CTIT University of Twente
Research Business & Innovation About CTIT Research Calls Looking for a job? Intranet

PREEMPTIVE - Preventive Methodology and Tools to Protect Utilities

Project Number: 607093

Project Manager; Dr. Damiano Bolzoni

Faculty of Electrical Engineering, Mathematics and Computer Science

Tel.: +31-53-4893744

Email: d.bolzoni@utwente.nl

Project website: PREEMPTIVE


In recent years, we have witnessed an increase in the number and impact of cyber attacks. A successful attack might affect, or even endanger, daily human activities. Multiple countermeasures have been put in place to prevent Advanced Persistent Threat (APT) attacks, but they failed, allowing the latest generation of APT. The goal of PREEMPTIVE is to provide an innovative solution for enhancing existing methods and conceiving tools to prevent against cyber attacks, that target utility networks. PREEMPTIVE addresses the prevention of cyber attacks against hardware and software systems such as DCS, SCADA, PLC, networked electronic sensing, and monitoring and diagnostic systems used by the utilities networks. Moreover, the research aims to implement detection tools based on a dual approach comprising low direct detection and process misbehavior detection PREEMPTIVE proposes to:


Enhance existing methodological security and prevention frameworks with the aim of harmonizing Risk and Vulnerability Assessment methods, standard policies, procedures and applicable regulations or recommendations to prevent cyber attacks.


Design and develop prevention and detection tools complaint to the dual approach that takes into account both the industrial process misbehavior analysis (physical domain) and the communication & software anomalies (cyber domain).


Define a taxonomy for classifying the utilities networks taking into account the utility network type and communication technology used, its exposure to cyber threat, and the impact to the citizens of services disruption caused by a cyber attack through the utility network.


Define guidelines for improving Critical Infrastructure (CI) surveillance.


Validate the PREEMPTIVE framework and innovative technologies in real scenarios with the support of the utility companies involved.

Utility companies will take advantage of PREEMPTIVE results to demonstrate compliance with high-level security requirements that originate from mandates, standards, and guidelines.

Project duration: 1 March 2014 – 1 March 2017

Project budget: 5.5 M-€ / 3.8 M-€ funding

Number of person/months: 426 person months

Project Coordinator: VITROCISET

Participants: VITROCISET, Universiteit Twente, Security Matters, Aplícaciones en Informática Avanzada, Fraunhofer-Gesellschaft zur Förderung der Angewandten Forschung, HW Communications, Università Degli Studi Roma Tre, European Network for Cyber Security,

The Israel Electric Corporation, Katholieke Universiteit Leuven, Fundacio Institut de Recerca de l’Energia de Catalunya, Harnser

Project budget CTIT: 478.8 k-€ / 356.3 k-€ funding

Number of person/years CTIT: 36 person months

Involved groups: Services, Cyber security, Safety (SCS)

CTIT Research Centre: Centre for Cyber Security and Public Safety