Project description
Promoting trustworthy cyber insurance policies
Malicious cyberattacks and data breaches can be devastating for enterprises, resulting in the loss of customers and revenue. Although cyber insurance coverage can help enterprises recover financial losses from a cybersecurity incident, it is a relatively new field that lacks market differentiation. The MSCA-funded CyberSure project aims to establish a novel platform that will enable the creation and management of customised cyber insurance policies. The platform will include tools that continuously analyse risks and certify that insured systems have adequate security, thus ensuring a solid liability basis. Through real-world trials in e-health and cloud services, the project will evaluate and fine-tune the platform for market readiness.
Objective
CyberSure is a programme of collaborations and exchanges between researchers aimed at developing a framework for creating and managing cyber insurance policy for cyber systems. The purpose of creating such policies will be to enhance the trustworthiness of cyber systems and provide a sound basis for liability in cases of security and privacy breaches in them. The framework will be supported by a platform of tools enabling an integrated risk cyber system security risk analysis, certification and cyber insurance, based on the analysis of objective evidence during the operation of such systems.
CyberSure will develop its cyber insurance platform at TRL-7 by building upon and integrating state of the art tools, methods and techniques. These will include: (1) the state of the art continuous certification infrastructure (tools) for cloud services developed by the EU project CUMULUS; (2) the risk management tool of NIS enhanced by the NESSOS risk management methodology; and (3) insurance management tools of HELLAS.
The development of the CyberSure platform will be driven by certification, risk analysis and cyber insurance scenarios for cyber system pilots providing cloud and e-health services. Through these, CyberSure will address the conditions required for offering effective cyber insurance for interoperable service chains cutting across application domains and jurisdictions.
Fields of science
Programme(s)
Coordinator
70013 Irakleio
Greece