Started in March 2014, the SWEPT project aims to protect websites against attacks, malware and vulnerabilities.
The best way to ensure web security is to develop secure applications rather than securing them afterwards. The SWEPT project will provide required software components that can be integrated within current existing web development frameworks, which enable the creation of highly secure websites. SWEPT is the first technology which aims to create self-protected web applications and web services.
In all cases, a great deal of effort and investment from website owners and administrators is required (e.g. security audits, continuous software, license or component updates, etc.). This is feasible for organizations with the necessary resources, but presents a difficult problem to cope with for individual website owners and administrators, or small organizations with limited resources.
The main goal is to develop a new multifaceted approach to mitigate malicious attacks on websites by maximizing the security posture of websites with a minimum of intervention needed by website owners and administrators. In addition, the project aims to define a de facto standard and good practice for securing websites.
The proposed SWEPT security solution will incorporate prevention and detection security mechanisms and tools for automatically preventing and mitigating web site attacks. The project also proposes a certification model that will certificate the security level of a web application based on SWEPT security mechanisms.
The combination of the different measures and tools being proposed will ensure continuous and effective protection for websites, to a level that has never before been achieved, and assure that SWEPT is an important step in reaching the ultimate goal of 100% protection against attacks.
The users targeted by the project are all stakeholders and actors of the internet value chain. They will all be involved in the project implementation and in the piloting phase. The end user group targeted and the particular needs of each of the target groups are as follows:
SWEPT is a European project funded under the Competitiveness and Innovation Framework Programme (CIP) Programme.
The SWEPT project runs over 36 months from 01/03/2014 to 28/02/2017. SWEPT aims to protect websites against attacks, malware and vulnerabilities.
SWEPT unites a community of 11 partners from 6 different countries, including IT providers, Cybersecurity companies, web hosting providers and internet service providers.