URGENT – A Spanish regional public body launches the first tender for public procurement of innovative solutions in Europe in the field of cybersecurity for the detection of illicit websites used by cybercriminals
Country of Origin: Spain
Reference Number: TRES20210504001
Pubilcation Date: 2021-05-10
Summary
The Spanish regional public body has published an innovative public procurement contract (PPI) in cybersecurity. The objective is developing a proof of concept that make possible the detection and monitoring of illegal services and to be able to eliminate them. The public tender will be open until May 14, 2021 for submitting offers. The partner sought are SME, academia or R&D centres, under technical cooperation agreement or commercial agreement with technical assistance.Description
The Spanish public regional authority has published the first public procurement contract (PPI) contract in cybersecurity carried out in Europe. The Spanish regional authority has had the collaboration of the Spanish national cybersecurity institute, as a strategic partner.The call with all the information is published on the Spanish state contracting portal, with an estimated contract value of € 442,637. Funds are co-financed by the European Regional Development Fund (ERDF).
Objective and characteristics of the tender:
Through this tender, the development of a technological solution is sought. The solution shall allow the identification of domains or websites where illegal activities are carried out anonymously, that have not been previously identified and that cannot be found in public sources, both in the deep web, as in the dark web as in the surface web. The objective of this tender is to develop tools that make possible to discover new hidden websites and monitor illegal services and to be able, with the information obtained, to eliminate them.
The deadline for submitting offers is May 14, 2021. As of the awarding, the execution period is set at 13 months. The procedure is divided into two competitive phases, of 7 and 6 months respectively, with their corresponding activities and evaluations of an eliminatory nature, and will allow the development of several innovative solutions simultaneously, so as to maximize the chances of success.
As a novelty compared to traditional contracting, which traditionally has a single winner, this public tender allows selecting up to a maximum of four developer entities in the research phase -phase 1-. From this phase 1, only two of them will be able to proceed to the prototype development phase -phase 2-.
The partner sought to afford this tender are SME, academia or R&D institutions, under technical cooperation or commercial agreement with technical assistance.
Expertise sought
The challenges proposed in this PPI are:Challenge 1: bot detection and command and control (C&C) servers. The challenge consists in the research and subsequent development of a proof of concept for the detection of bots and command and control (C&C) servers.
Challenge 2: detection of .onion domains in the TOR (the onion router) network not indexed by public sources. The challenge consists in the research and subsequent development of a proof of concept for the detection of .onion domains that are not being indexed by public sources (such as ahmina).
Challenge 3: automated detection, categorization and prediction of cyber-attacks. The challenge consists in the research and subsequent development of a proof of concept for the automatic detection, categorization and prediction of cyber packets.
Challenge 4: advanced services for the attribution of cyber-incidents. The challenge consists in the research and subsequent development of a proof of concept, according to the proposed use case, which allows generating high-value information and knowledge for the attribution of real attacks.