International Partner Search

Research & Development Request

H2020 (SEC) DS-08-2017: End users sought for a project on Cybersecurity

Country of Origin: Spain
Reference Number: RDES20170630001
Publication Date: 30 June 2017

Summary

A Spanish SME company, specialised in ICT solutions and with wide experience coordinating European projects in the Security sector, is looking for new use cases to validate the overall approach in the field of identity authentication. End users in different sectors (e.g. banking, e-commerce, tourism, etc.) are welcome. The proposal will be submitted to the call DS-08- 2017: Cybersecurity PPP: Privacy, Data Protection, Digital Identities, and will be focused on secure digital identities.

Description

The overall goal of the proposal is to protect the privacy of citizens when accessing an online service by reducing users’ exposure and favouring more secure and trustful online platforms. To this end, the approach is based on anonymised certification methods for identification purposes, so that sensitive information is not exchanged in an open manner, but instead this is encrypted and certified by the corresponding authorised service. This will be combined with a set of predefined soft proofs - e.g. biometric tests - for the user’s authentication process: on the one hand, users will be sure that fraudsters will not be able to access their personal accounts and impersonate them and, on the other hand, online services will take as real and accurate information any data provided by the clients.  

The proposed distributed network will consist of multiple interconnected entities, such as Trust Service Providers, Privacy Protection Agents and Identity Verifiers, to avoid a common central register vulnerable to attacks. In addition, each of these entities will assume a specific role, meaning that they will not have access to all data but only to very specific pieces that cannot be linked to other personal information to unveil the user’s identity. 

Despite the involvement of different actors in the overall identification and authentication scheme, users will be able to access the online service provider and interact using their laptops, tablets and smartphones in a transparent manner. In case personal or sensitive data is requested by the online service provider to successfully complete a transaction, the proposal will inform the user about which data is being requested and will ask for approval prior to initiate any exchange. 

The social dimension will be at the heart of the proposal and will take a prominent place at all the stages from the definition of requirements to the final assessment, involving stakeholders in the co-creation process to evaluate key concepts such as the usability, acceptability and impact of the solution. In addition, the proposed Privacy-by-Design strategy will guarantee the compliance with national and European legislations, in particular the General Data Protection Regulation (GDPR), as well as users’ expectations, especially when dealing with the management of personal and sensitive data and interconnection with other existing platforms. In a similar manner, a group of experts in the field of Information and Communication Technologies (ICT) and ethics will continuous tackle and monitor any ethical issues that may arise all along the lifespan of the project..  

The transnational cooperation of a multidisciplinary consortium will allow solution to be validated at European level through a series of pilot exercises in operational environments in different sectors - from public administrations to telecommunications. Validation will be followed by demonstrations at specific locations and a final conference where the most relevant outcomes will be presented to the target audiences. 



Programme framework conditions: H2020, Innovation Action (one stage).

Deadline for expressions of interest: 21/07/2017

Call deadline: 24/08/2017

Project duration: 3 years

Type and role of the partners sought: End users that can offer new use cases in banking, e-commerce, tourism, etc. They should be the owners/managers of an existing online service where authentication and identification are relevant. They will participate in the definition of requirements and validation phases. Collaboration in technical areas and or dissemination/exploitation is also possible. Member States and Associated Countries are welcome. In principle, there is no restriction with respect to their size.

Stage Of Development

Proposal under development

Requested partner

Type of partners sought: end users in different sectors (banking, e-commerce, tourism, etc.) able to offer new use cases. The partners are expected to own/manage an existing online service with authentication and identification.

Role of the partners: definition of requirements and validation. They could also participate in technical tasks, dissemination and exploitation.