European Companies Search Engine
EU funding (€4,581,135): Secure OPen source softwarE and hardwaRe Adaptable framework Hor9 Dec 2022 EU Research and Innovation programme "Horizon"
Overview
Text
Secure OPen source softwarE and hardwaRe Adaptable framework
Security of open-source solutions in the business interconnected market (especially in IoT where a single product may include components from various Tier 1 or OEM manufacturers) is hard to assure. OEM SW/HW developers that employ open-source solutions must assume that any component provided by 3rd parties needs to be reassessed for security as there is not holistic security auditing/testing process to cover the full production line. The plethora of open-source HW/SW solutions on devices with constrained resources and no trusted environments leads to a considerably expanded threat landscape. The restricted execution environment reduces bootstrapping new devices in an IoT network and deploying/patching them securely; and the full DevSecOps of connected device open-source HW/SW must be reformulated offering security guarantees on the usage of open-source solutions. SecOPERA will provide a one stop hub for complex OSS/OSH solutions offering to designers, implementers, operators and open-source HW/SW developers the means to analyse, assess, secure/harden and share open-source solutions as these are integrated in an overall complex product within a networked connected environment. SecOPERA provides a framework supporting the open source DevSecOps lifecycle that comprises (i) a decomposition and security audit/testing engine that analyses open source solutions (OSS/OSH) (ii) an adaptation engine that debloats OSS/OSH code to remove unrelated open-source code and reduce the code attack surface; and a security enhancement process to harden the OSS/OSH solution (iii) an updating/patching mechanism so that the SecOPERA open-source flows remain secure even if their open-source code starting points are vulnerable. On top of that, SecOPERA hub provides (iv) an open-source repository for secure modules that is used in the security enhancement mechanism of open-source solutions; and (v) an open-source repository of security hardened OSS/OSH solutions and their security guarantees.
Funded Companies:
| Company name | Funding amount |
| SPHYNX TECHNOLOGY SOLUTIONS AG | ? |
| AEGIS IT RESEARCH GmbH | €401,250 |
| Athens University OF Economics AND Business - Research Center | €327,500 |
| Athina-Erevnitiko Kentro Kainotomias Stis Technologies TIS Pliroforias, TON Epikoinonion Kai TIS Gnosis | €418,750 |
| Commissariat a L Energie Atomique et aux Energies Alternatives | €342,750 |
| Greencityzen | €320,860 |
| Iotam Internet of Things Applications and Multi Layer Development Ltd. | €400,000 |
| Nimble Innovation GmbH | €482,500 |
| Polytechneio Kritis | €448,750 |
| Security Labs Consulting Ltd. | €322,375 |
| Thales six GTS France SAS | €500,150 |
| University of Cyprus | €423,750 |
| Vogl Simon | €192,500 |
Source: https://cordis.europa.eu/project/id/101070599
The filing refers to a past date, and does not necessarily reflect the current state. The current state is available on the following page: Sphynx Technology Solutions AG), in Zug (CHE-383.459.225), über. Die Gesellschaft wird gelöscht, Zug, Switzerland.
The visualizations for "SPHYNX TECHNOLOGY SOLUTIONS AG - EU funding (€4,581,135): Secure OPen source softwarE and hardwaRe Adaptable framework"
are provided by
North Data
and may be reused under the terms of the
Creative Commons CC-BY license.
