and device. Owner of proprietary Blockchain technology that allows end-to-end traceability of any process.

Website

Project team

Miguel Roser Ballester
Alberto Doval Iglesias
Rodrigo Martinez Castaño
Martín Rubio Fernandez

Geodata is a private-owned Austrian SME, founded 1987 and has 170+ employees in 12+ countries. The company provides services & systems for surveying, instrumentation & monitoring, geophysics and IT for infrastructure, construction and mining, worldwide.

Our customers plan, build, operate, maintain and rehabilitate surface and underground infrastructure, produce in industrial plants (steel, paper, chemicals, energy, automotive, aviation) and operate mining plants.

We provide our customers with information on the location, geometry and condition of their plants and processes. This enables them to control the risks, quality and costs throughout the entire life cycle, from design to dismantling. We design the necessary measurements, perform them and provide high-quality assessment and advice on the data and their interaction with the plant or process. This way, we help our customers make correct decisions.

Website

Project team

Klaus Chmelina
Alois Maierhofer
Maximilian Krieger

Mattersoft Ltd is a Finnish software company focusing on service-based IT systems for transport industry. We specialize in public transport information management, real-time passenger information and transit signal priorities. Since 2018, Mattersoft has been a member of the INIT Group. We operate on a global scale. Mattersoft actively participates in various research projects. These mainly develop new and diverse real-time services and applications, especially for the public transport sector.

Website

Project team

Teemu Kemppainen
Mika Varjola
Tomi Korhonen

Mint Security offers consulting services to all areas of business where confidentiality, data security and cyber security – or the lack thereof – matters.

Our customers consist of businesses from the insurance and financial industry, e-commerce as well as software development, product development and testing companies in Finland and EU. We put effort into knowing and caring about our customers. We deliver all our expertise, honesty, and commitment to our customers. We combine various strengths and strong views for the benefit of our customers. We are not afraid of telling how things are.

Our know-how is strongest in risk management information security standard and processes as well as consulting in different areas of information security. Our knowledge of security processes covers secure software development, incident management and planning and performing security auditing. DevOps and SecOps as well as secure architectures including log management as well as privileged user management are part of our technical offering.

Others make digitalization nice and usable. We add trustworthy and secure.

Website

Project team

Elina Partanen
Ann Sjökvist

Whether you need an IT partner, Microsoft and cloud expertise or rock-solid cybersecurity, Netox has it all. We always start by developing our range of services with each customer’s needs foremost in mind, ensuring that all services bought from us can be used and harnessed to the full. IT helps you to do business, but data security helps you stay in business. Netox’s mission is to ensure that, as our partner, you get the most out of your technology and licensing investments so You can focus on the essentials.

Established 2004.

Website

Project team

Niko Candelin
Ville Kankare
Sami Lamppu

Savantic was founded in 1999 and we consider ourselves a world leader in image processing and sensor technology. Together with our customers, we in the Savantic Team build intelligent systems and we help them knead the data.

Over the years, we have gathered a lot of important experience about how to work data-driven and succeed with AI in practice. Everyone at Savantic has research experience and we love keeping up with the latest research.

In the Savantic Institute, we spread knowledge and inspiration around AI and a data-driven way of working. We help raise Sweden's AI competence!

Website

Project team

Karoly Makonyi
Claes Orsholm
Roger Viberg

Techinova is a Swedish company providing products and services primarily for the electricity distribution market. Security of information is a matter of the utmost importance in everything we do. Techinova was founded in 2010 and is now one of the main suppliers to the Swedish electricity distribution market. Our main office is in Karlskrona with branch office in Uppsala.

Website

Project team

Peter Fransson
Kristian Kratschmer
Henrik Johansson

At the Faculty of Information Technology, we integrate technological, informational, organizational and business perspectives alongside a human approach into our research. Our research is also characterized by close collaboration with businesses, other universities and research institutes, and the public sector. Our goal is international excellence in research quality.

Our key research areas form one of the strategic core fields in the Ģ��ֱ��'s research profile: Information technology and the human in the knowledge society.

Project team

Ilgin Safak - Project manager
Tapio Frantti - Project owner
Sara-Päivi Paukkeri - Project researcher
Mikko Lehkonen - Project researcher
Veikko Markkanen - Project researcher
Palvi Shelke - Project researcher
Reijo Savola - Project researcher
Arttu Takala - Project researcher
Riku Lehkonen - Project researcher

Wirepas is a wireless connectivity company offering affordable advanced mesh technology for large-scale networks. It enables massive decentralized, scalable, high-density, and long-range networks without operators, infrastructure or subscriptions. Wirepas uses NR+, the first non-cellular 5G standard, using a free global spectrum.

Website

Project team

Ville Kaseva

Publications

Publication

2025

International Conference on Cyber Warfare and Security

Shelke, Palvi

Frantti, Tapio

Publication | 2024

Ammara, Dure Adan ; Ding, Jianguo ; Tutschku, Kurt

__________________________________________________________________________________________

Publication | 2023

Lecture Notes in Computer Science

Frantti, Tapio ; Safak, Ilgin

Public funding and Coordination

News

Driven by Data

Excerpt taken from:

The company is continuing to develop AI-based technologies to assess the quality of monitoring data through participation in the cybersecurity-focused EUREKA Celtic Next research project CISSAN. They are developing a "data quality and security verification system allowing the detection of suspicious data, a data signing system using security chips, and a blockchain-based data verification system using the blockchain to guarantee manipulation free monitoring data", said Chmelina. All three systems are currently under development with prototypes to be expected in early 2025 and incorporation into Geodata's cloud monitoring platform Geodatahub (formerly named Kronos) in early 2026.

Geodata_ GeomechanikKolloquiumConference_booth

Geodata is presenting their CISSAN work in their booth at the Geomechanik Kolloquium conference in Salzburg (Austria) on October 10 -11 2024 ().

This includes the technical efforts in WP4 on the data quality verification method and system and on sensor data integrity protection (using both data signing and blockchain-based techniques) and a plan for integrating these new capabilities to Geodata monitoring products.

Geodata_GeomechanikKolloquiumConference_slide

Project deliverables

CISSAN_PROJECT_D1.1

CISSAN_PROJECT_D2.1

CISSAN_PROJECT_D2.2

CISSAN_PROJECT_D4.2

CISSAN_PROJECT_D5.1

Ģ��ֱ��

CISSAN

Table of contents

Project description

Approach

Objectives

Partner Organizations

���ڴ�ä�������������

Arctos Labs

Bittium

Blekinge Institute of Technology

Blue Science Park

Clavister

Councilbox

Geodata

Mattersoft

Mint Security

Netox

Savantic

ScopeSensor

Techinova

Ģ��ֱ��

Wirepas

Publications

Public funding and Coordination

News

Driven by Data

Project deliverables

CISSAN - TechEx