Trustworthy methodologies, tools and data security “by design” for dynamic testing of potentially vulnerable, insecure hardware and software components
Programme Category
Programme Name
Programme Description
Horizon Europe is the European Union (EU) funding programme for the period 2021 – 2027, which targets the sectors of research and innovation. The programme’s budget is around € 95.5 billion, of which € 5.4 billion is from NextGenerationEU to stimulate recovery and strengthen the EU’s resilience in the future, and € 4.5 billion is additional aid.
Identifier Code
Call
Summary
Trustworthy methodologies and tools for advanced analysis and verification, and dynamic testing of potentially vulnerable, insecure hardware and software components calls for good practices for system security, with a particular focus on software development tools, IT security metric and guidelines for secure products and services throughout their lifetime. A holistic methodology is needed, integrating runtime methods for monitoring and enforcement as well as design-time methods for static analysis and programme synthesis, which allows for the construction of secure systems with the strongest possible formal guarantees.
Detailed Call Description
A holistic methodology is needed, integrating runtime methods for monitoring and enforcement as well as design-time methods for static analysis and programme synthesis, which allows for the construction of secure systems with the strongest possible formal guarantees. The firmware of devices, implementations of communication protocols and stacks, Operating Systems (OSs), Application Programming Interfaces (APIs) supporting interoperability and connectivity of different services, device drivers, backend cloud and virtualisation software, as well as software implementing different service functionalities, are some examples of how software provides the essence of systems and smart (networked) objects. Supply chain issues, including integration of software and hardware, should be considered appropriately.
R&I will be funded to develop hybrid, agile and high-assurance tools capable of automating evaluation processes, accountability tools for audit results and updates and lightweight, isolated virtualisation environments capable of securely inspecting and orchestrating appliances in heterogeneous hardware and software architectures. Moreover, KPIs, metrics, procedures and tools for dynamic certification of implementation security and scalable security, from chip-level to software-level and service-level, should be developed. It may also include testing methods like coverage guided fuzzing as well as symbolic execution.
Call Total Budget
Financing percentage by EU or other bodies / Level of Subsidy or Loan
100%
Expected EU contribution: between €3 and €5 million
Thematic Categories
- Information Technology
- Justice - Security
- Research, Technological Development and Innovation
Eligibility for Participation
- Central Government
- Large Enterprises
- Private Bodies
- Small and Medium Enterprises (SMEs)
- State-owned Enterprises
Eligibility For Participation Notes
Some activities, resulting from this topic, may involve using classified background and/or producing of security sensitive results (EUCI and SEN).
The participation of SMEs is strongly encouraged.
Call Opening Date
Call Closing Date
National Contact Point(s)
Research and Innovation Foundation
29a Andrea Michalakopoulou, 1075 Nicosia
P.O.Box 23422, 1683 Nicosia
Phone Number: +357 22205000
Email Address: support@research.org.cy
Website: https://www.research.org.cy/en/
Contact Persons:
Dr. Ioannis Theodorou
Scientific Officer
Contact Phone: +357 22 20 50 38
Contact Email: itheodorou@research.org.cy
Christakis Theocharous
Scientific Officer A’
Contact Phone: +357 22 20 50 29
Contact Email: ctheocharous@research.org.cy
EU Contact Point
European Commission, Directorate-General for Research and Innovation
https://ec.europa.eu/info/departments/research-and-innovation_en#contact