Deliverable D3.3 Report on the NoE Mobility Program and Assessment of its Results

Transcription

1 Network of Excellence Deliverable D3.3 Report on the NoE Mobility Program and Assessment of its Results NESSoS

2 NESSoS

3 Project Number : Project Title : NESSoS Deliverable Type : Report Deliverable Number : D3.3 Title of Deliverable : Report on the NoE Mobility Program and Assessment of its Results Nature of Deliverable : R Dissemination Level : Public Internal Version Number : 4.0 (SVN Revision No. 3137) Contractual Delivery Date : September Actual Delivery Date : October Contributing WPs : WP 3 Editor(s) : Manuel Clavel (IMDEA) Author(s) : Manuel Clavel (IMDEA), Carolina Dania (IMDEA) Reviewer(s) : Jorge Cuellar (SIEMENS), Marina Egea (ATOS), Fabio Martinelly (CNR) Abstract The NESSoS Mobility Program is a mechanism that supports the integration of activities across various sites. It brings together researchers working on related topics; it drives knowledge exchange and knowledge generation through union and diversity. It increases the capability of joint cooperation among researchers. This deliverable contains a report covering the first two years of the NESSoS Mobility Program, and includes an assessment of its results. This assessment focuses on the integration of activities across the network partners through the mobility of their researchers among the different sites. Keyword List Mobility, integration, cooperation, exchange. NESSoS

4 Document History Version Type of Change Author(s) 0.1 Initial setup Manuel Clavel (IMDEA) 1.0 Complete draft Manuel Clavel (IMDEA), Carolina Dania (IMDEA) 2.0 Under internal review Manuel Clavel (IMDEA), Carolina Dania (IMDEA) 3.0 Revised version Manuel Clavel (IMDEA), Carolina Dania (IMDEA) 4.0 Approved by the internal reviewers NESSoS

5 Table of Contents LIST OF TABLES INTRODUCTION REPORT ON THE RESULTS The Mobility Portal The Mobility Actions Long-term visits Medium-term visits Short-term visits ASSESSMENT OF THE RESULTS The Mobility Portal The Mobility Actions CONCLUSIONS BIBLIOGRAPHY NESSoS

6 NESSoS

7 List of Tables Table 2.1: Mobility Portal: General statistics Table 2.2: Mobility Portal: Unique visitors in each month Table 2.3: Mobility Actions: Summary Table 2.4: Mobility Actions: by work package Table 2.5: Mobility Actions: by partner of origin Table 2.6: Mobility Actions: by partner of destination NESSoS

8 NESSoS

9 1 Introduction The NESSoS Mobility Program is a mechanism that supports the integration of activities across various sites within the network. It brings together researchers working on related topics; it drives knowledge exchange and knowledge generation through union and diversity; it increases the capability of joint cooperation among researchers. Each mobility action may pursue a different specific purpose e.g., teaching short graduate, undergraduate, or industry-oriented courses in a different hosting organization; collaboration with industrial partners in carrying out industrial case studies; integrating different tools or validating them against large, complex, multi-facet scenarios, but all of them will contribute to increase the cohesion of the research ideas developed within the network and to promote the exchange of knowledge among the different partners. As stated in the NESSoS Description of Work, this deliverable will provide a report on the NoE Mobility Program during its second year, as well as an assessment of its results. This second assessment will focus on the integration of activities across the network partners through the mobility of their researchers among the different sites. Accordingly, in chapter 2 we report on the first 2 years of the NESSoS Mobility Program, and we includes an assessment of its results in chapter 3. NESSoS

10 NESSoS

11 2 Report on the results 2.1 The Mobility Portal The Mobility Portal ( supports the NESSoS Mobility Programme in different ways. A report about the design and functionality of the NESSoS Mobility Portal was already included in Deliverable D3.2 [6]. During this second year, our work on the Mobility Portal has been focused on integrating the portal within the JVRL, so that the users can log in using the same access credentials than for the others JVRL web sites. To provide this functionality, we have enabled a binding with the NESSoS LDAP directory. Tables 2.1 and 2.2 show statistics about the Mobility Portal s visitors during the period from September 1st, 2011 to August 31st, They were automatically generated with Visitors Web Log Analyzer version 0.7. (Note: multiple hits with the same IP, user agent and access day, are considered a single visit). 9/2011-8/ /2011 Number of unique visitors 3, Number of unique visitors from Google Number of unique visitors from NESSoS Web Portal Different pages requested 186,851 34,883 Table 2.1: Mobility Portal: General statistics Jan 136 Feb Mar Apr May Jun Jul Aug Sept 787 Oct 536 Nov 341 Dec 269 Table 2.2: Mobility Portal: Unique visitors in each month. 2.2 The Mobility Actions The Mobility Program fosters short, medium-term, and long-term exchange visits of research professors, post-doctoral and PhD students, and industrial members. These exchange visits can be of different types, with different goals and durations. However, the NESSoS Mobility Program is mostly focused on: Medium-term exchange visits of PhD students, to integrate existing research infrastructure, methodologies and tools, and/or to carry out common case-studies and applications. Medium-term internships of PhD students with industrial partners, to reduce the gap among best practices and research. NESSoS

12 Type Year 2 Year 1 Num. Days Num. Days Short-term Medium-term Long-term Total Table 2.3: Mobility Actions: Summary. WP Year 2 Year 1 Num. Days Num. Days WP1 WP2 1(L) 30 WP3 WP4 1(M), 1(L) 41 1(M) 7 WP5 WP6 2(S), 1(L) 188 1(S) 3 WP7 3(S),5(M),2(L) 106 2(S), 1(L) 98 WP8 10(S) 18 1(S), 1(M) 11 WP9 2(L) 61 WP10 1(L) 182 1(S) 3 WP11 2(L), 1(S) 108 1(L) 30 WP12 1(L) 28 WP13 1(M), 1(L) 41 WP14 WP15 WP16 Table 2.4: Mobility Actions: by work package. Short-term, medium-term postdoctoral visits, to increase cohesion of research ideas, and promote exchange of knowledge. Short-term, medium-term visits of industrial members at academic research partners (and vice versa), to foster industry-driven research and technology transfer. Mobility action applications are submitted using the Mobility Portal. Each application is accompanied by a budget, not exceeding the amount assigned to the corresponding partners for carrying out mobility actions. Applications are evaluated by a small committee, based solely on their potential impact on existing or nascent collaborations among partners. When needed, work packages leaders are consulted before approving a mobility action. Final reports about mobility actions are also submitted using the Mobility Portal. Tables 2.3, 2.4, 2.5, and 2.6 summarize the mobility actions carried out between partners during the first two years of the NoE. Here and elsewhere, short-term visits (S) means visits that long less than 5 days; medium-term visits (M) means visits that long from 1 week to one month; and long-term visits (L) means visits that long more than one month. Next, we provide a brief summary of these mobility actions. In particular, for each mobility action, we will indicate: participant, origin, destination, starting date, total days, work packages, and funding sources (when different from NESSoS). More technical details about the context, background, and results of these actions are to be found in their corresponding work packages. NESSoS

13 Partner Year 2 Year 1 Total Num. Days Num. Days CNR ATOS 1(M), 1(S) 8 5 ETH 1(S) 3 1(S) 5 8 IMDEA 5(L), 3(M) INRIA 1(S) 2 1(S) 3 5 KUL 7(S) LMU 1(M) SIEMENS 1(M), 1(S) 13 1(M) 7 20 SINTEF UDE 1(S) 3 1(S), 1(M) UMA 2(L) 103 2(L) UNITN 2(L) Table 2.5: Mobility Actions: by partner of origin. Partner Year 2 Year 1 Total Num. Days Num. Days CNR 1(L) 28 1(L) ATOS ETH 2(M), 5(L) IMDEA 1(M), 2(S) 18 1(S) 5 23 INRIA 3(S), 1(L) KUL 2(S) 5 1(S) 1(M) LMU 2(M) SIEMENS 1(L), 3(s) 78 1(L) SINTEF 1(L) 182 1(S) UDE UMA 1(M) 11 1(S) 7 18 UNITN 2(S) 6 3 Table 2.6: Mobility Actions: by partner of destination. NESSoS

14 2.2.1 Long-term visits Participant Origin Destination Start Date Days Workpackages Funding Rios, Ruben UMA SIEMENS 15/9/11 90 WP 11 MICINN During this stay SIEMENS and UMA concentrated on location privacy services, in the field of Wireless Sensor Networks (WSN). The work carried out provides a protocol that refrain an attacker from finding out the location of the base station, which is the most critical node in the network. This collaboration has eventually resulted in two joint publications, namely, [2] and [11]. Bielova, Natalia UNITN INRIA 1/2/ WP 9 During this visit the participant from UNITN learned about static analysis techniques and dynamic mechanisms for secure information flow, that were proposed by the researchers at INRIA Rennes. They then identified the classes of security policies that should be enforced for JavaScript web applications and reasoned about the application of static, dynamic or hybrid techniques to enforce these policies in the web browser settings. Le Minh Sang, Tran UNITN SINTEF 1/2/ WP 6, WP 10 The main focus was on studying a method for allowing risk analysts to select a cost-effective strategy for identified risks in software systems. The outcome was a generic approach for selecting a costeffective countermeasure alternatives, which could be applied for defensive risk analysis techniques such as Fault Tree Analysis, CORAS, and so on. This approach was demonstrated by instantiating it to CORAS with an exemplified scenario taken from NESSOS case study [7] Clavel, Manuel IMDEA ETH 1/9/ WP 7, WP 13 Fundación Caja Madrid This mobility action is still ongoing. The main objectives are to write a joint journal paper on the ActionGUI methodology and tools [9], and to co-teach a Master-level course on Security Engineering. García, Miguel A. IMDEA ETH 1/9/ WP 11 This mobility action is still ongoing. The main objectives are to apply the ActionGUI methodology and tools to the NESSoS EHealth Use Case [8] and to write a joint paper on the lessons learned. Dania, Carolina IMDEA ETH 1/9/ WP 11 This mobility action is still ongoing. The main objectives are to further develop a methodology to formally analyse ActionGUI models [10], to apply it to the ActionGUI models which are being developed for the NESSoS EHealth Use Case [8], and to write a joint paper on the results. Valdazo, Javier IMDEA ETH 1/9/ WP 7 IMDEA This mobility action is still ongoing. The main objectives are to further develop an extension of the ActionGUI methodology and tools [9] for modeling business process with security policies (including separation of duties and binding of duties), and to write a joint paper on the results. Ortiz, Gonzalo IMDEA ETH 1/9/ WP 2 IMDEA This mobility action is still ongoing. The main objectives are to further develop the ActionGUI tools (including model editors and code generators) and to launch joint open projects associated to the ActionGUI methodology and tools. Fernández, Carmen UMA CNR 9/28/ WP 4, WP 12 During this stay UMA and CNR worked together closely in the finalization of D12.2 [5] and other aspects towards the preparation of the first review. We also discussed ideas for applying for new EUfunded project on the area of trust management and identified this as an area where joint research UMA-CNR will be done. NESSoS

15 2.2.2 Medium-term visits Participant Origin Destination Start Date Days Workpackages Funding Busch, Marianne LMU IMDEA 13/11/11 13 WP 4, WP 7 The goal of this action was to start a joint project on defining a model-to-model transformation from UWE models to ActionGUI models. UWE is a modeling language developed at LMU which focuses on a high level of abstraction, whereas ActionGUI is a modeling language developed at IMDEA whose models can directly be transformed to code. This collaboration eventually resulted in a joint technical report [1]. García, Miguel A. IMDEA LMU 23/1/12 10 WP 7 Clavel, Manuel IMDEA LMU 26/1/12 5 WP 7 The goal of this action was to continue our joint work on defining a model-to-model transformation from UWE models to ActionGUI models. This collaboration has resulted in a joint technical report [1]. Egea, Marina ATOS ETH 6/2/12 5 WP 7 Clavel, Manuel IMDEA ETH 6/2/12 5 WP 7 During this week, ETH, IMDEA and ATOS worked on a joint journal publication. We also discussed the writing of a book on model-driven security that would contain our results and experiences in this area. Cuellar, Jorge SIEMENS UMA 10/4/12 11 WP 11, WP 9, WP 13 Dr. Cuellar held a short course (10 hours) on Formal Methods for IT-Security. But the main purpose of the visit was to work on location-privacy protection, which will be crucial in FI scenarios. This collaboration has resulted in two joint publications, namely, [2] and [11]. NESSoS

16 2.2.3 Short-term visits Participant Origin Destination Start Date Days Workpackages Funding Ochoa, Martin SIEMENS IMDEA 6/10/11 2 WP 8 SIEMENS and IMDEA gave the first steps in defining a sound non-interference analysis for caches by exploiting existing abstract interpretation techniques. This collaboration has resulted in a joint conference publication [3] and a joint journal publication [4] Schmidt, Holger UDE KUL 10/10/11 3 WP 6, WP 8 UDE and KUL worked on joint research on security requirements engineering, secure software architectures, and security patterns. Burri, Samuel ETH IMDEA 23/11/11 3 WP 7 ETH and IMDEA identified potential extensions of IMDEA s work on model-driven security by ETH s work on authorization-constrained workflows. This collaboration eventually sparked off a Master s Thesis on transforming Secure BPML models into ActionGUI models [12]. Deryck, Philippe KUL SIEMENS 28/11/11 1 WP 8 IWT Van Acker, Steven KUL SIEMENS 28/11/11 1 WP 8 IWT Desmet, Lieven KUL SIEMENS 28/11/11 1 WP 8 IWT During this intensive 1-day research meeting on Web Application Security, KUL and SIEMENS have exchanged expertise on cross-domain communication, HTML5 and JavaScript security as part of ongoing collaborations between the two partners in work package 8, and have identified and discussed new strategic research directions in this domain. Yskout, Koen KUL INRIA 25/1/12 3 WP 7, WP 8 KUL and INRIA explored the conceptual and technical integration of change patterns and runtime reconfiguration with Kevoree for security (and access control in particular). Ben David, Olivier- INRIA KUL 2/5/12 2 WP 7, WP 8 Nathanael During these two days INRIA and KUL worked on the combination of change patterns and runtime adaptation. We studied a problem in relation with access-control. The problem was described with the problem frame notation and we started to implement a solution using Kevoree in order to determine the feasibility of the combination of both approaches. Egea, Marina ATOS UNITN 9/5/12 3 WP 6, WP 11 During this visit, ATOS presented and validated the NESSoS s Smart Grid scenario in the context of the evaluation of the application of erise methodologies to this scenario. It also participated in the students results assessment. Lagaisse, Bert KUL INRIA 22/8/12 1 WP 8 Decat, Maarten KUL INRIA 22/8/12 1 WP 8 The main goal of this visit was to review the possibilities of collaborative work on authorization technologies in the future. Both KUL and UNITN presented their current research, and a discussion was started about which topics could be explored in the future in a collaborative effort. Decat, Maarten KUL UNITN 26/9/12 3 WP 8 This visit happened in the context of a paper, co-authored by KUL and UNITN, about authorization and access control in Software-as-a-Service (SaaS) applications. NESSoS

17 3 Assessment of the results 3.1 The Mobility Portal As expected, given its current main focus on mobility actions among the network s partners (including associated partners), the number of visitors, although increasing, is not high. 3.2 The Mobility Actions As Table 2.3 shows, we seem to be fulfilling our goals. Notice that, if we count a long-term visit as two medium-term visits, we have already satisfied the success criteria established in the DoW for the whole project: namely, the number of short/mid-term visits should be greater or equal than 25. In fact, driven by the increasing integration of research activities across the network, we expect the number of exchange visits to grow (even more) in the third year of the project. More crucially, as Table 2.4 shows, the Mobility Program is indeed supporting the integration of activities, and, in particular, of the research activities, across the various sites within the network. Notice that the large majority of the mobility actions are either associated to research work packages (WP6 WP10), to the workbench work package (WP2), or to the industrial case studies work package (WP11). Finally, as Tables 2.5 and 2.6 show, the main risk that we identified in the DoW for this work package, namely, Weak commitment from partners, has not occurred. Indeed, all partners have already taken part in several mobility actions, either as origin, destination, or both. Notice also that, as proposed in the DoW, to counteract this risk, we have focused on medium-term exchange visits of PhD students and short, medium-term postdoctoral visits. NESSoS

18 NESSoS

19 4 Conclusions The overall goal of the NESSoS Mobility Program is to foster the integration of activities across the network partners. We have reported on the first 24 months of the Program and provided an assessment of its results. In summary, The Mobility Portal is available since month 4. During the second year, there have been 12 short-term visits, 6 medium-term visits, and 9 long-term visits. The large majority of the mobility actions are linked to joint-work within the different research work packages. All partners have been involved in exchange visits, either as origin, destination, or both. Driven by increasing integration of activities across the network, the number of exchange visits is bound to keep growing in the upcoming months. NESSoS

20 NESSoS

21 Bibliography [1] M. Busch and M. A. G. de Dios. ActionUWE: Transformation of UWE to ActionGUI models. Technical report, Ludwig-Maximilians-Universität München, [2] J. Cúellar, M. Ochoa, and R. Rios. Indistinguishable regions in geographic location privacy. In Proc. of the 2012 ACM Symposium on Applied Computing (SAC), Security Track. ACM, [3] B. Köpf, L. Mauborgne, and M. Ochoa. Automatic quantification of cache side-channels. In P. Madhusudan and S. A. Seshia, editors, Computer Aided Verification - 24th International Conference, CAV 2012, Berkeley, CA, USA, July 7-13, 2012 Proceedings, volume 7358 of Lecture Notes in Computer Science, pages Springer, [4] B. Köpf, L. Mauborgne, and M. Ochoa. Automatic quantification of cache side-channels. IACR Cryptology eprint Archive, 2012:34, [5] NESSoS. Deliverable 12.2: First report on dissemination and communication activities including the population of the dissemination web portal [6] NESSoS. Deliverable 3.2: Report on the NoE Mobility Program and assessment of its results. http: // [7] NESSoS. Deliverable 10.3: Prototypal tools to support risk and cost analysis. nessos-project.eu, [8] NESSoS. Deliverable 11.3: Initial version of two case studies, evaluating methodologies. http: // [9] NESSoS. Deliverable 7.3: Prototypes supporting secure service architectures and design. http: // [10] NESSoS. Deliverable 9.3: Initial set of prototypal support for security assurance for services. http: // [11] R. Rios, J. Cuellar, and J. Lopez. Robust probabilistic fake packet injection for receiver-location privacy in wsn. In S. Foresti, M. Yung, and F. Martinelli, editors, 17th European Symposium on Research in Computer Security (ESORICS 2012), volume 7459 of LNCS, pages , Pisa, Italy, Sep Springer, Springer. [12] J. Valdazo. Developing secure business applications from Secure BPMN models. Master s thesis, Universidad Complutense de Madrid, Spain, September NESSoS