Organisations protect their networks and crown jewels from malicious activity and malfunction by generating and using data. Such cybersecurity information can be statistics about downtime, intrusion detection log files, details about different sorts of malware, or detected phishing attacks.
Trust, privacy and reputational damage are reasons why organisations refrain from sharing this valuable information with others. TNO found that MPC is a valuable and viable privacy enhancing technique that enhances data sharing across organisations. It generates new information which improves cybersecurity defences for all participating organisations.
The data paradox
In our data-driven society, there is often a paradox between wanting to collaborate but not being able to share data because it is (privacy-)sensitive. TNO observed that this paradox hinders the willingness of organisations to share cyber security information in the Netherlands. Companies and organisations are eager and ready to learn from each other, but sharing their cyber security data and insights can be a step too far, because of privacy, financial or reputational hurdles.
Secure Multi-Party Computation (MPC), a privacy enhancing technique, offers a solution. MPC allows organisations of any type or size to jointly compute data, just as if they share a database. In the case of cyber security data, this could break down hurdles for data sharing. TNO has built a Proof of Concept to perform a secure analysis on cyber incidents.
A proof of concept to perform a Secure Incidents Analysis
Over the course of 2020, TNO developed a use case to research the added value of MPC on cybersecurity information sharing. The use case envisions a group of organisations, let’s call them organisation A, B, C, D and E. These organisations deal with cyber incidents on a regular basis, think of a ransomware or DDoS attack. They expect that others deal with similar attacks, but are not sure about it. However, if it is the case, they would certainly like to learn about it! However, organisation A might not want to tell organisation B, C, D and E about the damage or time to mitigate the aforementioned ransomware attack because it is company sensitive information. Now, the MPC protocol comes into play and looks as follows:
For every cyber incident, the organisations need to answer some questions, e.g. about the action, the actor, or the impact. Each organisation combines this information (input) into a database, which is securely made available for the MPC protocol. The organisations collaboratively decide what analysis they want to perform on this data. For example they can learn in how many of the incidents malware was involved. Remember that they will only learn this output, and that no one will know that company A had a ransomware attack. Organizations have learned from each other whilst anonymity is preserved! A true shared database.
We have observed that that information sharing communities share within trusted group in an informal and relative unstructured way, and that privacy or reputation is withholding them from sharing quantitative data. Doing a Secure Incidents Analysis can help to break the silence and the output of the MPC protocol can help organisations in decision making procedures because they know where they stand in relation to others.
A step forward
MPC is not a magic solution for everything. Organisations still need to be helped with gathering the right and structured data needed in order to let the MPC protocol calculate. Also a discussion on what would be the most valuable output would be needed. However, MPC offers a step forward in breaking down hurdles that currently hinder enriched information sharing practices.
Let’s apply MPC in the cybersecurity domain with TNO!
The project generated new knowledge and experience with MPC in solving common challenges in the cybersecurity domain. We have written this article to inform you about our lessons learned because we find are keen advocates of MPC to enhance cyber security information sharing.
Over the course of the year, our project sparked interest with public and private parties to further develop and implement the technology. Are you interested as well? Contact us to collaboratively explore how MPC can strengthen your information sharing activities!
Discover how MPC kan enhance your cybersecurity
Contact Marie Beth van Egmond.
National Security: New knowledge, new applications
National crisis management is undergoing a process of rapid development, particularly as the result of new information technologies. The Defence, Safety and Security unit is continuously developing new... Read moreSecure multi-party computation: jointly analysing sensitive data without sharing it
The analysis of data from different sources is becoming increasingly important. At the same time, relevant data is often too sensitive to be casually shared with others. How can organizations share information... Read more- Artificial Intelligence
- Application areas
- Use cases
- Program line 1: Safe autonomous systems in an open world
- Program line 2: Responsible human-machine interaction
- Secure learning in money laundering detection
- Fair decision making in the job market
- Secure learning in diabetes-2 advice
- Diagnosing for printer maintenance
- Subsidence monitoring
- Fair decision making in justice
- Augmented worker for smart industry
- Energy balancing for smart homes
- Secure learning in oncology research
- Innovation monitoring in policy
- News
- Defence, Safety & Security
- Roadmaps
- Operations & Human Factors
- Climate Chambers for Research into Human Performance
- Desdemona: The ultimate motion simulator
- LT Lab: the TNO learning technology laboratory
- Performance and health monitoring
- Motion sickness and performance
- The neurobiology of Stress
- NetForce Command: an alternative to hierarchical command and control
- Operational military performance in a virtual world
- SUPRA
- Simulation Live Virtual and Constructive
- Concept Development & Experimentation
- IAMD: Integrated Air & Missile Defence
- JROADS
- FACSIM
- Helicopter studies
- Replacement of the F-16
- MARVEL / Comprehensive Approach
- TNO ACE: Advanced CD&E Environment
- Integrated approach to Dutch Royal Navy patrol ships
- Operational analysis during military operations
- SketchaWorld: from sketch to virtual world
- Camouflage
- Information & Sensor Systems
- Digital Resilience of The Netherlands
- LFAS - Low Frequency Active Sonar
- Tanker Remote Vision System
- Platform signatures
- TNO shapes the future of MMICs and RFICs
- CARPET: Computer-Aided Radar Performance Evaluation Tool
- Underwater Warfare and Security
- Wide Area Motion Imagery WAMI
- SAKAMATA: sonar and marine mammals
- PARANOID: rapid information processing
- Mine analysis and threat evaluation
- Ship acoustics and underwater acoustic signatures
- PERSEUS Wind Turbine Radar Interference Assessment tool
- Electromagnetic security
- Operating safely at sea
- Operations at sea
- Ocean Space
- National Security
- A new vision on modernizing the emergency reporting process
- Social media in the security sector
- Automatic Video Compilation and Analysis System (AVACS)
- The Dutch Cyber Cube Method: Improving Human Capital for SOCs and CSIRTs
- Concealed weapon detection
- FP7 Project IMPACT Europe
- Critical Infrastructure Protection (CIP) policies in Europe
- @MIGO: border control
- Smarter Surveillance, man, machine, synergy
- Cyber Security of Industrial Control Systems
- Privacy enhancing techniques in cyber security data sharing
- Driving Innovation in Crisis Management with DRIVER+
- Crisis management: new challenges, new opportunities
- The learning professional: resilient and deployable for the long term
- Protection, Munitions & Weapons
- Weapons systems control and analysis
- Weapon Effects & Protection Center
- Firepower
- Protection and survivability of vehicles
- Naval protection and survivability
- Infrastructure protection and survivability
- World-class ballistics research
- Countering Explosive Threats
- Materials for protection concepts
- Processing of Propellants, Explosives and Pyrotechnics
- Ammunition Safety
- Ballistic Performance and Personal Protection
- Chemical, Biological, Radiological and Nuclear (CBRN) Protection
- Anticipating accidents, incidents and threats
- Protecting those who protect us
- Process Safety Solutions: Expertise in Handling Hazardous Conditions Safely
- Expertise groups
- Acoustics and Sonar
- Chemical, Biological, Radiological and Nuclear (CBRN) Protection
- Electronic Defence
- Energetic Materials
- Explosions, Ballistics and Protection
- Human Behaviour and Organisational Innovation
- Human Machine Teaming
- Human Performance
- Intelligent Autonomous Systems
- Intelligent Imaging
- Military Operations
- Modelling, Simulation and Gaming
- Networked Organisations
- Radar Technology
- Weapon Systems
- Energy Transition
- Roadmaps
- Renewable electricity
- Towards large-scale generation of wind energy
- The important of support structures
- Wind turbines, fully in motion
- Innovation towards 10-20 MW offshore wind turbines
- Modeling 10MW+ turbines aerodynamically
- Design for Reliable Power Performance (D4REL)
- Optimised wind blade tip design
- Vortex-wake models in wind turbine design
- Modelling improvement wind turbine blades
- Converters for Clean, Low Cost Electricity
- Haliade X: largest wind turbine ever
- New research on blade tip improvements
- Less production per wind turbine, still higher yield
- Logistics innovative strength at home and abroad
- Wind turbine management and maintenance
- Wind farms in synergy with the environment
- Innovative methods for wind measurements
- Keeping the electricity grid stable when there’s a surplus of wind and solar
- Innovation and the rise of solar energy
- Solar farms respecting landscape and nature
- Solar panels on farmland
- Research innovative solar parks
- Better design of solar parks
- Savings on solar farm operations and maintenance
- Floating solar panels on inland waterbodies
- Offshore solar energy
- National Consortium Solar in Landscape
- National Consortium Solar on Water
- Field lab floating solar
- Research into environmental effects of solar, wind energy
- Solar energy on buildings and infrastructure
- Solar-powered cars
- Mass customization
- Solar panel efficiency
- New technologies make PV more versatile
- Webinar: Innovations in solar energy technologies
- Putting Europe back in the lead in solar panel production
- System transition
- The social aspects of the energy transition
- TNO facilities for research into environmental effects of solar and wind energy
- Effective interventions to increase energy efficiency and reduce energy poverty
- Green and Ease under one roof
- Capacity building programme for energy efficiency in industry
- Zooming in on the future to make the right choices
- Scenarios for a climate-neutral energy system
- A fair system without energy poverty
- Financing the energy transition
- LAUNCH
- Successful neighbourhood approach: motivate residents
- Towards a reliable, affordable and fair energy system
- Towards CO2 neutral industry
- Reducing CO2 emissions through capture, use and storage
- SEWGS: revolutionary CO2-reduction technology and blue hydrogen production
- STEPWISE and FReSMe: CO2 reduction solutions for the steel industry
- 3D-printing for CO2 capture productivity increase
- Multi-partner ALIGN-CCUS project
- CEMCAP
- Reduce emissions steel industry
- CO₂ capture with AVR
- On-site CO₂ Capture Services: reducing emissions cost effectively
- Hydrogen for a sustainable energy supply
- Optimising production hydrogen
- Hydrogen storage and transport
- Hydrogen, fuel and feedstock
- H-vision: blue hydrogen to accelerate carbon-low industry
- 15 things you need to know about hydrogen
- World first: Green hydrogen production in the North Sea
- New research centre for hydrogen production
- Identifying the future international chain of green hydrogen
- Opportunities for green hydrogen for the manufacturing industry investigated
- Hydrogen from offshore wind: optimising the electricity grid
- Faraday lab: optimising and scaling up electrolysis
- Blue hydrogen paves the way for green hydrogen
- Biomass to fuels and feedstock
- ARBAHEAT - Sustainable future for coal-fired power stations possible through conversion to biomass
- AMBITION Advanced biofuel production from lignin rich residues
- BECOOL EU Brazilian cooperation on advanced biofuels
- Horti-BlueC - a new EU cooperation on reducing Bio-waste and CO2-footprint in horticulture
- UNRAVEL - valorization of lignocellulosic biomass
- MacroFuels advanced biofuels from seaweed
- BRISK2 Biofuel Research Infrastructure for Sharing Knowledge
- New facility for seaweed processing
- TORWASH technology successful for waste water treatment and recycling plastics
- Biofuels lab: Making transport more sustainable with biofuels
- Take-Off: Sustainable aviation fuels from CO2, water and green energy
- HEREWEAR: Circular textiles from locally-sourced bio-based materials
- Transition to e-fuels: a strategy for HIC Rotterdam
- Re-use of existing infrastructure to accelerate the energy transition
- Sustainable Industrial Heat System
- 4 pioneering routes to a CO2 neutral industry
- Research facility Industrial Electrification accelerates greening of Rotterdam port
- Mollier facility: innovating in industrial drying technology
- Research facility for negative CO2 emissions
- Carnot lab accelerates sustainable industrial heat management
- Using energy and raw materials efficiently in industry
- e-Missi0n MOOI: TNO supports Dow and Shell in electric cracking
- CO2 reduction requires improvement of industrial processes
- Making the industrial energy transition feasible and affordable
- Sustainable subsurface
- Geological Survey of the Netherlands
- Geological Survey of the Netherlands
- 100 years of geological mapping
- GeoTOP
- Sand, gravel and clay extraction
- GIS and other tools for interactive planning
- DINO, Data and Information of the Dutch Subsurface
- BRO: the Dutch Key Register of the Subsurface
- Sustainable use and management Flemish-Dutch subsurface
- Petroleum Geological Atlas of the Southern Permian Basin
- 3D Subsurface mapping of the Dutch offshore
- Geological Survey of the Netherlands across borders
- Towards an energy-producing environment
- Expertise
- Industry
- Roadmaps
- Flexible & Free-form Products
- Space & Scientific Instrumentation
- Semiconductor Equipment
- Smart Industry
- Expertise groups
- Buildings, Infrastructure & Maritime
- Roadmaps
- Safe and Sustainable Living Environment
- Infrastructure
- Sustainable buildings: towards an energy-producing built environment
- Building innovation
- Greenhouse design
- Digitisation in construction
- Smart megastructures
- Expertise groups
- Circular Economy & Environment
- Roadmaps
- Expertise groups
- Healthy Living
- Roadmaps
- Health Technology & Digital Health
- Biomedical Health
- Enabling tomorrow’s medicine
- Organ on a chip
- Microbiome
- Lifestyle as Medicine
- Microtracer
- Preclinical NASH models
- Personalized Health: 3d printing of medicines
- Joining forces for better mobile health in Kenya
- Laboratory facilities for detection and inactivation SARS-CoV
- Prevention of chronic disease
- Healthy diet
- Allergic and inflammatory diseases
- Work
- Youth
- Expertise groups
- Traffic & Transport
- Roadmaps
- SMART and Safe Traffic and Transport
- Societal impact for accessibility and liveability
- Decision-making information based on facts for municipalities
- Making disruptive technologies practicable
- Accessible, healthy and vibrant cities
- CITYkeys – Performance evaluation framework for smart cities and projects
- Big data ecosystems: collaborating on data-controlled cities
- Knowledge mediator puts an end to bickering
- Intact – Climate resilient critical infrastructure
- Organising mobility
- Smart mobility and logistics
- Smart vehicles
- Smart Mobility Research Centre SMRC
- Sustainable Traffic and Transport
- Sustainable Mobility and Logistics
- Improving air quality by monitoring real-world emissions
- Emission factors for road traffic
- Measuring the emissions of powered two wheelers
- Emissions of particulate matter from diesel cars
- Random Cycle Generator
- EnViVer: model traffic flow and emissions
- Measuring real-world emissions with TNO’s Smart Emissions Measurement System (SEMS)
- Measuring the emissions of trucks and buses
- Reducing Greenhouse Gas Emissions in Commercial Road Transport
- Measuring the emissions of non-road mobile machinery
- Emission measures in practice
- The transition to CO2-neutral mobility in 2050
- Sustainable Vehicles
- Innovative technologies for zero-emission vehicles
- CO2 reduction by high-efficiency Flex Fuel technology with extremely low emissions
- Actual energy consumption and emissions
- Hydrogen and the fuel cell
- Automotive Battery Research
- Making transport more sustainable by means of electric vehicles
- Energy Efficient Electric Bus E3Bus
- eCoMove
- Hydrogen for internal combustion engines in heavy equipment
- Green performance of ships
- Expertise groups
- Information & Communication Technology
- Roadmaps
- Fast open infrastructures
- Data sharing
- Trusted ICT
- Efficiency, effectiveness, quality and the costs of systems
- Expertise groups
- Strategic Analysis & Policy
- Expertise groups
- Strategic Business Analysis
- Strategy & Policy
- Orchestrating Innovation
- Tech Transfer
Marie Beth van Egmond
Send a question to Marie Beth van Egmond
Your question has been sent.
Sorry! Something unexpected happened. Please try again later.