The ECOSSIAN R&D FP7 project is aimed at creating a paneuropean real-time alert and cyber vigilance system to improve the protection of critical infrastructures in the EU. At the end of the scheduled 36 month project framework, a prototype of the very first European SOC (Security Operation Centre) will see the light of day.

Critical Infrastructure Protection (PIC) in Europe, and indeed all over the world, is essential in maintaining good social and economic order, and in particular the security and well-being of civilians.

As highlighted in report 162 CDS 07 of the NATO parliamentary assembly, “In the current security environment, CIP efforts cannot remain isolated. Many critical sectors – transport, energy, information and communication – are increasingly globalized and interconnected.

Launched in 2006 by the European Commission, the European Programme for Critical Infrastructure Protection (EPCIP) testifies to awareness at the very highest level of the need for coordination between Member States and Essential Operators in order to reinforce the security of these infrastructures, especially those that if shut down or destroyed would affect several States.

The Critical Infrastructure Warning Information Network (CIWIN) constitutes one of the first collaborative measures implemented within the framework of the EPCIP programme. Indeed, since January 2013, a digital portal enables European players in the field of CIP to exchange information on vulnerabilities and threats and also to share good CIP practices.

Launched on 1st June 2014, ECOSSIAN – “European COntrol System Security Incident Analysis Network” is a logical continuation of this process. It also contributes to the worldwide initiatives on cyber security of Industrial Control Systems and Smart Grids.


To improve the detection and management of security incidents and cyber attacks affecting critical infrastructures.


By the setting up of a paneuropean real-time alert and cyber vigilance system equipped with command-control functions.

The result will therefore be the prototype of the very first European SOC (Security Operation Centre) capable of centralizing data issued by all the different centres within the EU, the outcome of a 36-month long project.


An FP7 project, ECOSSIAN mobilizes more than twenty stakeholders, each offering different, but complementary expertise. The consortium is indeed made up of cyber security specialists (Bertin IT, Airbus, Espion, …), Essential Operators (Portuguese railways, Irish water and gas suppliers, …), public authorities (Portuguese criminal investigation department), universities (Leuven, Bologna) and research institutes (Fraunhofer, AIT, …).

Bertin IT, acteur de l'innovation dans les IT


Leading the definition of ECOSSIAN‘s architecture and security functions, Bertin IT also lends its expertise to the management of data exchange between different computer environments of varying sensitivity levels.

At the end of February, Bertin IT delivered the first document describing the overall architecture of ECOSSIAN and since then has begun work on the detailed specifications that will be provided at the end of this year.

Bertin IT is also experimenting with secure gateways that will enable the interconnection of systems of differing sensitivity levels and also guarantee the security and anonymity of exchanges between critical infrastructures and national or European SOCs.

Development of the framework of these gateways has begun and will continue into 2016.