Academic Centre of Excellence in Cyber Security Research - Cardiff University

Cardiff University is a leading UK academic institution for cyber security analytics and artificial intelligence - the interpretation and effective communication of applied data science and AI methods through interdisciplinary insights into risk, threat intelligence, attack detection and situational awareness drawn from computer science, data science, criminology and international relations.

Our track record is evidenced by world leading publications, a strong PhD student ecosystem, and a total grant income over £7.5m from EPSRC, ESRC and industry. The impact and innovation of our research has been evidenced through a strategic partnership with global manufacturing firm Airbus - including the launch of an Airbus Centre of Excellence for Cyber Security Analytics at Cardiff University in 2017. Through academic secondments, student internships, and funded PhDs, University-developed technology has been incorporated into Airbus' internal and external products and services (e.g. consultancy and Security Operations Centre (SOC)).

We have consolidated the various aspects of cyber security research at Cardiff through the focus of cyber security analytics into the centre comprising 9 permanent academic staff. We have a core aim to sustain this leading capability to support innovation, decision making and policy surrounding cyber security issues of national importance.

Our philosophy is that Cyber Security is a global, human-centred issue that cannot be solved by technology alone, and our research endeavours to be able to understand, explain and model behaviours and interactions in cyber space as well develop technological innovation to predict and classify risks and threats to systems and people.

Our funded research programme is underpinned by five core research themes: (1) Risk assessment and modelling - developing novel methods to formalise processes within critical infrastructures and developing new risk modelling notation that has transformed the way risk is captured. We aim to advance the integration of cyber analytics with real-time risk assessment and modelling; (2) Risk communication, governance and collective decision making - using threat intelligence and good practice - being able to make effective decisions based on information available is crucial in an ever evolving cyber threat landscape. (3) Data-driven human and software behavioural analytics and threat intelligence - Our expertise in data science, machine learning and statistical analysis is being applied to ground-breaking research in intrusion detection via the complex analysis of software behaviours (e.g. machine learning for intrusion detection via behavioural DNA profiling); (4) Motivations, dynamics and social factors of cyber crimes - supporting theoretical data mining and explanatory social process modelling. This includes cyber fraud and motivations, and the social factors influencing behaviours and communication following cyber attacks; and (5) Security and Privacy of Emerging Technologies (e.g. cloud, mobile devices and Internet of Things) - horizon scanning and forecasting the threats of the future using AI.

Cardiff University is an active partner in the EPSRC PETRAS national hub for Internet of Things (IoT), within which we study the emerging attack vectors and exploitation threats on IoT in an industrial control system context.

The ACE balances cutting edge research with societal, economic, industrial, and academic impact, for which we shall 1) develop real-world use case demonstrators, 2) work with our established industrial advisory board to provide expertise and guidance, 3) develop pathways for industrial impact, 4) effect industrial and academic dissemination, data sharing, open-source software release, and 5) foster intersection with our teaching activities.

Advisory Board
We have an established Industrial Advisory Board for cyber security, comprising industry leaders aligned with the ACE scope. The board meets twice a year and provides feedback on the ACE's research and teaching goals and milestones. Representatives from Airbus, Admiral, BAE Systems, BT, ARM, Pervade, Wolfberry, and Logically Secure sit on the IAB.

Industrial Impact
Societal and industrial impact of the project will be realised through the development and implementation of real-world use cases and demonstrators. These will be public facing and will be demonstrated to our industry partners once every six months to highlight potential links to the business lines that may prompt collaborative research. Through academic secondments, student internships, funded PhDs, and post-doctoral researchers, University-developed technology has been incorporated into commercial products and services (e.g. cyber risk consultancy and Security Operations Centre (SOC)). This has resulted in the transformation of cyber security methodologies and new revenue streams within the Airbus business lines.

Industrial Dissemination
We will share project results as part of the recently established CU Innovation Centre and the Data Innovation Research Institute and will be proactive in seeking to use project results to establish collaboration with other industry partners through the EPSRC Internet of Things Research Hub, PETRAS. Cardiff University is also partnering with Innovation Point UK (based in Newport) in the recently announced IoT Wales Accelerator project in Cardiff (funded by InnovateUK). This project (managed by Barclays Eagle and RS Components) will provide building space and expertise for a number of new IoT companies in Cardiff, building on research expertise in this area at Cardiff University.