jtsec will assess the cybersecurity of the IFMIF-DONES infrastructure, which is unique in Europe.

Blog

3
- May
2022
Posted by: José Ruiz
[jtsec statements]
jtsec will assess the cybersecurity of the IFMIF-DONES infrastructure, which is unique in Europe.

These weeks have been very special, and there are projects that we are particularly excited to assume. The DIBA project (Digitalization of interlocks through low latency communications: Application to IFMIF-DONES) has been selected by the Next Generation EU funds to be carried out in the coming months, this first phase is scheduled to end in August 2022.

What is DIBA?

DIBA (Digitization of Interlocks through Low Latency Communications) has as its main objective the design of sensors and digitization of interlocks through low latency communications main objective is the design of sensors and digitization of the signals produced for their subsequent deterministic, secure and subsequent deterministic, secure and ultra-low latency transmission.

DIBA will address the design, study and development of a neutron radiation sensor linked to generation of interlocks for their subsequent transmission over reliable, cyber-secure and deterministic Ethernet networks. deterministic Ethernet networks.

Within the European initiative, Spain and Croatia were the European countries that showed interest in hosting a prestigious infrastructure, IFMIF-DONES. Finally, Croatia decided to support the Spanish candidacy by signing a collaboration agreement to host this prestigious infrastructure in Granada.

This new concept will be investigated in the framework of the IFMIF-DONES particle accelerator. Spain bids to host this infrastructure was presented in Granada, the largest scientific infrastructure in the country and a unique reference in the world for the testing of materials that will form the core of the materials that will make up the core of future fusion reactors. This solution will be applicable not only in the case of IFMIF-DONES but also in other automated/robotized industrial plants developed under the Industry 4.0 paradigm, which will be the main driver for the modernization of the industry.

Who composes the consortium and how will it be developed?

Having institutions and companies of the prestige of the UGR (University of Granada), Ontech Innovation, 7 Solutions (currently Orolia) and AARON in the project is a sign of the potential of DIBA.

The project is divided into 5 work packages, which have been marked so that its evolution is adequate and reaches a successful conclusion. These packages are as follows:

  • Management and coordination.

  • Neutron radiation sensor for the test cell.

  • Cybersecurity for critical systems in IFMIF-DONES.

  • Reliable and critical communications with low response time.

  • Communication and dissemination.

    • jtsec participation in the DIBA project

    jtsec participation in DIBA focuses on including and assessing cyber security in the entire lifecycle for critical IFMIF-DONES systems.

    Our participation is divided into three phases:

    Phase 1

  • Development of a PP (Protection Profile) with implemented cyber security requirements (e.g. Secure boot, Secure update, Low latency communication, Low latency crypto, use of signature in communication messages, Access management mechanisms, Third party components, cryptographic algorithms, etc...). This PP will require exact conformance to the requirements of ISO 15408 (in the new version of the standard).

  • Supporting document indicating how to test each requirement .

  • Preliminary vulnerability analysis for the type of product defined in the PP: for each security function, describe the types of attacks you would make on the basis of the interfaces.

    • Phase 2

  • Generation of the documentation under the Common Criteria methodology: ST/ADV/AGD/ALC...

    • Phase 3

  • Evaluation under the Common Criteria standard based on the PP, as a laboratory accredited by ENAC and CCN to perform evaluations under this methodology.

    • Conclusions

    This is only the first of the three stages set out in the roadmap for the creation of DIBA. Collaborate in improving the cybersecurity of a pioneering project at European level, which is the stage prior to the commercial implementation of fusion reactors, the aim of which is to generate energy from thermonuclear fusion.

    DIBA es una Iniciativa Financiada por el Ministerio de Industria, Comercio y Turismo, como parte del Plan de Recuperación, Transformación y Resiliencia, con los fondos Next Generation EU de la Unión Europea.

    Referencia: AEI-010500-2021b-12

    tags
    José Ruiz/CTO

    Jose is an expert consultant on the Common Criteria standard with more than 10 years of experience. Jose has a wide background in other security assurance standards in the field of the information technology as Common Criteria, FIPS 140-2, FIPS 140-3, GP TEE, PCI-PTS, LINCE. Jose has served as an evaluator, Technical Leader and CC Consultant for Epoche&Espri and as CC lab manager and Cyber Security Service Manager for Applus+. His experience has led him to participate as a speaker in various editions of the ICCC (International Common Criteria Conference) and ICMC (International Cryptographic Module Conference). He has been the “Chairman” of a subgroup within the ISCI WG1 Eurosmart Initiative to develop the CC Methodology. He is also member of different working groups as ISO SC27 or Global Platform TEE and an active member of the group ERNCIP “IACS Cybersecurity certification“.

    In 2017 he founded with Javier what is now known as jtsec. He is currently in charge of promoting the commercial expansion of the company from its headquarters in Madrid as CTO. In addition, he represents jtsec in various national and international forums and is responsible for quality.


    Contact

    Send us your questions or suggestions!

    By sending your data you allow us to use it to resolve your doubts by sending you commercial information of interest. We will delete it when they are no longer necessary for this matter. Know your rights in our Privacy Policy.
    RECENT POSTS
    jtsec - Our LINCE 2023
    Febr 6, 2024
    jtsec - Our LINCE 2023
    We wish you a happy and cybersecure 2024
    Dec 19, 2023
    We wish you a happy and cybersecure 2024
    How to Prepare Your Products and Services for the Quantum Era and Ensure Their Certification?
    Dec 14, 2023
    How to Prepare Your Products and Services for the Quantum Era and Ensure Their Certification?
    How to include your product or service in ENS ALTA.
    Oct 31, 2023
    How to include your product or service in ENS ALTA.
    Certifications and cybersecurity methodologies are generating interest among companies and organizations at both the national and international levels.
    Sept 19, 2023
    Certifications and cybersecurity methodologies are generating interest among companies and organizations at both the national and international levels.
    Legal framework in which the CPSTIC CCN - STIC 105 catalogue is included in the sphere of Public Administration
    Augst 23, 2023
    Legal framework in which the CPSTIC CCN - STIC 105 catalogue is included in the sphere of Public Administration
    New cryptographic evaluation methodology created by CCN, how does it apply and what does it consist of?
    May 9, 2023
    New cryptographic evaluation methodology created by CCN, how does it apply and what does it consist of?
    jtsec achieves ENS High Certification.
    May 1, 2023
    jtsec achieves ENS High Certification.
    Common Criteria Statistics Report for 2022
    March 20, 2023
    Common Criteria Statistics Report for 2022
    How to assess the cybersecurity of a consumer IoT device under the ETSI EN 303 645 scheme?
    March 9, 2023
    How to assess the cybersecurity of a consumer IoT device under the ETSI EN 303 645 scheme?
    CATEGORIES