Digital transformation is the single largest cybersecurity risk factor in the world
And most organization are still ignoring it.
Smart Built Environment is a strategic innovation program for how the social construction sector can contribute to Sweden's journey towards becoming a global pioneering country that realizes the new opportunities that digitalisation brings.
Digitization represents one of the biggest changes in society ever. In the Smart Built Environment program, we jointly implement a unique and long-term effort to develop more sustainable and integrated ways of building.
We used threat modelling techniques to document possible threats in a digitalization projects in construction.
The model should be use to find the rights assets for digital surveillance in a project. We define surveillance models
Using enhanced open source intelligence we continuosly surveillance of digital assets in a normal project.
We create an intereactive portal with guidelines to include cyber security in digitalization projects from the beginning.
Digitalization means to making data available for users outside the normal security perimeter.
The security approcah should be presence in projects from the very start.
Critical Data will be available for players from other countries and cultures
A key success factor for any security approach is to make easy for users how to include it in projects.
No. IT Security is a small but important part of a Cyber Security approach. In most cases IT Security try to solve security issues by creating a perimeter around the data as a way to protect it. In our project we see how to approach security issues in digitalization meaning when the data is supposed to be shared between different players, most of them outside the perimeter that IT Security teams build.
The project is about how to increase security and surveillance when data, sometimes critical data, is exchanged between players in construction projects. So our goal is to appaoch security from the outside-in and not the other way around. The way we try to do this is to find the digital risks in the projects and remove or mititgate them applying digital surveillance of digital and physical assets.
We will use intelligence methodology based on enhanced OSINT (Open Source Intelligence) . The methodology is based on creating a threat model for digital and physical assets and build the security looking for vulnerabilities and risks in the Internet that might compromise projects and their critical data.
We would like to build and create guidelines and prototypes to include Cyber Security at the beginning of the projects without making digitalizations goals pay for it. We would like to find processes for surveillance of digitalization projects that reduce the risk profile of the projects.
Project start is planned for fall 2019 and it will run until December 2020.
Lorem ipsum dolor sit amet, consectetur adipiscing elit. Integer nisl risus, ultrices non dictum id, varius ut erat. Etiam eget tincidunt eros, at sollicitudin mauris. Nulla vehicula tellus quis justo finibus bibendum. Nulla consequat at est vitae iaculis. Interdum et malesuada fames ac ante ipsum primis in faucibus.
A group of International and Multi-disciplinar profesionals
An important part of the project is to document the mapping of a real construction project into a digitalization process that will be the base for the threat modelling.
In a first step the project will define the digital and physical assets of the process as well as the attack vectors available for the chosen project.
Together with KTH we will involved the market into seminars and workshops as a way to gather usefull information and feed back from the real world.
Lorem ipsum dolor sit amet, consectetur adipiscing elit. Morbi consequat pharetra ex. Nam urna eros, vestibulum pellentesque elementum at, fringilla id elit.
Developing guidelines in an interactive portal as well as building the prototype for digital surveillance based on the threat modelling.
Managing time schedules, activities and economy: The challenge of running an international and multi disciplinar team to make sure that the project meet its goals and expectations
Do not hestitate to contact us for more information or for contributions.
If you are looking for documentation from the project please specify and use a business e-mail
We will try to answer all requests as soon as possible.
Please send us your request