1 of 20

Enhancing cybersecurity automation and information sharing in defence systems

HERMES EDIDP PROJECT

RESEARCH AND INNOVATION SYMPOSIUM FOR EUROPEAN SECURITY AND DEFENSE 2023 | MAY 29TH – MAY 31ST | RODES, GREECE

2 of 20

AGENDA

About the HERMES Project

HERMES Objectives

HERMES as a Solution

HERMES Outcomes and Achievements

HERMES Evaluation Process

3 of 20

ABOUT HERMES

Advanced Design of the HERMES Data Exchange Platform Supporting the Cyber Defence of Autonomous Military Systems

HERMES

Programme: European Defence Industrial Development Programme (EDIDP)

Duration: 33 months

Start date: 01 Dec 2021

Total budget: 2,499,780.00 €

100% EC Funded

2 – Phases Project

    • Phase 1 : Studies (10 Months Duration)
    • Phase 2 : Design (22 Months Duration)

Implementation Phases

4 of 20

ABOUT HERMES – THE TEAM

TALGEN Cybersecurity OÜ (Subcontractor)

Our Team

EBOS Technologies (Coordinator)

Invisible Things Lab (Consortium Member)

ITTI Sp. z.o.o. (Consortium Member)

HERMES brings together four SMEs with great expertise in software development and cybersecurity.

5 of 20

ABOUT HERMES – THE CONCEPT

HERMES is a military-grade, enterprise system composed of different software components that can be deployed in various parts of an organisation across various security domains.

It can be used by various experts to gather, curate and distribute cybersecurity information to several systems, including UGVs.

As a system, HERMES provides a foundation that addresses the challenges of overloading a cybersecurity system with poor quality, untimely, and irrelevant cybersecurity information:

To manage the volume and depth of cybersecurity knowledge necessary for cyber information superiority

For experts

to feed data to cybersecurity applications, increasing their ability to inter-operate but alto to function autonomously

For Systems

6 of 20

HERMES MAIN OBJECTIVE

To fully design and develop the HERMES Data Exchange Platform (DXP).

Based on prior work, published by the NATO Communications and Information Agency, HERMES uses an innovative approach addressing the main challenges affecting:

    • Automation and autonomy in cybersecurity
    • Secured information sharing, collaboration, and outsourcing

HERMES DXP will provide a foundation for a disruptive paradigm shift in autonomous military systems ensuring cyber information superiority while also improving the ability of cybersecurity applications to interoperate and function autonomously in a reliable manner.

7 of 20

HERMES MAIN OBJECTIVE

  • Fully design and develop the HERMES Data Exchange Platform (DXP).

Why HERMES DXP has been chosen?

Exchange

Because one of the key strengths of HERMES is to facilitate the exchange of data across cybersecurity solutions, organisational boundaries, and security domains.

Data

Because the primary usage of the information held in HERMES is automated and autonomous therefore relevant and timely data is required.

Platform

To stress the fact that HERMES is not a cybersecurity tool per se, but rather a foundational system that provides data to cybersecurity applications.

8 of 20

HERMES KEY OBJECTIVES

Put the groundwork in place for other SMEs to join the next steps, giving them an opportunity to be engaged, grow their capabilities, and make a larger contribution towards EU industrial autonomy.

Bring forward SME innovation

Improve the readiness, reliability, safety and sustainability of EU forces in all spectrum of tasks and missions.

Facilitate burden-sharing collaboration and outsourcing of cybersecurity data management

Address significant shortcomings within the cybersecurity domain with respect to the quality and relevancy of the information and data that reaches the human operators, services and autonomous devices.

Improve Information Superiority and Cyber Responsive Operations

HERMES will deliver the complete design for a cybersecurity solution contributing to the protection of future security and defence systems.

Deliver the complete design of the HERMES Data Exchange Platform

Enable automation and autonomy in cybersecurity operations

Offer the opportunity for applications to obtain their data from a common system that takes care of the common data representation, storage and exchange issues.

9 of 20

HERMES SEEKS TO…

Demonstrate the HERMES system’s key features identifying a business model for long-term sustainability.

Help cybersecurity solution vendors (manufacturers and operators) of autonomous military systems to work together more efficiently, to better support autonomous cyber defence.

Target the area of “cybersecurity solutions for the protection of future security and defence systems” of the EDIDP-SME-2020 call.

01

02

03

10 of 20

QUALITY OF HERMES DXP SOLUTION

Foundational System

Controlled Multilateral Sharing

Dynamic Ontologies

Data Centralisation

Security

Support Collaboration

Adaptable Quality Assurance

Expose Dissension to Reach Consensus

Ultimately, HERMES will provide a system by which an organisation can take ownership of its data (whether obtained from sharing agreements, procured, or generated), and offer the functionality necessary for its full lifecycle management and exploitation.

11 of 20

HERMES DEMONSTRATIONS

Dynamic ontologies and quality assurance

    • Use of dynamic ontologies to demonstrate interoperability
    • allow in-system definition and version control of different datasets and customised Quality Assurance
    • allowing end-users to define processes related to datasets

Security and multi-community and multi-domain synchronisation

    • Use of Qubes OS based security
    • Demonstrate sharing of data across multiple independent communities, and synchronisation across security domains and networks

Integration with existing data feeds, products and military systems

    • Automated ingestion of data from existing data sources
    • Demonstrate the impact and value towards the cyber defence of autonomous UGV (in a simulated environment)

12 of 20

HERMES METHODOLOGY & STANDARDS

Agile Methodology

A non-sequential agile approach is followed to ensure that the system we want to implement meets the needs of the stakeholders and is delivered on time and within budget.

Continuously gathering and refining elements like the requirements while revisiting earlier steps, such as elicitation and analysis, as new information becomes available.

The same approach will be followed during demos, while the feedback gathered will enhance the system design.

13 of 20

HERMES METHODOLOGY & STANDARDS

  1. Cybersecurity Framework of National Institute of Standards and Technologies (NIST)
  2. IEEE 830 - IEEE Recommended Practice for Software Requirements Specifications
  3. ISO/IEC 29148 - Systems and software engineering - Life cycle processes
  4. MIL-STD-961E - Defence and Program-Unique Specifications Format and Content
  5. MIL-STD-498- Software Development and Documentation.
  6. Defence Acquisition Guidebook (DAG) for the acquisition of defense systems with guidance on the entire system development process, including requirements management.
  7. ISO/IEC/IEEE 15288 - Systems and Software Engineering - System Life Cycle Processes.
  8. NATO Architecture Framework (NAF) for the development of defense systems that provides guidance on the development of architectures for defense systems.
  9. ENISA Cybersecurity Threat Landscape 2022 threat landscape
  10. European Commission. COM (2022) 61. ‘Roadmap on critical technologies for security and defence’
  11. British Ministry of Defense Architecture Framework (MODAF)
  12. TOGAF Open Group Enterprise Architecture Methodology
  13. European Space Agency Architectural Framework (ESA-AF)
  14. European Cooperation for Space Standardization (ECSS)

Comply with Standards

Ensure that HERMES system requirements are effectively managed, and that HERMES architecture and system are designed to meet the desired quality, safety, and performance level for military applications.

be aligned with existing and emerging standards and standardisation bodies like NATO, PESCO, ECSO, ENISA, ETSI, and ITU.

14 of 20

HERMES EVALUATION METHODOLOGY

HERMES outcomes are evaluated by an End-User Advisory Board (EUAB) during multiple milestones.

Milestones consist of a formal review and engagement of the EUAB to capture feedback.

A presentation with project outcomes is taking place in a form of a review and at the end of each review, the members of the EUAB fill in a questionnaire capturing their assessment of the quality of the work done to date as a measure of the success of the project.

EUAB Members (6 in total):

    • Cyprus Ministry of Defence
    • Cyprus National Security Authority
    • Senior Scientist from NATO
    • Security technical leader at a security operations centre
    • Approach additional MoDs: France, Germany, and Poland

15 of 20

HERMES EVALUATION & ACHIEVEMENTS

Mission Definition Review

Preliminary Requirements Review

System Requirements Review

Preliminary Design Review

Demo 1

Demo 2

Demo 3

Critical Design Review

EUAB reviewed and approved the project’s concept, Use Cases and initial Common Requirements of the HERMES system as agreed by the Member States.

EUAB reviewed and approved the final Common Requirements of HERMES system as they have been agreed by the Member States.

EUAB reviewed and approved the detailed requirements of the HERMES system and security by design approach followed in project.

EUAB will review and approve the preliminary design and final architecture of HERMES system.

EUAB will review and approve the full technical design of HERMES system.

EUAB will review and provide feedback and acceptance on results obtained during the 1st demonstration.

EUAB will review and provide feedback and acceptance on results obtained during the 3rd demonstration.

EUAB will review and provide feedback and acceptance on results obtained during the 2nd demonstration.

MS5 – Sep 2023

MS1 – June 2022

MS4 – June 2023

MS3 – Feb 2023

MS2 – Nov 2022

MS8 – July 2024

MS7 – Mar 2024

MS6 – Dec 2023

16 of 20

HERMES ACHIEVEMENTS

Completion of Phase 1 – Studies

    • Setup HERMES Mission Definition
    • Perform a Feasibility Study Including Implementation Options and Commercialisation Roadmap
    • Define and Finalise Common Requirements of HERMES System

Currently Implementing Phase 2 – Design

    • Perform a Security Risk Assessment on HERMES System
    • Identify a Security by Design Approach
    • Design a Solid Version of HERMES Architecture
    • Define the Initial Version of Detailed Requirements

Impact Maximisation

    • Identify and Implement a Dissemination & Communication Plan
    • Perform a Market Analysis on the Cybersecurity / Defence / UGVs Markets
    • Identify Potential Exploitation Opportunities for the HERMES Solution

17 of 20

HERMES ACHIEVEMENTS

Promote HERMES in Cyber-security & Defence Industry by:

    • Producing Dissemination and Communication Materials to be shared with the WIDER Public AND TARGET AUDIENCE
    • Participating and Presenting the Project in Events, Workshops, and Conferences

18 of 20

FOLLOW US

www.hermes-dxp.eu

HERMES EDIDP Project

@HERMES_EDIDP

info@hermes-dxp.eu

19 of 20

ACKNOWLEDGEMENT

The work presented in this paper received funding from the European Commission, under the European Commission’s European Defence Industrial Development Programme (EDIDP) for 2020 Call, Topic: Innovative and future-oriented defence solutionsentitled HERMES (Advanced Design of the HERMES Data Exchange Platform Supporting the Cyber Defence of Autonomous Military Systems) under Grant Agreement number EDIDP-SME-2020-099-HERMES.

Project higher classification level on information sharing: Restricted

20 of 20

Frini Lazarou

HERMES Quality and Risk Manager

frinil@ebos.com.cy

RESEARCH AND INNOVATION SYMPOSIUM FOR EUROPEAN SECURITY AND DEFENSE 2023 | MAY 29TH – MAY 31ST | RODES, GREECE

THANK YOU FOR YOUR ATTENTION