A data processing toolkit to support cyber security decision makers

[Editor: Georgios Kokkinis & Dimitris Kavallieros |KEMEA]

SAINT project is developing automated tools for the detection of cybercrime activities. These tools are the SAINT Social Network Analyzer (SNA) and the Open Source Intelligence (OSINT) crawler. The goal of these tools is to identify, retrieve and analyse useful information in terms of fighting cybercrime and assist cybersecurity experts and policy makers.

Apart from the identification and analysis of the available economic resources to fight cyber-crime, the development of the SAINT tools should comply with a complex Regulatory framework. The EU’s latest regulatory modifications for data protection have to do with the introduction of the General Data Protection Regulation (GDPR) and the Directive 2016/680.

The first one is known as Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data will be applied in all Members States starting in May 2018.

Similarly, Directive (EU) 2016/680 of the European Parliament and the Council concerns the protection of natural persons with regard to the processing of personal data by competent authorities for the purposes of the prevention, investigation, detection or prosecution of criminal offences or the execution of criminal penalties, and on the free movement of such data, must be incorporated into the national law of all EU countries.

The topic of legal adherence of state of the art tools, was presented in ICT Security World – 4th Annual Congress, in February 21st, Athens, Greece by SAINT members. Members from KEMEA, Hellenic Police and Computer Technology Institute and Press "Diophantus" after introducing the SAINT’s data processing toolkit they present the GDPR challenges arising from the use of the SAINT toolkit.

Further to regulatory adherence the SAINT aspires to provide a set of recommendations to enhance cybersecurity, decision and policy makers as well as to fight cybercrime and improve social, institutional and economic comprehension of cybersecurity failures.