aCtive sEcurity foR connecTed devIces liFecYcles

HORIZON.2.3HORIZON-RIAID: 101069471
EC Contribution
€39,979
Consortium Size
13 orgs
Summary

Cyber-attacks get more sophisticated every day, thus affecting a large number of IoT-related infrastructures and raising security and privacy concerns of consumers and businesses. Security management of IoT infrastructures encompassing full lifecycle of products and continuous certification are fundamental tools to guarantee a high-level of security, as emphasized by the European Union Agency for Cybersecurity (ENISA) Cybersecurity Act (CSA).CERTIFY defines a methodological, technological, and organizational approach towards IoT security lifecycle management based on (i) security by design support, (ii) continuous security assessment and monitoring (iii) timely detection, mitigation, and reconfiguration, (iv) secure IoT Over-The-Air (OTA) updating, and (v) continuous security information sharing.To ensure the security compliance throughout the lifetime of the device, we propose the design and implementation of a cybersecurity lifecycle management framework for IoT devices. The framework is intended to support the device security management by collecting and sharing relevant security information both internally (via monitoring and self-assessment services) and externally, e.g., by interacting with device manufacturers, threat databases, certification authorities, Information Sharing and Analysis Centres (ISACs), and more. The received information is meant to support the local decision making with respect to the security, monitoring, updating and configuration of the device. Moreover, this information sharing will enable a continuous risk assessment, gathering evidence that could agile future certifications.CERTIFY's provides IoT stakeholders with mechanisms achieving high-level of security. CERTIFY will detect and respond to a wide spectrum of attack, in a collaborative/decentralized fashion. CERTIFY will validate the architecture through cutting-edge use-cases and pave the way towards innovative security in a broad spectrum of IoT environments.

Consortium (13)

Project Results (33)

Source: CORDIS, the EU research results database.

Publications (19)
"""Enhancing IoT Security: A Study of Secure Authentication and Onboarding Mechanisms in Connected Devices"""
Master thesis· 2025
Pedro Ruzafa Alcazar
Active Security for Connected Device Lifecycle: the CERTIFY Architecture
21st International Conference on Distributed Computing and Artificial Intelligence· 2025DOI
Sara Matheu, Stefano Sebastio, Antonio Skarmeta, Riccardo Orizio, Stefanos Vasileiadis, Vasilis Kalos3, Katharina M ̈uller, Thomas Gr ̈ubl, Rosella Omana Mancilla, Simon Tuck, Thomas Bocek, Vincenzo Cuomo, Roland Atoui, Sreedevi Beena, Luigi Coppolino, Ro
Bolstering Up Smart Products Cybersecurity (Re-)Certification with Manufacturer's Evidence
2025 IEEE International Conference on Smart Computing (SMARTCOMP)· 2025DOI
Stefano Sebastio, Sreedevi Beena, Sara Matheu, Roland Atoui, Antonio Skarmeta
Bootstrapping seguro para IoT
Bachelor Thesis· 2025
Jose Antonio Lopez Sola
CERTIFY Artwork Tracking: Backend Services and Bootstrapping Process
Master Thesis - University of Zürich· 2025
Yves Meister, Robin Bättig
Chapter 13 Towards a Framework and Methodology Adherent to the EU Cyber Resilience Act – The CERTIFY Project (Extended Version)
Holistic IoT Security, Privacy and Safety: Integrated, Approaches Protecting A Highly Connected World· 2025DOI
Sara Nieves Matheu Garcia, Stefano Sebastio, Matteo Molé, Roberto Cascella, Antonio Skarmeta
Federated learning for misbehaviour detection with variational autoencoders and Gaussian mixture models
International Journal of Information Security· 2025DOI
Campos, Enrique Mármol; Vidal, Aurora González; Ramos, José Luis Hernández; Skarmeta, Antonio
QUIC-Exfil: Exploiting QUIC's Server Preferred Address Feature to Perform Data Exfiltration Attacks
Proceedings of the 20th ACM Asia Conference on Computer and Communications Security· 2025DOI
Thomas Grübl, Weijie Niu, Jan von der Assen, Burkhard Stiller
Simulation as a Service in Data Spaces: A Digital Twin-based Approach
Data Science and Engineering· 2025DOI
Luigi Coppolino, Adelaida Parreño-Rodríguez, Alfredo Petruolo, Juan Sánchez-Valverde, Antonio F. Skarmeta-Gómez
The good, the bad, and the algorithm: The impact of generative AI on cybersecurity
Neurocomputing· 2025DOI
Luigi Coppolino, Salvatore D’Antonio, Giovanni Mazzeo, Federica Uccello
UWB-based In-Transport Artwork Positioning and Design of a Respective Alert System
Master Thesis - University of Zurich· 2025
Dimitri Degkwitz
Cybersecurity Management Throughout the IoT Systems Lifecycle - the CERTIFY Approach
21st International Conference on Distributed Computing and Artificial Intelligence· 2024
Sara Matheu, Stefano Sebastio, Antonio Skarmeta, Riccardo Orizio, Stefanos Vasileiadis, Vasilis Kalos3, Katharina M ̈uller, Thomas Gr ̈ubl, Rosella Omana Mancilla, Simon Tuck, Thomas Bocek, Vincenzo Cuomo, Roland Atoui, Sreedevi Beena, Luigi Coppolino, Ro
Demo: Secure Inventorying and Lifecycle Management of IoT Devices with DLT
2024 IEEE 49th Conference on Local Computer Networks (LCN)· 2024DOI
Armin R. Veres, Daria Schumm, Thomas Grübl, Katharina O. E. Müller, Bruno Rodrigues, Burkhard Stiller
Secure IoT Network Prototyping for Artwork Tracking
Bachelor Thesis - University of Zürich· 2024
Mohamed Islem Mdimagh
Secure Onboarding of IoT Sensing Devices for Artwork Tracking
Bachelor Thesis - University of Zürich· 2024
Mete Polat
ARTIS - Art Tracking with IoT and Blockchain
Bachelor Thesis - University of Zürich· 2023
Jordi Kueffer
DAA & PUF-based Onboarding of IoT Devices
Bachelor Thesis - University of Zürich· 2023
Julia Kostadinova
Design and Evaluation of Ultra-Wideband (UWB) Architectures with a Focus on Privacy-Preserving Characteristics
Master Thesis - University of Zurich· 2023
Charlotte Eder
Inventorying and Secure Life-Cycles of IoT Devices
Bachelor Thesis - University of Zürich· 2023
Armin R. Veres
Deliverables (13)
Other Results (1)
Periodic Reporting for period 2 - CERTIFY (aCtive sEcurity foR connecTed devIces liFecYcles)