R&D cooperation partners:

IoTSec EWICS ERNCIP ICCF ISA99 FDA KSU CMJ

IoTSec

The IoTSec - Security in IoT for Smart Grids initiative was established in 2015 to promote the development of a safe and secure Internet-of-Things (IoT)-enabled smart power grid infrastructure. The Research Project received funding from the Research Council of Norway (RCN) to contribute to a safe information society.

IoTSec addresses the basic needs for a reliable and efficient, uninterrupted power network with dynamic configuration and security properties. It addresses in addition the needs of businesses and end users of additional IoT services by exploring use cases for value-added services with the intent to design the building blocks for future services that consider the necessary security and privacy preconditions of successfully deployed large-scale services. IoTSec will apply the research in the envisaged Security Centre for Smart Grids, co-located with the Norwegian Centre of Excellence (NCE Smart).

IAG cooperates with IoTSec by exploring the possibilities to apply evidence-based arguments and the NOR-STA tool to support demonstration and monitoring of SPD (security, privacy, dependability) objectives related to IoT systems and services, in particular in the context of Smart Grid.

EWICS

European Workshop on Industrial Computer Systems (EWICS) is active in the field of Programmable Electronic Systems reliability, safety and security. It has members from most European countries, covering various fields of interests and affiliations, as well as from the USA. To achieve these goals EWICS assess the state of the art in methods and tools for critical software development and maintenance in industrial environments, develops standards and guidelines for the development and assessment of safe and secure systems, disseminate information and knowledge in this field and exchanges technical knowledge between its members.

IAG cooperates with EWICS by providing support to the highly reputed international conference SAFECOMP (contributing to organization and program committees and submitting papers to the conference and the associated workshops) and by participating in the EWICS working groups (presently the working group on Security of Safety-critical Computer Systems (SEC) is being chaired by Janusz Górski.

ERNCIP

European Reference Network for Critical Infrastructure Protection (ERNCIP) aims at providing a framework within which experimental facilities and laboratories will share knowledge and expertise in order to harmonise test protocols throughout Europe, leading to better protection of critical infrastructures against all types of threats and hazards.

IAG contributes to ERNCIP by serving in its Academic Committee. IAG is presently registered as a centre of competence in the ERNCIP inventory of laboratories.

ICCF

IACS Cybersecurity Certification Framework (ICCF) is a Thematic Group within ERNCIP considering a roadmap for the establishment of a European IACS Components Cyber-security Compliance and Certification Scheme.

This proposal has become the core topic for the Thematic Group in 2016 and 2017. The deliverables are available from the download area.

IAG participates in ICCF by joining the group of experts working on ICCF and by active participation in Phase 3 during which the main ideas of ICCF were subjected to validation by the National Exercise Teams (NET). The Polish NET has been established in 2017 under leadership of Janusz Górski and contributed to the final report of Phase 3 of ICCF (to be published soon).

ISA99 Committee

The ISA99 (International Society of Automation) standards development committee brings together industrial cyber security experts from across the globe to develop ISA standards on industrial automation and control systems security. This original and ongoing ISA99 work is being utiilized by the International Electrotechnical Commission in producing the multi-standard IEC 62443 series.

IAG cooperates with ISA99 serving as a liaison between EWICS SEC working group and ISA99 (EWICS SEC is working on a guideline on developing safety-aware security Protection Profiles of critical components).

FDA

U.S. Food and Drug Administration (FDA or USFDA) is a federal agency of the United States Department of Health and Human Services, one of the United States federal executive departments. The FDA is responsible for protecting and promoting public health through the control and supervision of food safety, tobacco products, dietary supplements, prescription and over-the-counter pharmaceutical drugs (medications), vaccines, biopharmaceuticals, blood transfusions, medical devices, electromagnetic radiation emitting devices (ERED), cosmetics, animal foods & feed and veterinary products.

IAG cooperates with FDA within the scope of Research Collaboration Agreement with the Center for Devices and Radiological Health looking into problems of evidence-based arguments to support assurance and qualification of medical devices. For more details look here.

KSU

Kansas State University is a public research university with its main campus in Manhattan, Kansas, United States. Kansas State was opened as the state's land-grant college in 1863 – the first public institution of higher learning in the state of Kansas. The university is classified as one of 115 research universities with highest research activity (R1) by the Carnegie Classification of Institutions of Higher Education.

IAG cooperates with KSU within the scope of the Cooperation Agreement signed in 2015 which objective is to assess experimentally the effectiveness and efficiency of NOR-STA services in building and assessing assurance case arguments being in the scope of interest of KSU.

CMJ

Centrum Monitorowania Jakości (CMJ) jest jednostką Ministerstwa Zdrowia realizującą następujące cele: inspirowanie oraz wspieranie działań zmierzających do poprawy jakości usług medycznych, ocenę czynników mających wpływ na poziom świadczeń zdrowotnych oraz ocenę wskaźników obrazujących poziom rezultatów świadczeniodawców.

IAG współpracuje z CMJ, w ramach podpisanej w 2015 r. Umowy o współpracy, nad zastosowaniem argumentacji opartej na dowodach oraz związanego z tym podejściem narzędzia NOR-STA do wspomagania akredytacji jednostek ochrony zdrowia.