






SAFEGUARD
Self-healing Architectures based on
context DEpendent adaptive
Software Agents (SADESA) – an
extension of EU-IST Project
SAFEGUARD
WWW.IST-SAFEGUARD.ORG
DeSIRE Workshop
Pisa, 25-26 November 2002
Sandro Bologna, ENEA
[email protected]







SAFEGUARD
An overview of the SAFEGUARD Project

Aims to enhance the
survivability of Large Complex
Critical Infrastructures (LCCIs)
developing a middleware that
implement the concepts of
Self-healing Architectures.



It will use electricity networks
and telecommunications
networks as practical examples
of LCCIs.
The aim is to produce a generic
solution that can be adapted for
other forms of LCCI.
Started December 2001,
ends May 2004
Safeguard
Project Presentation - November 2002
Pisa







SAFEGUARD
Assumptions in the SAFEGUARD Project
Safeguard is based on the assumptions that:

Large Complex Critical Infrastructures are too complex to be
protected solely by the existing generic SCADA Systems based
on “conventional” technology

LCCIs does not evolve dynamically

Agent technology is a very effective way to implement the
concepts of Self-healing Architectures and increase the
survivability of LCCIs faced with:



Safeguard
Failure
Accidents
Attacks
Project Presentation - November 2002
Pisa








SAFEGUARD







Safeguard
-
human organisation node
-
physical network node
-
control & information flows network node
-
SAFEGUARD network node
Project Presentation - November 2002
Pisa







SAFEGUARD
Vulnerability
Assessment
agents
Reconfiguration
agents
STRATEGIC LAYER
Event
Identification
agents
Planning
agents
PLANNING LAYER
Protection
agents
Control
agents
Fault
Isolation
agents
Self-healing
agents
REACTIVE CONTROL LAYER
PROPRIETARY CONTROL SYSTEM
Safeguard
Project Presentation - November 2002
Pisa







Roles and interrelations between SAFEGUARD agents
SAFEGUARD
STATE
ESTIMATOR
VIRUS
CHECKER
IDS
DIAGNOSIS
SOFTWARE
ANOMALY
DETECTION
Wrapper
agent
Ignore
data
Add virus
definition
High-level agent at
the top of the anomaly
detecting hierarchy
Add attack
signature
Add
diagnosis
Increase
sensitivity
Correlation agent
Topology Agent
Action agent
Negotiation
agent
Safeguard
Project Presentation - November 2002
Pisa







SAFEGUARD
WHY CONTEXT DEPENDENT ADAPTIVE AGENTS
Organisational
Layer
Structural Complexity
Network Evolution
Intra-dependency
Cyber
Layer
Node Diversity
Inter-dependency
Connection Diversity
Physical
Layer
System misuse
Dynamical complexity
Safeguard
Project Presentation - November 2002
Pisa







SAFEGUARD
NEW R&D SUBJECTS
SELF-HEALING ARCHITECTURES BASED ON CONTEXT
DEPENDENT ADAPTIVE SOFTWARE AGENTS (SADESA)
TO DEVELOP APPROPRIATE ARCHITECTURES DEPLOYING
ON LINE CONTEXT-DEPENDENT NETWORK AGENTS THAT
ADAPT TO EVENTS AND SURRONDINGS, ACTING BOTH
COMPETITIVELY AND COOPERATIVELY FOR THE GOOD OF
THE ENTIRE SYSTEM
Safeguard
Project Presentation - November 2002
Pisa







SAFEGUARD
SADESA
Safeguard
Project Presentation - November 2002
SADESA
Pisa