GMV is participating in the European TREsPASS project to help cut down security incidents in Europe

GMV is taking part in the European TREsPASS project, inputting its cybersecurity risk-management experience in the financial field

The TREsPASS project is helping to cut down security incidents in Europe and boost attack-forecasting capacity, allowing organizations and their clients to take well-informed, all-encompassing cybersecurity investment decisions. This increases European companies’ resilience to complex attacks, a vital aspect to safeguard the EU’s economic and social development.

GMV, as project participant, is sharing its cybersecurity expertise in the financial sector, especially ATM protection from malware attacks, to meet one of the TREsPASS project’s key objectives: build up a smart “attack navigator” toolkit. The idea is to develop the capacity to specify which of the potential vulnerability-exploitation routes are most important and to pinpoint the most efficient risk-management options.

TREsPASS (Technology-supported Risk Estimation by Predictive Assessment of Socio-technical Security) is an FP7 European Commission project made up by a consortium of 17 members of the academic-researcher world plus multinational organizations from the private sector.

Case Studies

Submitted proposals, to be validated, have to be backed up by specific case studies. One of these validation case studies is being conducted within the field of financial services, focusing on ATM threats, and here GMV is inputting its vast experience as a cybersecurity leader. This involves an analysis of ATM risks, taking in social/technological variables that are potentially important in statistical terms, such as demographic/geographical information and the “historical attacks” that have habitually occurred in the past”.

One of the conclusions drawn from this case study is the fact that a macro-level risk analysis pinpoints top-priority variables to be taken into account in the more detailed analysis subsequently conducted under the TREsPASS model. This includes the drawing up of ATM attack and defense trees to model attack and defense scenarios.

GMV is taking part in the European TREsPASS project, inputting its cybersecurity risk-management experience in the financial field