Projects

Information Security

Information Security

NR’s Information Security research group does research and industrial development on information security and related topics. The group addresses common challenges faced by companies and public services:

Customer challenges:

  • Comply with laws and regulations (GDPR, PSD2)
  • Manage and reduce risk
  • Protect assets such as information and reputation
  • Increase efficiency and reduce the cost of services through digitalization.
The Information Security group has the following expertise and uses the following methods.

Our expertise:

  • Security and privacy assurance
  • Adaptive security
  • Formal methods and modelling
  • Maturity assessment
  • Security protocol analysis
  • Computational forensics
  • AI and machine learning
Our customers are in critical infrastructures, utilities, health, and service provisioning. Our research is applied to solving their challenges.

Examples of applications of our research:

  • Securing fintech solutions for banking and payment processing
  • Authenticating smartphone users based on biometry and behavior
  • Security analytics assisted by tools, for the startup Prosa Security
  • Securing commercial messaging systems
We have a network including academics with complementary competence both in Norway and abroad. Our projects are financed by the Research Council of Norway, the EU or directly by our customers. NR is independent and organized as a research foundation (Norw. stiftelse).

Selected projects

TiTi – Tilgjengelige tilbakemeldinger
FINSEC - Integrated Framework for Predictive and Collaborative Security of Financial Infrastructures
FINSEC is a joint effort of prominent stakeholders in the financial sector and global leaders in physical & IT security, towards introducing a novel standards-based reference architecture (RA) for integrated (cyber & physical) security.
Health Democratization
Reinforcing the Health Data Infrastructure in Mobility and Assurance through Data Democratization
IoTSec - Security in IoT for Smart Grids
The main goal of IoTSec is a reliable and efficient, uninterrupted power network with dynamic configuration of system and security properties. It addresses the needs of businesses and end users of additional IoT services by exploring use cases for value-added services. The project will design the building blocks for future services that consider the necessary security and privacy preconditions of successfully deployed large-scale services, build a robust cluster of research on security in IoT for Smart Grids, and create an industrial Smart Grid Security Centre co-located with the NCE Smart.
MEDAKTIV - Digital helseinformasjon: innbyggerdeltakelse, aktiv medvirkning og potensiale for innovasjon
PCAS - Personalised Centralised Authentication System
PCAS will provide an innovative and trustworthy smart-phone add-on, the Secure Personal Device (SPD), and supporting infrastructure. PCAS allows users to securely authenticate in mobile environmnets, store data locally and to share them with trusted applications in the cloud. The SPD will recognize its user using multiple biometric sensors.
HighTrustWallet
FutureID – Shaping the future of electronic identity
The FutureID project builds a comprehensive, flexible, privacy-aware and ubiquitously usable identity management infrastructure for Europe, which integrates existing eID technology and trust infrastructures, emerging federated identity management services and modern credential technologies to provide a user-centric system for the trustworthy and accountable management of identity claims.
uTRUSTit – Usable TRUST in the Internet of Things
uTRUSTit aims at bridging security, privacy, trust, universal design, usability, and accessibility in the Internet of Things and inter-device communication.
PASVAR – SMS Patient Answering System
Patient answering service using SMS.
ASSET – Adaptive Security for Smart Internet of Things in eHealth
The ASSET project develops risk-based adaptive security methods and mechanisms for Internet of Things (IoT) in eHealth that increase security to an appropriate level and adapt to the dynamic changing conditions of IoTs, technologies that provide many benefits to the improvement of eHealth.
PETWeb II – Privacy-respecting Identity Management for e-Norge
The project addresses societal challenges concerning the future of electronic identifiers and electronic identities.
Privacy Matters - PriMa
Smart Bolighandel
Vi vil gi boligkjøper, megler og forsikringsselskap mer relevant og nøyaktig informasjon om en bruktboligs tilstand og dermed senke usikkerheten for alle parter.
EUX2010SEC
The overall goal of this research project is to improve both the security level and the security awareness when developing, installing, and using (open source) VoIP/PBX/multimedia solutions.
GEMOM – Genetic Message Oriented Secure Middleware
The main focus and goal of the GEMOM project were the significant and measurable increase in end-to-end intelligence, security and resilience of complex, distributed information systems that are evolutionary, self-organising, self healing, scalable and secure.
HATS – Highly Adaptable and Trustworthy Software using Formal Models
The HATS project develops a formal method for the design, analysis, and implementation of highly adaptable software systems that are at the same time characterized by a high demand on trustworthiness.
LongRec – Records Management over Decades
The primary goal of LongRec joint-industry project was the Persistent, Reliable and Trustworthy Long-Term Archival of Digital Documents, with Emphasis on Availability and Use of Documents. The particular problems addressed by the LongRec project typically emerge when document lifetime exceeds 20 years, and LongRec imposes no upper limit on the lifetime.
PETweb I – Privacy-respecting Identity Management for e-Norge
RISKnet – Norwegian and Nordic Network in Information Security and Societal Risk
The overall objective of the project Risknet was to establish a broad network as the basis for a forum where people, politicians, suppliers and researchers in the field of Information Security and Risk Management can identify common tasks. This has resulted in information dissemination and identification of priorities for a safer society.
SAMPOS – Strategies for Seamless Deployment of Mobile Patient Monitoring Systems
SAMPOS investigates novel design strategies for seamless deployment of mobile patient monitoring systems, focusing on low-cost, low-power, and robust/reliable and secure communication solutions.

Contact information

Department

Related pages