Knowledge Base

Below is a repository of links to identity theft-related large-scale pilots, EU projects and further initiatives, (international) anti-identity theft agencies, crime agencies and banking sector-specific initiatives. It is a starting point for anyone wanting to learn more about identity theft and what is being done to tackle it.

 

Large-scale pilots

  • STORK 2.0 established a European eID interoperability platform.
  • The goal of e-CODEX is to improve and securitize EU citizens’ and EU-based businesses’ cross-border access to legal resources.
  • eSENS is helping develop the European Digital Market through innovative ICT solutions.
  • epSOS aimed to make it much simpler and much more secure for EU citizens to seek medical assistance across the EU.
  • PEPPOL made it easier and safer for companies to bid for EU-based and eID-related public sector contracts.
  • SPOCS established national points of contact in order to facilitate enhanced contact between the public and private sector.

 

EU projects

  • The 3D Face project was involved in 3D face recognition technology research. In short, the 3D Face project’s goals were to improve biometric performance across the EU.
  • A4CLOUD is creating solutions to support service users in deciding and tracking how their data is used by cloud service providers.
  • The ABC4Trust is an EU-funded research and development project advancing the federation and interchangeability of technologies supporting trustworthy and at the same time privacy-preserving, attribute-based Credentials.
  • ACDC has developed an online community portal designed to help CERTs, ISPs, ICT providers and research organisations to share data and solutions, to speed up the detection of botnets and ease the roll-out of innovative approaches across mobile devices and fixed computers.
  • ACTOR is busy establishing a multidisciplinary community which will support the Trust in Digital Life (TDL) research roadmaps.
  • ARIES is delivering a comprehensive framework for a reliable e-identity ecosystem.
  • ANIKETOS is helping to establish and maintain trustworthiness in what is a constantly changing internet service environment.
  • ASPIRE is challenging the current RFID deployment paradigm through innovative, programmable, royalty-free and privacy-friendly middleware.
  • ASSERT4SOA is producing novel techniques and tools for expressing, assessing and certifying security properties of complex service-oriented applications.
  • ATTPS is, one, strengthening road mapping by implementing and supporting the TDL’s Strategic Research Agenda and, two, actively contributing to awareness raising for Trustworthy ICT solutions.
  • The overarching goal of BEAT is to propose a framework of standard operational evaluations for biometric technologies.
  • BIC is creating a technical- and programme-level platform for trustworthy ICT-related engagement, collaboration and networking.
  • CAMINO will provide a realistic roadmap for improving resilience against cyber-crime and cyber-terrorism.
  • CIRRUS is a multidisciplinary consortium coordinating cloud security research projects and taking cloud-related research projects to the market.
  • City.Risks’s main objective is to increase the perception of security of citizens in urban areas by activating in a more transparent and sustainable way their participation in communities.
  • CockpitCI aims to identify and share critical infrastructures functionalities impacted by cyber-attacks.
  • Coco Cloud is enhancing cloud-based data sharing privacy and security through the creation of an efficient and flexible framework for secure data management.
  • CUMULUS is developing an integrated framework of models, processes and tools supporting the certification of security properties  of infrastructure (IaaS), platform (PaaS) software application layer (SaaS) cloud services.
  • Cyber Essentials provides a set of five controls that organisations can implement to achieve a baseline of cyber security.
  • CyberROAD will identify current and future issues regarding the fight against cyber-crime and cyber-terrorism in order to draw a roadmap for cyber-security research.
  • CYSPA is aiming to create a European alliance for a safe cyberspace.
  • DEMONS standing for DEcentralized, cooperative, and privacy-preserving MONitoring for trustworthinesS, is addressing the major challenges of cooperative network monitoring.
  • D-MILS is providing dependable compositional system construction and assurance.
  • ECOSSIAN aims to improve the detection and management of highly sophisticated cyber-security incidents and attacks against critical infrastructures by implementing a pan-European early warning and situational awareness framework with command and control facilities.
  • The aim of E-CRIME  is to identify and develop concrete measures to manage and deter cyber-crime through reconstruction of the spread and development of cyber-crime in non-information and communication technology sectors from the perspective of its economic impact on the key fabrics and different levels of European society.
  • EEMA is Europe’s leading independent think tank on identification, authentication, privacy, risk management, cyber security, the internet of things, artificial intelligence and mobile applications.
  • ePractice is a European Commission initiative. Designed as a web 2.0 community service, ePractice is tailored to the needs of eGovernment, eInclusion and eHealth practitioners. ePractice allows members to share news, events, publications, best practices and lessons learnt.
  • ETTIS is focused on identifying and assessing opportunities for enhancing societal security, improving situation awareness and informing investment options for societal security.
  • eu-LISA is the European agency for the operational management of large-scale IT systems in the area of freedom, security and justice.
  • ESI Centre Eastern Europe is the software engineering centre of excellence of the European Software Institute.
  • The European Trust Foundation is a new independent foundation strengthening digital trust throughout Europe.
  • EURO-MILS is busy undertaking a complete common criteria security evaluation of a MILS system in order to put Europe into a strong position with regards to both high-assurance common criteria certification and MILS systems.
  • The EUROPA eGovernment portal aims to provide information on, one, EU policies in the field of eGovernment and, two, the funding programs which support initiatives to improve public services.
  • The FastPass project is working towards a harmonized, modular reference system for European automated border crossing points. A major preoccupation of the FastPass project is user privacy.
  • FIDELITY aims to, one, strengthen trust and confidence of stakeholders and citizens in ePassports, two, provide more reliable ID checks and thus hinder criminal movements and, three, ease implementation of E/E records in order to facilitate better analysis of migration flows.
  • FIRE is creating a strategic approach, organizational support and network capability with which researchers, technology developers, consultants, system integrators and governments will be able to address challenges of fragmentation and further their European co-operation ambitions.
  • FPEG is the EU’s fraud prevention expert group.
  • The FUTUREID project is building a comprehensive, flexible and intuitive identity management infrastructure for Europe. By integrating existing eID technology, trust infrastructures and emerging federated identity management services alongside modern credential technologies, the FUTUREID project creates a user-centric system for the trustworthy and accountable management of identity claims.
  • FutureTrust is addressing the need for globally interoperable trust solutions.
  • The HIDE project, one, worked to facilitate international dialogue on liberty, security and democracy and, two, built a new global second-track architecture based common values and shared goals.
  • HINT is developing novel integrity technologies to guarantee systems are genuine.
  • IDnext is creating an open and independent platform to support and facilitate innovative approaches in the world of digital identity.
  • IPASCO is supporting the identification, assessment and exploitation of cyber security research.
  • The IRISS project investigated the emergence, development and deployment of surveillance technologies, their impact on basic rights and their social and economic costs. Ultimately, IRISS aimed to identify and promote options for enhancing social, economic and institutional resilience in European societies.
  • LSEC is promoting information security and expertise in Benelux and Europe.
  • MASSIF is providing a next-generation security information and event management (SIEM) framework for service infrastructures supporting intelligent, scalable, and multi-level/multi-domain security event processing and predictive security monitoring.
  • MUSES is producing technologies which will foster corporate security by reducing risks associated with user behavior.
  • NECOMA is focusing on neutralizing the threats to privacy associated with data collection.
  • NEMESYS is developing novel security technologies for seamless service provisioning in the smart mobile ecosystem.
  • NESSoS is formulating a long-term research community focused on engineering secure software-based service and systems.
  • OPTET is identifying the drivers of trust and confidence and developing technologies which will instill trust and confidence.
  • The ORIGINS project is working to improve the security of the application process and issuance of ePassports by further securitizing breeder documents.
  • OSIG is supporting the process of implementing a single European market of trustworthy services by enhancing transparency and interoperability with respect to electronic signature technology and related trust services.
  • PANOPTESEC is delivering a state-of-the-art prototype of a cyber-defense decision support system which will both proactively and reactively evaluate system weakness, identify potential attack paths, provide a list of prioritized response actions and deliver a means to execute these responses.
  • PCAS aims at providing an innovative, trustworthy, handheld device which users can use to securely store their data, to share it with trusted applications and to easily and securely authenticate themselves.
  • PIDaaS is aiming to create a secure authentication system, based on biometric recognition technology through mobile devices.
  • PINCETTE is developing technology which will ensure safe infrastructure upgrades by validating continuously evolving networked software systems.
  • PORVOO is an EU forum for discussion and exchange of good eID practice.
  • PoSecCo is establishing a traceable and sustainable link between high-level requirements and low-level configuration settings.
  • PRACTICE is creating a secure cloud framework including advanced and practical cryptographic technologies which will ultimately provide sophisticated security and privacy.
  • PRIPARE is PReparing Industry to Privacy-by-design by supporting its Application in REsearch.
  • RASEN is developing methodology for systematic ICT system security assessment.
  • The RESPECT project is currently developing a pan-European surveillance system policy framework.
  • SecCord is providing services and coordination for the Trust and Security (T&S) research programme and its projects.
  • SecFuNet is designing and developing a coherent security architecture for virtual networks and cloud computing.
  • SecFutur is developing a security engineering process for embedded systems.
  • SECONOMICS is synthesizing sociological, economic and security science into actionable knowledge for policy makers responsible for citizen security.
  • SECURED is aiming to design and prototype a trusted and secure execution environment to permit different users to execute their preferred security applications.
  • SERSCIS is developing adaptive service-oriented technologies for creating, monitoring and managing secure, resilient and highly available critical infrastructure information systems.
  • SPaCIoS is laying technological foundations for a new generation of automated security validation technologies.
  • SPECS is creating mechanisms which specify cloud security requirements ad assess the standalone and comparative security features offered by cloud services providers (CSPs).
  • SSEDIC2020 is providing a platform for e-ID stakeholders to collaborate.
  • STANCE is defining, implementing and validating of programme analysis tools capable of verifying the security of complex software systems made in C, C++ and Java.
  • STREWS is linking European trust- and security-related research and development with ongoing web standards work.
  • SURVEILLE is a cutting-edge and multi-disciplinary research project analyzing the ethical issues, legal limitations and efficiency of surveillance technologies designed for the prevention, investigation and prosecution of serious crime.
  • SWEPT is creating security solutions which will automatically mitigate website attacks.
  • SysSec is managing threat and vulnerabilities in the future internet.
  • The TABULA RASA project focuses on biometric anti-spoofing techniques.
  • TAMPRES is improving wireless sensor nodes (WSN) through an examination of protection mechanisms.
  • TCLOUDS is building a resilient Future Internet platform including.
  • TRESCCA is laying the foundations of a secure and trustable cloud platform using both hardware security and virtualization techniques.
  • TREsPASS is creating an “attack navigator” which will identify attack opportunities and suggest appropriate countermeasures.
  • Trust in Digital Life is a membership association comprising leading industry partners and knowledge institutes who exchange experience, share customer, market and technology insights with the intention of improving the quality of trustworthy digital services and platforms available through joint research and development.
  • TSI provides a one-stop shop for guidance and information about trustworthy software development.
  • The TURBINE project was funded by the European Union’s 7th Programme for Technology Research and Development (7PCRD). Focused on the study of biometric identity and pseudo-identity, its principal objective was to reinforce privacy through authentication using fingerprints.
  • TWISNet will provide a platform enabling businesses to command and control sensor networks.
  • UINFC2 is facilitating cooperation and coordination among EU stakeholders, national authorities, law enforcement agencies and related bodies with respect to addressing cyber-crime and online child sexual exploitation.
  • uTRUSTit is enabling system manufacturers and integrators to express underlying security concepts to system users.
  • VideoSense is in the process of integrating leading European research groups to create a long-term open integration of critical mass in the twin areas of ethically guided and privacy preserving video analytics.
  • VIS-SENSE is developing novel visual analytics technologies for the identification and prediction of very complex patterns of abnormal network behavior.
  • WEBSAND is constructing a security framework which incorporates a secure interaction model, methods for secure end-to-end information flow control a declarative and expressive policy description mechanism.
  • Wiser is a European initiative that is putting cyber risk management at the very heart of good business practice.
  • The WOMBAT project aimed to provide new means to understand existing and emerging threats to internet infrastructure and the services this infrastructure supports.

 

Projects including and like those listed above are documented in the annually published EU catalog EU Research for a Secure Society:

http://ec.europa.eu/dgs/home-affairs/financing/fundings/pdf/research-for-security/security_research_catalogue_2014_en.pdf

 

Further initiatives

  • Action Fraud is the UK’s national fraud and internet crime reporting center.
  • adapID was a Flemish government project aimed at, one, developing a framework for secure and privacy-preserving applications and, two, investigating technologies for future enhanced generations of the eID card.
  • The BioSecure project maintained and distributed the major outcomes of the BioSecure FP6 Network of Excellence. It provided the biometric research and development community resources including educational material, evaluation platforms and assessment protocols for a variety of well-established modalities.
  • CESG provides tailored advice to government on the security risks of new and existing IT systems.
  • Cheatline offers citizens of the UK information on insurance fraud.
  • The CIFAS project provides the UK’s most comprehensive databases of confirmed fraud data and fraud prevention services.
  • Cyber Champions is a not-for-profit organisation delivering an exciting community giveback initiative to promote best practices in digital literacy and online safety awareness.
  • Cyber Security Challenges are encouraging EU citizens to become cyber-security professionals.
  • The FIDO Alliance’s mission is to change the nature of online authentication by developing technical specifications that define an open, scalable, interoperable set of mechanisms that reduce the reliance on passwords to authenticate users, operating industry programs to help ensure successful worldwide adoption of the specifications and submitting mature technical specifications to recognized standards development organizations for formal standardization.
  • Financial Fraud Action UK raises awareness about all types of financial fraud in the UK.
  • Get Safe Online provides a source of unbiased, user-friendly advice about online safety to UK consumers and micro-businesses.
  • Me is Mine is a citizen-informing observatory on identity theft.
  • ROUTE-TO-PA is a multidisciplinary innovation project, that, by combining expertise and research in the fields of e-government, computer science, learning science and economy, is aiming to improve the impact of ICT-based technology platforms for transparency.
  • Norstella has been appointed by the Norwegian Government as the national contact point for all international standardization activities in the field of electronic business and trade facilitation.
  • OIX develops and registers trust frameworks:  pre-negotiated business, legal and technical agreements that provide mutual assurance that online transactions can be trusted. Scores of OIX white papers – each focusing upon current issues and opportunities in emerging identity markets – can be found here.
  • Vendercom is a multi-stakeholder membership organisation that connects seekers, solvers and shapers in the European Payments Community.

 

Anti-identity theft agencies

 

International anti-identity theft agencies

  • The US’s Identity Theft Council is creating a national network of local partnerships between volunteers, business and law enforcement to provide in-person support to victims of identity theft.
  • The US’s Identity Theft Resource Center is a nationally recognized non-profit organization established to support victims of identity theft.
  • The US’s ITAC is the national advocate for identity theft victims and a leading voice on identity policy.
  • The US’s Online Trust Alliance is enhancing online trust and empowering users of the internet.
  • The Secure Identity Alliance is dedicated to supporting sustainable worldwide economic growth and prosperity through the development of trusted digital identities and the widespread adoption of secure eServices.

 

Crime agencies

  • Europol is the EU’s law enforcement agency whose main goal is to help achieve a safer Europe for the benefit of all EU citizens.

 

Banking sector-specific initiatives

  • BankSafeOnline (UK Payments) is the UK trade association for payments and for those institutions that deliver payment services to customers.
  • The BBA is the leading association for the UK banking and financial sector and currently speaks for 223 banking members from 60 countries on the full range of UK and international banking issues.
  • Callcredit is a UK credit reference agency which combines a comprehensive understanding of the financial services industry’s needs with state-of-the-art technology to develop information solutions.
  • The Dedicated Cheque and Plastic Crime Unit (DCPCU) is a special police unit which is focused upon stamping out organized card and cheque fraud across the UK.