Deliverable D7.4 - Repositories of Empirical Knowledge

This deliverable corresponds to the repositories of simulation scenarios, risk models, assurance models and more. The deliverable reflects the outcomes of task T7.4. “Repositories of threats, countermeasures and simulated scenarios”

Deliverable D7.5 - Best Practices for Replicability and Wider Use

Despite the importance of Critical Information Infrastructures (CIIs) and dynamic ICT‐based maritime supply chains (SCs) for port operations, state‐of‐the‐art Risk Management (RM) methodologies for maritime environments pay limited attention to cyber‐security and do not adequately address security processes for international SCs. Motivated by these limitations, MITIGATE will introduce, integrate, validate and commercialize a novel RM system, which will empower stakeholders’ collaboration for the identification, assessment and mitigation of risks associated with cyber‐security assets and SC processes. This collaborative system will boost transparency in risk handling, while enabling the generation of unique evidence about risk assessment and mitigation. At the heart of the RM system will be an open simulation environment enabling stakeholders to simulate risks and evaluate risk mitigation actions. This environment will allow users to model, design, execute and analyze attack‐oriented simulations. Emphasis will be paid on the estimation of cascading effects in SCs, as well as on the prediction of future risks. MITIGATE will be compliant with prominent security standards and regulations for the maritime sector (i.e. ISO27000, ISO28000, ISPS). The MITIGATE system will be built based on readily available technologies of the partners, which will enable the project to produce a mature (high‐TRL) system at an optimal value‐for‐money. The system will be validated based on real‐life pilot operations across five EU ports (Bremen, Piraeus, Valencia, Ravenna, Livorno) with the active participation of over 500 users (security officers, terminal operators, facility operators, standardization experts and more). Also, the project’s approach will be contributed as a blueprint to the NIS public‐private platform. Finally, significant effort will be devoted to the commercialization of the MITIGATE system based on pragmatic business plans and market launch actions

Deliverable D6.2 - External Pilot Operations

The main MITIGATE scope is to provide an innovative Maritime Security System, which integrates an effective, collaborative, standards‐based (i.e. ISO27001, ISO28000) Risk Management services’ platform for Maritime Organizations and Critical Infrastructures (i.e. ports). Specifically, it enables Maritime Organizations to manage their security in a holistic, integrated and cost‐effective manner, while at the same time producing and sharing knowledge associated with the identification, assessment and quantification of cascading effects from their Supply Chain (SC). Since, the first stable version of the MITIGATE system is already up and running, it has been presented to all involved Business Partners and the training material of all types (online help, videos, etc.) is already prepared, the consortium prepared all pilot sites to first involve their internal users. The main objective of deliverable D6.2 is to present the results of the MITIGATE pilot’s operations with external pilot users, and their organization, considering the pilot scenarios specified in WP2 and WP5 and the training processes performed in WP5

Deliverable D8.5 - Report on Dissemination and Communication Activities (Final Iteration)

The scope of this deliverable is to report the dissemination activities performed during the entire project lifecycle and their alignment with the Dissemination and Communication plan described in D8.1. The dissemination activities are reported in distinct categories and their impact to the project progress is analysed in a qualitative and quantitative way. The present deliverable consists the second iteration of D8.2 Report on Dissemination and Communication Activities, as it was submitted in 2017

Deliverable D7.3 - Business, Technical and Organizational Evaluation

This deliverable entails the evaluation of the MITIGATE system and services from a methodological, technical, technological and financial perspective. The MITIGATE methodology, the system and services has been analyzed and compared to other risk assessment tools using the ENISA evaluation methodology. In comparison with the other tools the MITIGATE methodology is proven to be among the best available solutions. The Technical Evaluation, including the unit testing, integration testing, performance testing and the security testing reveals the technical feasibility of the MITIGATE system and services and the maturity of the software. The Socio‐economic & Techno‐economic Evaluation includes the MITIGATE pricing and licensing model, issues about usability improvements and the economic perspectives of the MITIGATE innovation